Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/L_zwwEXwmSaPMjB94-J3GMKLg44.roa
File: L_zwwEXwmSaPMjB94-J3GMKLg44.roa (raw, json)
Hash identifier: vjRB+YsFtBoUlhy4msWP5BEO5XRH5sfwxpw2WJdQaDU=
Subject key identifier: 2F:FC:F0:C0:45:F0:99:26:8F:32:30:7D:E3:E2:77:18:C2:8B:83:8E
Certificate issuer: /CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Certificate serial: 018CFA4342BA03D0A95BA7AC669903D9682D
Authority key identifier: 86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/L_zwwEXwmSaPMjB94-J3GMKLg44.roa
Signing time: Thu 11 Jan 2024 20:42:41 +0000
ROA not before: Thu 11 Jan 2024 20:42:41 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 996
IP address blocks: 37.34.80.0/21 maxlen: 24
Validation: Failed, certificate revoked on Mon 15 Jan 2024 10:42:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:fa:43:42:ba:03:d0:a9:5b:a7:ac:66:99:03:d9:68:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Validity
Not Before: Jan 11 20:42:41 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2ffcf0c045f099268f32307de3e27718c28b838e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:37:48:e9:02:04:2c:ab:f7:5f:82:4d:5f:66:
c6:6b:c7:cb:31:35:6c:b8:65:70:9a:9a:88:56:02:
72:5d:67:82:f6:21:89:fc:a9:20:ab:b2:dc:03:48:
72:ae:91:26:5c:76:1a:ba:ad:5d:d5:5f:cc:58:7c:
8f:67:1d:0b:9f:34:d9:6a:ea:75:8e:46:6d:96:7d:
ac:7b:27:a2:de:1f:d9:6a:ea:e0:b6:b3:77:f8:47:
a6:fd:68:a1:d2:24:91:c1:ca:9f:07:19:f7:14:72:
5c:b6:fc:3d:64:b5:ba:d4:f6:47:30:d7:83:9f:9a:
8e:7f:eb:e0:7a:07:16:13:3a:15:18:9d:91:be:d4:
7b:15:65:8e:36:e9:1c:75:14:65:33:6b:52:85:13:
dd:17:21:f2:d4:b9:83:51:7c:3a:33:df:f9:ba:2e:
1b:f9:89:d0:40:09:13:a7:e4:0f:3b:4b:c9:11:db:
b0:20:4f:ac:ee:8a:a4:87:fa:ba:e0:04:72:00:b6:
b8:fd:26:83:80:fa:72:b3:3b:21:0d:a2:18:4e:fd:
96:be:6f:45:57:f1:2a:04:49:1a:e1:52:48:b9:3d:
a3:57:cd:80:dc:db:fc:0c:f1:e6:cb:46:b2:80:8d:
de:89:df:63:15:c8:98:22:09:f5:e1:39:6d:e3:eb:
94:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:FC:F0:C0:45:F0:99:26:8F:32:30:7D:E3:E2:77:18:C2:8B:83:8E
X509v3 Authority Key Identifier:
keyid:86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/L_zwwEXwmSaPMjB94-J3GMKLg44.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.34.80.0/21
Signature Algorithm: sha256WithRSAEncryption
44:b5:0a:40:26:6f:07:74:34:bd:a1:3f:02:89:39:ee:d8:b1:
47:55:12:3d:c0:6c:b3:06:5d:0c:2d:d2:fd:24:c9:c3:3f:dd:
70:21:44:06:97:9d:5d:3b:ef:d8:c9:6d:5d:e1:cf:a7:0c:64:
c7:81:aa:a9:d5:bb:4a:c0:de:7f:79:65:88:f2:95:55:29:20:
ba:2d:57:9a:36:a7:fe:2d:f0:be:4c:ba:01:51:5e:66:7c:be:
42:be:d2:a9:63:32:c8:4a:08:e3:bf:15:d5:9d:82:e0:4e:0f:
8b:f8:64:d1:69:40:3e:9d:19:cb:86:f9:6d:a3:2c:9e:f3:bc:
a5:0d:5d:e1:1b:a9:69:39:1f:66:62:ad:f3:0e:d8:3e:72:c0:
6c:18:10:ae:b5:61:d1:08:79:20:31:55:15:89:84:7c:48:98:
21:14:05:3b:5c:d7:1e:e1:53:0f:50:87:86:5d:c3:49:50:1d:
17:45:dc:74:69:e4:f9:4e:92:1b:7c:4c:24:f2:4f:1e:c7:d3:
3f:a5:ba:43:c4:d6:72:11:7a:3a:4c:2c:4d:31:12:d7:48:0c:
ff:df:8f:6d:ce:45:30:c2:cc:5a:f0:72:6d:c4:53:d5:ac:42:
32:33:11:80:c2:c6:f5:15:41:43:5b:fb:97:86:85:20:ca:47:
98:db:b2:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:47 2024 by rpki-client on console-ams.rpki-client.org