Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/JOT7M1hrsKzOFr3_1K3xW3kz6J8.roa
File: JOT7M1hrsKzOFr3_1K3xW3kz6J8.roa (raw, json)
Hash identifier: E9OjTdbLq9s+MBlxqJ8fUMjZXJ7MF27IflcXYdzgcf0=
Subject key identifier: 24:E4:FB:33:58:6B:B0:AC:CE:16:BD:FF:D4:AD:F1:5B:79:33:E8:9F
Certificate issuer: /CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Certificate serial: 01856B4A4109B9722F1B5419B0B028271FC2
Authority key identifier: 58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/JOT7M1hrsKzOFr3_1K3xW3kz6J8.roa
Signing time: Sun 01 Jan 2023 03:05:06 +0000
ROA not before: Sun 01 Jan 2023 03:05:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204720
IP address blocks: 37.18.15.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 25 Jan 2023 13:46:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:4a:41:09:b9:72:2f:1b:54:19:b0:b0:28:27:1f:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Validity
Not Before: Jan 1 03:05:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=24e4fb33586bb0acce16bdffd4adf15b7933e89f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:44:5a:14:a4:1a:a3:de:91:cd:96:56:2b:47:
bb:fe:bc:a2:e9:06:4b:ce:86:db:69:72:a6:08:2b:
51:47:6b:56:8e:11:a9:19:75:df:09:d8:34:93:6e:
fd:a0:64:52:41:ff:7c:cf:41:9f:77:4d:5b:59:2f:
15:f3:d4:2b:c1:b3:46:95:11:3b:12:50:d3:1f:1f:
6c:ed:99:c9:0a:b3:3c:4e:c4:1b:f1:63:4e:3b:75:
21:db:73:a9:5b:d2:53:f6:fd:fc:15:db:3a:67:4b:
b8:2d:38:af:c4:b1:5f:6d:d7:6a:2d:4a:02:d1:80:
03:5d:c0:26:9b:40:f4:5c:8a:69:86:5d:a6:96:fa:
7d:22:40:8b:d0:a4:ed:45:0c:94:bc:eb:d0:49:34:
d0:e5:0e:75:0a:a0:c7:fa:24:2a:61:38:3c:e3:52:
e9:27:e0:03:e8:e8:ea:e5:25:43:e9:80:3d:4c:b4:
12:3a:7c:a1:06:32:ed:e0:f3:ac:6d:a7:b6:40:2c:
88:5b:04:7c:78:d8:b6:f7:b2:40:e7:a4:7b:7c:f5:
d6:d5:8a:f3:46:11:19:ab:67:cb:c9:9f:d9:9c:1a:
19:1e:36:31:2d:46:5e:6d:84:3b:2d:dc:4c:1f:c3:
75:ae:c6:ee:d3:0a:fe:d6:c8:e5:43:6b:8d:45:41:
dd:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:E4:FB:33:58:6B:B0:AC:CE:16:BD:FF:D4:AD:F1:5B:79:33:E8:9F
X509v3 Authority Key Identifier:
keyid:58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/JOT7M1hrsKzOFr3_1K3xW3kz6J8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.18.15.0/24
Signature Algorithm: sha256WithRSAEncryption
07:27:12:03:dd:d0:15:2c:b2:2d:15:47:8d:22:38:53:b2:9e:
9b:3d:44:f8:7c:29:e0:91:eb:5e:e6:cb:31:25:1c:dc:6d:f3:
8d:0d:7f:eb:a9:0e:5b:bc:c5:03:a9:24:38:da:98:3c:fe:32:
40:9b:e5:8b:b1:2f:6d:99:cb:db:0e:43:b6:c3:72:61:e0:f3:
f8:a4:3f:0b:20:22:84:95:85:5f:ef:4a:81:30:b6:a6:a5:3c:
72:87:8e:e8:4c:87:c3:bd:08:a6:51:04:25:71:0a:e3:57:88:
6d:97:1b:fb:4d:52:a4:81:f4:54:0b:d8:38:3b:ec:5b:ef:2f:
77:bb:e1:08:fc:e3:c0:91:ef:b9:31:30:f7:5f:72:90:d6:c5:
c8:94:8a:49:08:49:d4:88:f3:91:7e:a5:b0:44:85:ce:c5:25:
75:81:a8:fe:aa:66:dd:ff:8b:b6:14:dc:63:2c:8b:bc:56:12:
eb:ee:e1:7b:7d:fe:ec:7d:58:72:d2:35:f7:66:13:b1:23:8a:
9c:0e:96:7a:5d:25:2a:3d:64:51:f2:69:44:72:88:c5:da:0b:
4c:c9:6d:91:67:28:2b:8e:11:06:34:9c:37:7b:02:53:ae:f3:
28:9a:42:86:4e:f0:91:f0:43:b7:9f:31:c8:71:98:e2:ad:8d:
c5:aa:cf:d7
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVrSkEJuXIvG1QZsLAoJx/CMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU4ODVlODg0YzJmYzdhNzVkMTJkZDFkZWE0OWNlMjM0OWM0
NzA2N2UwHhcNMjMwMTAxMDMwNTA2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyNGU0ZmIzMzU4NmJiMGFjY2UxNmJkZmZkNGFkZjE1Yjc5MzNlODlmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlkRaFKQao96RzZZWK0e7/ryi6QZL
zobbaXKmCCtRR2tWjhGpGXXfCdg0k279oGRSQf98z0Gfd01bWS8V89QrwbNGlRE7
ElDTHx9s7ZnJCrM8TsQb8WNOO3Uh23OpW9JT9v38Fds6Z0u4LTivxLFfbddqLUoC
0YADXcAmm0D0XIpphl2mlvp9IkCL0KTtRQyUvOvQSTTQ5Q51CqDH+iQqYTg841Lp
J+AD6Ojq5SVD6YA9TLQSOnyhBjLt4POsbae2QCyIWwR8eNi297JA56R7fPXW1Yrz
RhEZq2fLyZ/ZnBoZHjYxLUZebYQ7LdxMH8N1rsbu0wr+1sjlQ2uNRUHd7wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCTk+zNYa7Cszha9/9St8Vt5M+ifMB8GA1UdIwQY
MBaAFFiF6ITC/Hp10S3R3qSc4jScRwZ+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvV0lYb2hNTDhlblhSTGRIZXBKemlOSnhIQm40LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni82YzBiZjctNWYxMy00NGEyLTk5ODkt
OGM5NTgxZDk2ZDhmLzEvSk9UN00xaHJzS3pPRnIzXzFLM3hXM2t6Nko4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ni82YzBiZjctNWYxMy00NGEyLTk5ODktOGM5NTgxZDk2ZDhm
LzEvV0lYb2hNTDhlblhSTGRIZXBKemlOSnhIQm40LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAJRIPMA0G
CSqGSIb3DQEBCwUAA4IBAQAHJxID3dAVLLItFUeNIjhTsp6bPUT4fCngkete5ssx
JRzcbfONDX/rqQ5bvMUDqSQ42pg8/jJAm+WLsS9tmcvbDkO2w3Jh4PP4pD8LICKE
lYVf70qBMLampTxyh47oTIfDvQimUQQlcQrjV4htlxv7TVKkgfRUC9g4O+xb7y93
u+EI/OPAke+5MTD3X3KQ1sXIlIpJCEnUiPORfqWwRIXOxSV1gaj+qmbd/4u2FNxj
LIu8VhLr7uF7ff7sfVhy0jX3ZhOxI4qcDpZ6XSUqPWRR8mlEcojF2gtMyW2RZygr
jhEGNJw3ewJTrvMomkKGTvCR8EO3nzHIcZjirY3Fqs/X
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:33 2024 by rpki-client on console-ams.rpki-client.org