Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/a96705-1cb7-43b9-96dd-4c2d4c4b5f0a/1/_hzgielEuUPG2Pc3dDbX3ejcCnI.roa
File: _hzgielEuUPG2Pc3dDbX3ejcCnI.roa (raw, json)
Hash identifier: OBJ2dzsR+IGYr/QGmt25sgqu81zwsRO1kD0uFrKk4vo=
Subject key identifier: FE:1C:E0:89:E9:44:B9:43:C6:D8:F7:37:74:36:D7:DD:E8:DC:0A:72
Certificate issuer: /CN=560eff1d23161feaa08a1994e1dd4b46a8383f20
Certificate serial: 01856C53D99959CBA77819D2D3F765BF1A23
Authority key identifier: 56:0E:FF:1D:23:16:1F:EA:A0:8A:19:94:E1:DD:4B:46:A8:38:3F:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Vg7_HSMWH-qgihmU4d1LRqg4PyA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/a96705-1cb7-43b9-96dd-4c2d4c4b5f0a/1/_hzgielEuUPG2Pc3dDbX3ejcCnI.roa
Signing time: Sun 01 Jan 2023 07:55:12 +0000
ROA not before: Sun 01 Jan 2023 07:55:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211210
IP address blocks: 37.252.221.0/24 maxlen: 24
2a0b:96c0::/29 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:53:d9:99:59:cb:a7:78:19:d2:d3:f7:65:bf:1a:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=560eff1d23161feaa08a1994e1dd4b46a8383f20
Validity
Not Before: Jan 1 07:55:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fe1ce089e944b943c6d8f7377436d7dde8dc0a72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:b5:e1:3a:0f:8d:eb:40:15:61:9d:63:21:e0:
ad:8e:4c:e8:b1:69:03:16:b1:24:7a:dd:a1:93:79:
ab:34:72:c7:f3:b4:d4:ef:a2:8f:62:ee:24:a4:06:
6f:c0:0b:f8:d5:8e:f4:3c:e7:13:0b:b4:70:4f:02:
cf:31:79:44:75:5b:f7:58:d5:fe:1d:00:d4:62:6a:
d2:d9:c7:b8:fc:ea:a9:9e:1b:c3:dd:ae:45:d9:28:
73:83:bf:3b:5f:e5:37:62:53:2c:b2:ff:b3:28:d8:
ee:f3:80:57:8b:c1:4a:8f:75:92:1b:e7:b9:42:ee:
09:86:96:09:63:ec:21:2d:04:cb:f0:4b:53:42:7c:
2b:42:01:aa:dc:c9:ad:f6:8a:98:f1:e5:49:2f:c7:
09:da:6f:b2:60:82:a5:dc:a7:5b:fd:3e:79:a9:46:
5f:f4:26:00:71:53:8e:fe:2c:08:6a:96:a3:a2:c7:
1f:92:ab:11:8c:74:e0:54:03:a5:74:3a:34:68:5f:
ae:03:5f:21:e3:d3:26:db:37:f0:6c:68:a5:fb:14:
1a:8b:f8:58:12:2d:8d:13:36:9d:00:c4:6d:b8:cc:
87:5c:b1:18:6d:f0:56:fd:ef:b6:72:53:48:bc:ba:
50:4b:ab:fa:84:25:e6:ad:3a:85:4c:f3:8b:cc:d1:
04:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:1C:E0:89:E9:44:B9:43:C6:D8:F7:37:74:36:D7:DD:E8:DC:0A:72
X509v3 Authority Key Identifier:
keyid:56:0E:FF:1D:23:16:1F:EA:A0:8A:19:94:E1:DD:4B:46:A8:38:3F:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Vg7_HSMWH-qgihmU4d1LRqg4PyA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/a96705-1cb7-43b9-96dd-4c2d4c4b5f0a/1/_hzgielEuUPG2Pc3dDbX3ejcCnI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/a96705-1cb7-43b9-96dd-4c2d4c4b5f0a/1/Vg7_HSMWH-qgihmU4d1LRqg4PyA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.252.221.0/24
IPv6:
2a0b:96c0::/29
Signature Algorithm: sha256WithRSAEncryption
47:6b:d7:51:92:58:6d:ce:21:05:1f:5b:2e:f5:18:be:ff:84:
e5:b3:a8:12:de:22:c0:3b:a3:07:58:24:fd:39:ae:e4:e7:94:
cc:5f:7e:2d:00:31:93:8d:0a:95:8e:79:37:e7:b9:09:0d:16:
3f:91:5f:bf:cd:cd:cf:48:2e:a4:12:7f:7f:ba:81:f4:56:06:
56:a3:3c:8b:06:2f:72:39:b8:d0:32:7d:09:6e:25:fc:b1:b3:
20:59:9d:d8:c2:5f:34:28:07:92:6a:08:4a:a3:dc:5b:59:7b:
e1:c5:d7:b7:d2:a1:6f:12:f6:fe:ab:9e:41:1d:3e:4c:6f:ca:
77:29:e8:86:7a:e1:78:61:21:ec:84:cc:b9:cf:36:75:45:2d:
96:07:a7:83:dd:00:54:c0:35:9e:34:dc:ec:4a:53:0e:d6:bd:
6e:6c:a7:95:c5:ef:e3:81:10:41:b9:5e:7b:9b:26:98:eb:f7:
f4:b5:4a:bb:35:06:8f:80:4c:2e:dd:ed:b7:98:ef:7b:f8:19:
a5:fb:e9:a7:e0:57:e4:37:0e:d5:bd:71:21:bc:32:2b:c8:e0:
c3:e3:44:1c:c0:d2:20:0a:91:2c:32:ef:4d:ec:34:7c:56:de:
69:ab:8a:82:ac:f5:0d:01:d7:36:8e:8a:1f:6c:b4:de:6d:d8:
1e:e6:ca:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:51:19 2024 by rpki-client on console-fra.rpki-client.org