Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/aKvrzZlLKa07vOMlJMbFqttpIa4.roa
File: aKvrzZlLKa07vOMlJMbFqttpIa4.roa (raw, json)
Hash identifier: AR9NXNnsaELkdWdhB47et00AFFyWT698lhuDAGvfep4=
Subject key identifier: 68:AB:EB:CD:99:4B:29:AD:3B:BC:E3:25:24:C6:C5:AA:DB:69:21:AE
Certificate issuer: /CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Certificate serial: 01856B4A24C487B476931C3265C80C4D69CF
Authority key identifier: 58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/aKvrzZlLKa07vOMlJMbFqttpIa4.roa
Signing time: Sun 01 Jan 2023 03:04:59 +0000
ROA not before: Sun 01 Jan 2023 03:04:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34597
IP address blocks: 37.230.246.0/24 maxlen: 24
141.101.243.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 26 Sep 2023 16:03:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:4a:24:c4:87:b4:76:93:1c:32:65:c8:0c:4d:69:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Validity
Not Before: Jan 1 03:04:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=68abebcd994b29ad3bbce32524c6c5aadb6921ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:6a:37:be:6b:f9:f8:61:4e:43:dd:37:a1:bc:
70:4f:8f:a3:c0:f1:2c:e2:dd:e3:1d:7c:ea:8e:bb:
35:16:81:48:44:dc:df:d8:79:5b:11:a6:4f:a4:9a:
05:59:ac:3b:3c:40:b6:d1:2c:af:54:9a:a7:54:62:
5d:5b:95:6d:e8:fc:7b:81:cb:a6:3d:eb:4c:f5:13:
25:f1:07:a1:50:da:a6:dc:03:49:c6:c9:fd:f0:0b:
b6:18:f7:8b:82:46:db:32:57:5b:b6:10:50:8c:49:
45:c8:1d:95:aa:41:b0:99:99:af:7e:69:65:c7:ee:
a8:f0:05:f0:56:86:40:bb:be:0c:31:c9:c3:56:b6:
32:31:09:8c:90:b6:db:34:08:91:15:25:78:4b:f9:
32:63:46:31:cf:42:56:5f:08:83:74:77:4a:59:8f:
29:05:5b:61:e2:ef:15:0f:5c:eb:da:44:06:b3:d2:
3d:17:94:bf:d4:5e:cc:b9:3d:98:c2:99:39:11:84:
da:6b:f7:31:a1:bd:c3:a7:70:4d:83:77:44:33:ea:
fb:50:8b:f6:6b:aa:9f:99:d0:57:a8:ee:b9:27:3b:
0c:05:b0:e9:e8:1e:f0:26:ba:23:ec:bc:24:a6:0a:
8c:d8:af:1b:3d:26:01:7d:4d:52:d1:ba:f5:45:23:
58:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:AB:EB:CD:99:4B:29:AD:3B:BC:E3:25:24:C6:C5:AA:DB:69:21:AE
X509v3 Authority Key Identifier:
keyid:58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/aKvrzZlLKa07vOMlJMbFqttpIa4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.230.246.0/24
141.101.243.0/24
Signature Algorithm: sha256WithRSAEncryption
80:40:50:5f:2f:e6:fe:cd:27:ef:35:c8:28:6e:1f:10:38:17:
9f:f5:7b:e5:96:a3:34:be:f5:9e:0a:ed:08:88:d5:e2:2a:20:
d2:21:1d:51:2d:f8:40:b0:c1:24:c5:64:b7:70:2f:b6:49:0b:
2a:fb:3c:97:7b:30:07:c5:0f:ea:7d:eb:fb:3b:40:b5:be:be:
79:4f:fd:3b:c1:b3:3b:8e:37:ab:ce:71:10:31:a9:0d:23:ba:
c8:b6:ca:04:ea:f8:bf:ab:f5:fa:6a:4c:66:1f:00:5d:79:ef:
99:1d:33:08:59:ff:60:bb:aa:95:82:9e:87:2e:2c:22:f1:12:
cf:70:05:39:b7:02:70:ec:0d:64:9b:f9:1d:2f:5c:6d:84:9f:
e5:59:23:a1:58:69:5c:99:e8:b0:00:4c:b9:03:92:05:22:02:
b3:32:33:eb:28:69:49:2e:ff:2d:81:90:c4:b8:dd:8d:f9:35:
49:38:b5:cc:0a:71:7d:ca:94:ce:81:4e:2a:ca:94:dd:89:06:
ca:55:ba:3c:78:d3:ac:e9:e2:62:be:95:7f:ba:ab:79:d1:04:
ba:79:c2:50:86:45:5e:cf:35:31:d1:1d:34:49:bf:55:cb:2d:
fc:32:dc:79:50:48:88:78:00:46:7e:1a:2d:0f:4b:38:5d:ed:
62:e2:72:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:38 2024 by rpki-client on console-fra.rpki-client.org