Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/S_3ucsbZH6Ip2moOlcwpYuiow_o.roa
File: S_3ucsbZH6Ip2moOlcwpYuiow_o.roa (raw, json)
Hash identifier: CqoESEUifiFzsj0diltSzdKtFmWW9GXbhVMfBOKduys=
Subject key identifier: 4B:FD:EE:72:C6:D9:1F:A2:29:DA:6A:0E:95:CC:29:62:E8:A8:C3:FA
Certificate issuer: /CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Certificate serial: 01856B4A361003A14ED5C517685B30CCD287
Authority key identifier: 58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/S_3ucsbZH6Ip2moOlcwpYuiow_o.roa
Signing time: Sun 01 Jan 2023 03:05:03 +0000
ROA not before: Sun 01 Jan 2023 03:05:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61276
IP address blocks: 141.101.196.0/24 maxlen: 24
37.18.21.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:4a:36:10:03:a1:4e:d5:c5:17:68:5b:30:cc:d2:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Validity
Not Before: Jan 1 03:05:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4bfdee72c6d91fa229da6a0e95cc2962e8a8c3fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:fa:b3:be:63:d2:f6:47:a8:26:0a:de:75:ed:
0c:c9:18:4e:95:da:69:2e:09:0f:38:33:78:7e:51:
24:d1:da:34:82:c2:15:57:7f:2a:70:ef:24:90:bf:
6a:9b:91:49:d5:4f:7e:9c:c1:22:3e:f7:f1:45:72:
de:9f:64:9e:6c:5a:d1:1d:34:fa:99:44:d1:61:5b:
4d:8c:26:a7:cc:f0:4d:26:7b:cf:13:d5:a1:27:fb:
5e:9a:88:42:99:df:01:0a:78:37:7d:21:60:85:cc:
63:ea:1f:f1:48:1a:5a:b2:60:a2:dd:40:cc:94:2b:
dd:7c:d9:e4:25:ed:28:0c:50:1c:29:43:4c:df:6d:
1a:c2:1d:67:e4:91:cb:ad:cf:ff:f2:73:62:96:1a:
0d:9a:54:5d:e4:d6:e3:01:d3:7e:e8:61:53:12:ff:
5e:13:1d:d0:7e:bf:cf:d4:15:48:ef:96:f2:43:5f:
25:3e:b9:c3:4b:7e:a0:bd:36:77:16:a2:27:13:ac:
d2:43:be:9d:47:af:33:ef:cd:c2:e0:cb:64:9a:d7:
ac:f4:4a:af:75:fa:85:39:e6:3e:82:6f:6b:4e:36:
8f:00:b3:00:38:bd:33:24:de:4e:52:4a:91:5c:5c:
44:db:0e:4f:8d:70:5c:f3:fa:66:a1:b4:4a:5f:d0:
65:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:FD:EE:72:C6:D9:1F:A2:29:DA:6A:0E:95:CC:29:62:E8:A8:C3:FA
X509v3 Authority Key Identifier:
keyid:58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/S_3ucsbZH6Ip2moOlcwpYuiow_o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.18.21.0/24
141.101.196.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:7d:e2:3e:96:27:d7:e3:1d:bb:6f:20:0f:37:60:c5:86:3f:
14:36:70:8b:9f:26:6b:95:51:17:42:4f:b1:06:44:2e:25:d2:
d3:76:82:fc:be:56:53:b8:dc:4e:7f:39:ae:1a:ad:e5:26:07:
b5:aa:8e:e0:cf:9e:b6:34:51:90:cf:37:17:60:b0:29:a0:1a:
5a:9f:5d:49:fd:81:c8:47:1f:4e:96:67:e2:09:8e:46:53:cf:
c7:b4:6f:17:88:88:15:23:0f:36:28:20:4d:6d:89:9e:06:28:
09:2b:92:31:c8:6f:d6:7f:77:47:17:7a:df:d5:be:8b:6f:a3:
36:62:88:e0:a7:9e:34:13:32:93:da:18:a8:8f:1e:6e:6b:88:
33:77:61:63:e2:21:55:8b:09:63:20:0f:4e:9a:e8:4c:52:b9:
43:95:71:fb:78:ce:6f:db:c6:03:a1:f2:c1:16:f9:67:57:d1:
ee:92:ed:9e:b8:26:25:59:dc:33:6f:8a:48:ef:53:bf:c6:46:
df:a3:b0:30:3d:84:14:72:5d:2d:c4:81:30:ea:88:c0:09:3d:
bf:be:c9:c7:59:41:ed:35:03:7f:7f:7a:f5:e2:f1:ac:3d:e0:
6f:31:a2:df:3b:f1:a1:c7:59:87:40:be:2d:90:3a:a4:1a:60:
94:e7:2f:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:33 2024 by rpki-client on console-ams.rpki-client.org