Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/Pk8tzAG5CsnWTu8drb_LW673bQk.roa
File: Pk8tzAG5CsnWTu8drb_LW673bQk.roa (raw, json)
Hash identifier: /7Z+qw8DR6+ZHhW/rHjgzRItvGnGS+VXd4GX7mfMCMk=
Subject key identifier: 3E:4F:2D:CC:01:B9:0A:C9:D6:4E:EF:1D:AD:BF:CB:5B:AE:F7:6D:09
Certificate issuer: /CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Certificate serial: 01856B4A28A25A64CFFFD6AE2D29015BFC39
Authority key identifier: 58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/Pk8tzAG5CsnWTu8drb_LW673bQk.roa
Signing time: Sun 01 Jan 2023 03:05:00 +0000
ROA not before: Sun 01 Jan 2023 03:05:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48275
IP address blocks: 37.18.11.0/24 maxlen: 24
37.18.12.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:4a:28:a2:5a:64:cf:ff:d6:ae:2d:29:01:5b:fc:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Validity
Not Before: Jan 1 03:05:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3e4f2dcc01b90ac9d64eef1dadbfcb5baef76d09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:a2:86:31:35:9b:25:a0:51:44:4a:47:62:be:
ba:71:93:c3:41:b8:70:90:42:3e:5e:40:70:a3:91:
0b:78:4b:67:75:5a:2f:d7:fa:d1:9a:0e:aa:2b:98:
2b:54:4b:f2:dd:57:2c:ae:90:e2:57:e8:61:39:8c:
af:40:31:45:cc:61:df:db:59:99:7d:e1:99:1a:80:
68:d7:07:45:21:32:22:8d:12:4e:c1:e8:55:d5:db:
16:1c:b9:6d:a3:7f:84:cd:67:6e:16:a2:ff:47:6b:
a1:a1:80:8a:c1:e1:7a:c8:6d:48:73:bd:07:ca:51:
c0:28:91:a6:0e:37:2a:4a:26:25:fa:f2:92:e4:77:
3d:ba:59:36:93:59:47:27:6d:bf:31:ff:05:3e:51:
38:9c:ef:a1:b1:b3:96:64:fa:02:20:8e:12:e1:2a:
89:9b:d9:0b:38:04:ad:fc:0b:20:5a:19:41:f5:a3:
78:ba:71:f6:fc:e2:0f:85:01:9c:b2:92:51:85:cd:
27:39:dd:af:ce:2d:7b:44:ec:17:d6:22:d8:af:13:
e8:e7:aa:a1:b3:68:88:f2:7a:45:9a:bf:d7:ac:34:
8e:bf:d8:89:50:2a:45:82:67:9b:22:3d:63:fe:33:
e1:14:3c:1e:9a:58:df:47:f3:4a:9a:80:af:cb:bf:
a2:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:4F:2D:CC:01:B9:0A:C9:D6:4E:EF:1D:AD:BF:CB:5B:AE:F7:6D:09
X509v3 Authority Key Identifier:
keyid:58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/Pk8tzAG5CsnWTu8drb_LW673bQk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.18.11.0-37.18.12.255
Signature Algorithm: sha256WithRSAEncryption
5a:cd:5d:30:ed:d6:d5:db:5c:c3:0b:f2:d7:da:3d:0b:48:e1:
ed:6d:07:c5:b3:1c:de:1b:50:1e:92:3f:4d:a6:e0:2e:f1:dd:
92:76:09:6a:31:f6:d3:45:f0:70:9f:bb:83:ef:eb:5a:49:1f:
c2:62:cf:88:4d:08:0b:74:97:ba:bf:10:1d:d3:01:2e:f3:d3:
72:3e:67:26:69:f8:05:83:33:a4:09:1f:ea:3d:4d:e0:d5:94:
17:b7:3d:6a:e5:08:bb:e0:89:30:3b:d2:f8:d7:f3:55:42:17:
82:19:b2:a3:26:d4:bc:15:d1:39:61:d2:97:17:0b:c3:7a:33:
3f:de:b3:cb:67:53:b1:29:86:41:fc:cd:23:fd:aa:65:cc:0c:
5c:a1:94:c8:68:fc:c4:b4:55:ca:7a:5e:a9:f5:cf:ea:ee:a9:
6a:84:32:76:e1:7e:fe:66:54:74:98:ae:44:35:6f:54:72:46:
fd:be:70:7c:f7:99:b1:f4:a1:e8:3a:76:74:cf:6d:24:d8:d9:
8f:43:ed:dd:67:a7:72:6a:9b:51:37:39:ec:29:78:71:a7:8a:
fc:6e:9e:26:1a:a4:74:6f:f9:a2:70:ef:82:5b:f6:e6:62:ef:
88:4c:50:fd:a4:56:c6:03:e0:0e:05:54:8c:87:7d:31:0d:14:
68:d8:4f:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:38 2024 by rpki-client on console-fra.rpki-client.org