Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/SdTcEcpy37hGHPT6vy1JhDMenRU.roa
File: SdTcEcpy37hGHPT6vy1JhDMenRU.roa (raw, json)
Hash identifier: Kz8epnsQ7+Lh9dR/hSezcY6DMaEF42tyBBKBlF6rnT0=
Subject key identifier: 49:D4:DC:11:CA:72:DF:B8:46:1C:F4:FA:BF:2D:49:84:33:1E:9D:15
Certificate issuer: /CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Certificate serial: 01856B4A3FABA0F062DC2304062FE7262D6F
Authority key identifier: 58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/SdTcEcpy37hGHPT6vy1JhDMenRU.roa
Signing time: Sun 01 Jan 2023 03:05:06 +0000
ROA not before: Sun 01 Jan 2023 03:05:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204231
IP address blocks: 37.18.85.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:4a:3f:ab:a0:f0:62:dc:23:04:06:2f:e7:26:2d:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Validity
Not Before: Jan 1 03:05:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=49d4dc11ca72dfb8461cf4fabf2d4984331e9d15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:03:7d:87:d1:b3:1c:87:8a:ca:61:ee:80:ff:
7b:72:f7:42:3a:b5:66:5c:e7:c8:55:06:19:ea:37:
59:11:0d:15:cb:59:f9:b5:82:5f:02:91:f7:51:ca:
5a:88:aa:2b:45:fe:83:f8:a7:0a:4f:b0:06:f2:6c:
c0:e6:d8:82:d0:fa:34:63:bc:16:67:3a:19:19:4b:
6e:b0:e0:17:f5:26:a7:7e:af:eb:b9:49:2e:a2:31:
0d:8e:f8:aa:e8:c0:94:4f:40:00:d9:c9:71:e0:c4:
14:f4:e2:b6:f8:e8:81:a5:e8:ad:6b:58:eb:a0:42:
f4:cd:ae:24:87:42:20:be:19:57:da:c2:c2:6f:e3:
54:61:45:e3:6f:a0:a9:ab:aa:48:9a:19:c4:d0:48:
5a:06:53:f8:a9:06:20:92:05:db:c5:eb:a8:f0:d7:
83:8b:bf:c0:01:ef:b8:08:2f:a0:34:18:30:58:c1:
a6:d1:85:eb:ce:d3:ba:8c:6c:d7:e8:17:1a:e1:9a:
a7:15:c2:70:7b:15:c6:cb:99:91:f6:00:8e:5d:cb:
b4:3d:2b:22:2b:e1:f3:13:13:52:ce:c6:ef:fe:75:
63:e9:9f:ab:59:b7:d1:d2:31:d5:9d:57:b4:66:3a:
09:3d:0d:42:c1:2f:f2:6b:2d:29:39:b7:e9:d0:70:
c0:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:D4:DC:11:CA:72:DF:B8:46:1C:F4:FA:BF:2D:49:84:33:1E:9D:15
X509v3 Authority Key Identifier:
keyid:58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/SdTcEcpy37hGHPT6vy1JhDMenRU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.18.85.0/24
Signature Algorithm: sha256WithRSAEncryption
04:e5:82:1a:61:05:51:1d:b1:9a:fc:b9:b8:8b:d4:04:4e:41:
9b:26:1e:95:23:c4:a9:7b:53:e6:6e:0f:8f:f2:cb:e4:f4:78:
cc:45:1d:86:df:c4:41:36:6c:b4:e0:b8:e6:9a:26:d4:ea:e4:
ef:4b:cc:c5:a7:c7:16:93:22:d8:c7:f3:ce:31:9c:73:e7:05:
eb:11:c2:86:4b:d1:74:4e:96:35:0d:5d:cd:97:b4:2d:3a:b4:
ca:de:10:f8:5b:55:dd:b0:97:6f:57:c0:c6:74:64:24:73:6b:
98:57:80:3a:75:f5:ff:c6:05:1c:58:0e:b4:88:61:79:a1:52:
ae:14:99:c6:26:f5:21:5b:45:9b:16:13:28:cb:63:af:cc:10:
3b:8a:57:1d:2b:cb:54:83:9a:36:95:a2:d3:9b:44:46:b0:7e:
ce:fd:3d:88:57:97:f2:c5:00:d1:95:ba:01:4e:d5:87:18:57:
7a:6d:69:93:c7:0e:1f:c7:64:e7:fd:13:71:6b:ec:19:05:00:
24:a8:52:bd:9b:5c:53:00:fc:02:17:d7:60:bd:91:24:be:48:
63:8e:f9:4a:93:29:60:37:29:e1:b3:db:18:05:b6:f6:74:87:
75:1c:4c:45:a2:03:85:22:0e:86:57:31:2e:b7:58:e6:5f:b3:
c5:ee:7f:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:33 2024 by rpki-client on console-ams.rpki-client.org