Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/e1KxhHepzixVhMtc1Zf7LscjP9U.roa
File: e1KxhHepzixVhMtc1Zf7LscjP9U.roa (raw, json)
Hash identifier: x9m7dueNhQFqQyIY1D/w038gCjlPqpeWBL/yOI27FQc=
Subject key identifier: 7B:52:B1:84:77:A9:CE:2C:55:84:CB:5C:D5:97:FB:2E:C7:23:3F:D5
Certificate issuer: /CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Certificate serial: 01856B4A2E31A04856084DC395E1AC91457D
Authority key identifier: 58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/e1KxhHepzixVhMtc1Zf7LscjP9U.roa
Signing time: Sun 01 Jan 2023 03:05:01 +0000
ROA not before: Sun 01 Jan 2023 03:05:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57064
IP address blocks: 37.230.158.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:4a:2e:31:a0:48:56:08:4d:c3:95:e1:ac:91:45:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Validity
Not Before: Jan 1 03:05:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7b52b18477a9ce2c5584cb5cd597fb2ec7233fd5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:7f:fd:5b:c2:e7:3e:c9:b8:c4:b1:be:55:3e:
26:df:d7:58:6c:4b:d6:82:bd:f5:06:8e:32:8f:99:
eb:94:70:cd:8a:c4:fd:a9:35:95:83:1b:9d:28:11:
bf:46:7d:c8:b1:2c:a1:b1:25:1e:ed:1a:a0:10:f8:
44:7f:fd:fc:5a:af:62:20:cd:e2:53:28:79:6a:ac:
47:0e:3e:51:4e:54:a3:fe:3f:f2:11:53:e5:61:44:
0c:7f:7c:53:42:86:59:7a:0f:b7:d1:5a:8c:74:3a:
45:b8:22:8c:6d:8d:e9:e6:b6:26:db:9b:ed:07:10:
5a:3b:65:e3:7c:02:3b:21:49:a3:37:95:7d:aa:78:
9f:52:63:93:1e:93:6f:a1:15:88:52:04:28:3f:cb:
f4:7a:f3:7d:83:ed:03:64:cb:79:da:d5:ab:88:5c:
53:14:a5:12:63:b9:a7:97:b8:fa:f9:c0:ef:f2:09:
1a:e4:7f:6a:5a:34:6a:33:85:38:91:31:85:4f:2c:
c9:ff:44:32:e0:36:bb:e7:76:de:3f:b0:90:be:33:
e0:c4:40:6d:ce:ee:b8:ff:f7:b1:4c:49:4f:5c:c7:
63:ff:54:64:df:ae:e0:b1:98:8b:0d:f6:ad:5d:b4:
cd:55:fd:ed:55:35:b7:88:e5:e8:de:a1:47:2c:6a:
f4:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:52:B1:84:77:A9:CE:2C:55:84:CB:5C:D5:97:FB:2E:C7:23:3F:D5
X509v3 Authority Key Identifier:
keyid:58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/e1KxhHepzixVhMtc1Zf7LscjP9U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.230.158.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:29:fe:11:76:99:b6:64:49:9f:ff:f1:02:f7:7f:5b:b7:66:
5c:c2:df:2e:f9:3b:e3:66:f3:87:1d:9a:f0:30:82:68:49:68:
e8:a1:1f:9a:d0:da:34:2d:0a:19:79:6b:e3:8d:07:0c:7f:fc:
f6:a0:ef:13:8d:4a:cb:0b:50:46:42:92:14:35:c3:3a:ee:25:
3f:85:5a:36:79:d0:7a:7b:00:fb:71:b7:0b:a7:97:21:c4:09:
33:e0:fa:32:40:3d:a6:4f:95:6b:79:5e:e1:c8:fd:64:ec:23:
07:4d:4f:38:2f:0a:ab:4e:b0:04:53:6e:67:5f:7a:4c:c1:3f:
c5:52:ac:a9:c2:01:3e:af:06:3d:ee:c8:e8:1d:92:98:6e:d1:
a8:7a:04:95:7b:66:75:ad:f0:ae:3f:58:e5:9f:77:51:cb:38:
9d:e6:31:d0:96:f0:e3:87:67:d5:dc:a1:17:92:e7:99:2d:66:
d9:4c:3c:3c:e1:b0:d7:8e:96:71:2a:a6:a2:53:bc:41:26:2f:
e4:10:c0:d9:93:a8:37:9a:a1:d0:1c:06:5c:28:40:d2:02:94:
82:f4:90:5d:7b:e0:38:a9:55:39:07:50:f5:81:d5:18:f0:9f:
dd:c1:3f:49:d8:e5:6e:0f:1c:97:3b:88:07:24:ba:76:9b:ec:
e8:95:4a:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:55 2023 by rpki-client on console-fra.rpki-client.org