Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/3tXBCxZxVAi9EEM6GNNH9aRfr84.roa
File: 3tXBCxZxVAi9EEM6GNNH9aRfr84.roa (raw, json)
Hash identifier: 8HmmMAeAW32gLTs4eVMXRc4fOGbD8WH2VvVR71GidjU=
Subject key identifier: DE:D5:C1:0B:16:71:54:08:BD:10:43:3A:18:D3:47:F5:A4:5F:AF:CE
Certificate issuer: /CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Certificate serial: 01856B4A23C39A90FFBA6436BDD8E4D97B88
Authority key identifier: 58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/3tXBCxZxVAi9EEM6GNNH9aRfr84.roa
Signing time: Sun 01 Jan 2023 03:04:58 +0000
ROA not before: Sun 01 Jan 2023 03:04:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25513
IP address blocks: 37.230.157.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:4a:23:c3:9a:90:ff:ba:64:36:bd:d8:e4:d9:7b:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Validity
Not Before: Jan 1 03:04:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ded5c10b16715408bd10433a18d347f5a45fafce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:50:b9:29:66:80:d3:06:b8:e3:7e:c0:c1:34:
c5:ce:67:31:6d:b6:29:89:c5:f4:31:b4:5c:e5:93:
4a:ed:d6:42:e0:77:a9:93:da:bd:47:9c:27:2c:09:
3b:68:ce:fd:0b:6a:8e:74:20:09:60:bb:69:9e:a1:
05:23:4c:a4:e6:93:1e:db:c8:93:d7:49:c8:4b:f9:
0a:87:bd:94:48:af:75:c9:60:5f:be:8b:21:47:a4:
ff:87:82:a0:f0:0d:2f:31:08:bc:3b:98:b4:68:e1:
f3:cd:3a:c2:e9:f3:a1:3a:7e:6c:6f:95:6f:d1:a2:
61:f5:63:cf:dd:28:fc:c6:8c:27:b6:e9:27:dc:2e:
22:a1:d2:ea:53:1e:35:4a:7a:72:43:79:ac:d8:ee:
1c:2a:28:01:79:dc:4e:37:96:28:59:19:64:90:e7:
83:60:24:90:49:da:7d:41:7b:82:57:d2:63:0b:fc:
df:33:31:3b:a7:46:a3:d5:4b:64:b5:4f:7f:86:9d:
3e:05:74:ab:5a:18:6e:10:95:72:55:09:37:d5:47:
ad:8e:9d:cc:ef:8d:52:f3:38:36:18:c4:15:da:7f:
03:4d:a4:ce:7e:ae:61:57:ae:5a:c5:f8:e8:0a:f4:
83:49:5f:eb:03:78:d8:5e:6b:18:f0:9a:e5:f6:a9:
72:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:D5:C1:0B:16:71:54:08:BD:10:43:3A:18:D3:47:F5:A4:5F:AF:CE
X509v3 Authority Key Identifier:
keyid:58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/3tXBCxZxVAi9EEM6GNNH9aRfr84.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.230.157.0/24
Signature Algorithm: sha256WithRSAEncryption
96:42:8d:0f:41:0b:01:dd:ff:75:b2:83:94:6e:25:f6:29:b3:
98:82:94:58:5c:c5:39:1c:fe:25:0b:d5:bf:a1:a1:3a:a5:81:
bb:28:2a:52:1a:e4:64:44:8a:84:fb:69:81:20:67:f2:82:28:
4a:88:c7:de:ab:0b:36:dd:b5:3f:de:21:fe:51:05:ae:f5:b0:
e6:c5:b5:87:72:44:57:64:cc:27:f4:5a:a3:5a:8f:96:ba:7a:
98:86:06:18:d2:9d:c4:83:f3:8d:00:f5:2a:5f:8d:2e:b4:94:
03:d7:ca:6a:d9:79:a5:64:9b:90:e8:f4:b2:73:1a:08:c3:f3:
75:31:a9:a5:21:87:3f:ca:2f:4f:92:5f:a1:d8:57:5b:6c:12:
31:47:19:d8:b7:a9:cd:50:1c:2b:03:a0:51:2d:c5:10:13:48:
68:e6:b0:f9:13:87:86:97:be:67:45:47:50:c7:0c:a3:e2:5a:
bd:a4:7a:c9:71:1c:2a:75:2b:f9:29:64:06:34:d5:3a:8d:79:
a4:42:98:b9:21:f8:0e:0c:70:27:90:2a:14:04:a3:e7:c5:16:
86:12:36:19:16:87:45:f1:be:e7:7c:9f:2a:98:58:8a:f0:b0:
2d:cf:a4:e5:74:28:4c:1f:f5:1a:75:68:cf:0c:d0:f0:69:71:
67:83:3b:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:38 2024 by rpki-client on console-fra.rpki-client.org