Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/8b856a-38ae-4cfb-81d2-271a9576eae7/1/w7WM-begcAg_3hhMEP81N-7pxTA.roa
File: w7WM-begcAg_3hhMEP81N-7pxTA.roa (raw, json)
Hash identifier: Tn55UXcSOLnOsM8I4+Hkjx2xU1VuUlCONE6yW5nhd6E=
Subject key identifier: C3:B5:8C:F9:B7:A0:70:08:3F:DE:18:4C:10:FF:35:37:EE:E9:C5:30
Certificate issuer: /CN=2eeec5231d212b310579d78fc41479ca6ec2aa07
Certificate serial: 018572BA7991E060AD9AAF0B556A356B45C2
Authority key identifier: 2E:EE:C5:23:1D:21:2B:31:05:79:D7:8F:C4:14:79:CA:6E:C2:AA:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Lu7FIx0hKzEFedePxBR5ym7Cqgc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/8b856a-38ae-4cfb-81d2-271a9576eae7/1/w7WM-begcAg_3hhMEP81N-7pxTA.roa
Signing time: Mon 02 Jan 2023 13:45:01 +0000
ROA not before: Mon 02 Jan 2023 13:45:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212698
IP address blocks: 37.208.67.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:ba:79:91:e0:60:ad:9a:af:0b:55:6a:35:6b:45:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2eeec5231d212b310579d78fc41479ca6ec2aa07
Validity
Not Before: Jan 2 13:45:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c3b58cf9b7a070083fde184c10ff3537eee9c530
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:2f:cb:c0:26:dc:d2:c6:6c:16:bc:06:62:7c:
52:08:9f:53:a6:98:eb:38:e3:2b:8c:1e:47:a7:15:
71:aa:94:43:3d:4b:07:11:bf:6d:f6:14:ed:e5:80:
de:56:66:46:ca:39:4e:99:3e:b8:96:8c:e6:ff:50:
7a:ff:50:f2:cf:7d:3b:2c:ab:b5:f8:c3:6e:30:fe:
bf:c2:88:f7:f4:85:bc:99:23:38:76:b3:0f:b1:2e:
14:ef:33:a8:08:ea:4c:22:e5:ba:d8:86:d7:82:f4:
e2:64:ef:3b:9c:1b:a0:97:a9:6c:cd:f7:f9:03:85:
33:88:d8:51:0c:cc:f9:86:50:e0:b8:4d:00:37:94:
73:7a:20:77:d3:86:fc:08:c2:de:54:3d:cd:1e:6c:
be:81:f5:46:40:92:e4:54:92:3a:22:6c:6e:68:3f:
f0:90:01:9f:20:07:39:cb:b5:88:be:df:2a:d0:a7:
d8:41:18:02:3c:e9:93:2b:aa:4d:ae:98:dc:f9:6e:
08:94:c5:74:62:a2:41:fc:fd:6c:79:7e:e6:98:be:
de:a9:ac:40:c7:56:5e:57:c1:30:9f:76:55:67:0c:
e3:ab:6f:5e:31:ad:0b:bb:d8:63:a7:0a:d9:40:26:
e6:e4:13:98:cb:fb:9c:ee:a4:56:1c:0e:5c:56:8d:
5d:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:B5:8C:F9:B7:A0:70:08:3F:DE:18:4C:10:FF:35:37:EE:E9:C5:30
X509v3 Authority Key Identifier:
keyid:2E:EE:C5:23:1D:21:2B:31:05:79:D7:8F:C4:14:79:CA:6E:C2:AA:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Lu7FIx0hKzEFedePxBR5ym7Cqgc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/8b856a-38ae-4cfb-81d2-271a9576eae7/1/w7WM-begcAg_3hhMEP81N-7pxTA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/8b856a-38ae-4cfb-81d2-271a9576eae7/1/Lu7FIx0hKzEFedePxBR5ym7Cqgc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.208.67.0/24
Signature Algorithm: sha256WithRSAEncryption
10:53:cf:47:fa:17:73:e1:34:0a:13:5e:59:cb:e1:37:17:92:
26:e3:e5:c3:b8:a1:1f:47:13:3b:9e:0b:ec:d1:f3:59:b9:41:
6d:0b:dd:3e:31:ba:c9:db:d8:f5:4a:7e:06:2e:a6:e0:bc:c9:
43:58:c6:1f:6b:78:1e:e8:47:dc:d9:ac:be:17:bb:0d:0d:0b:
bf:05:bd:e0:f7:6c:f2:dc:ad:96:6a:c6:79:9c:9d:d9:ad:09:
fb:e2:95:fd:07:ea:a5:69:39:de:78:6f:ce:68:8d:17:ee:2b:
9b:61:81:25:6c:d4:65:a9:35:a9:bc:f6:fd:76:55:6a:43:06:
00:42:0d:7a:e8:ac:de:24:6c:40:67:33:a1:18:95:af:39:49:
94:44:45:a7:13:63:ab:d2:99:e9:7d:91:df:aa:a0:d9:b6:98:
4e:df:70:6b:ea:72:52:2a:82:09:c8:99:f6:1b:45:77:48:58:
c6:03:f6:30:be:18:8f:29:16:0c:c7:93:de:3d:51:8c:bf:5a:
14:a5:af:71:cb:34:60:f3:a0:45:84:f4:77:11:25:56:90:c7:
5b:da:48:c8:14:7d:44:7d:a1:fc:31:79:63:82:cf:62:7a:a2:
d9:ee:f5:2b:c6:32:1e:75:54:65:58:3d:72:5a:fd:b0:01:53:
cc:c8:b1:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 06:31:21 2024 by rpki-client on console-fra.rpki-client.org