Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/226f04-f7db-491a-bafb-ee435d3cd585/1/p98uMNB5NI0ruk6PEDkbDulkirs.roa
File: p98uMNB5NI0ruk6PEDkbDulkirs.roa (raw, json)
Hash identifier: t6WFxjKBVu/S3RVdbeM/rB9RH/fXkyMZtPRMLqObSQ0=
Subject key identifier: A7:DF:2E:30:D0:79:34:8D:2B:BA:4E:8F:10:39:1B:0E:E9:64:8A:BB
Certificate issuer: /CN=0ef5cb2f590d041654f4dfdb60a28f9a1544f444
Certificate serial: 01856F26D853058500A012C53227C0713495
Authority key identifier: 0E:F5:CB:2F:59:0D:04:16:54:F4:DF:DB:60:A2:8F:9A:15:44:F4:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DvXLL1kNBBZU9N_bYKKPmhVE9EQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/226f04-f7db-491a-bafb-ee435d3cd585/1/p98uMNB5NI0ruk6PEDkbDulkirs.roa
Signing time: Sun 01 Jan 2023 21:04:54 +0000
ROA not before: Sun 01 Jan 2023 21:04:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29802
IP address blocks: 37.1.208.0/21 maxlen: 21
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:29:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:26:d8:53:05:85:00:a0:12:c5:32:27:c0:71:34:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ef5cb2f590d041654f4dfdb60a28f9a1544f444
Validity
Not Before: Jan 1 21:04:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a7df2e30d079348d2bba4e8f10391b0ee9648abb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:66:f7:2b:08:4b:78:91:31:ec:a4:83:eb:9a:
b3:af:35:dd:70:c9:66:3b:e0:93:ba:eb:8d:85:0a:
5c:1a:92:56:df:ff:6c:c1:26:ef:5b:02:d0:0a:2e:
de:b7:9d:29:74:68:48:86:a0:f8:90:a6:83:61:c2:
fd:f8:ba:ef:b5:9f:3c:9b:b3:f3:51:20:ee:44:07:
cc:32:8f:83:21:4f:bd:2c:97:29:6d:94:dd:a1:85:
21:6b:26:68:c2:3a:d5:b5:28:c4:5b:05:35:55:0b:
a2:97:33:61:5f:36:af:50:2a:e8:0a:d5:00:1f:ea:
41:f2:1c:ea:a8:1f:2e:09:db:74:ae:b6:14:7c:f7:
b0:c0:75:49:3e:59:43:42:4e:ff:3b:03:28:c6:10:
a2:8a:e9:63:37:41:d8:73:58:9d:de:bf:2c:29:21:
8b:45:47:cb:65:65:94:a1:de:9d:57:86:1d:ea:43:
54:db:4e:41:5e:ef:cc:cd:20:e2:51:7a:a8:85:41:
41:95:4d:6e:a2:e5:8c:24:5b:ec:30:87:01:f0:a3:
1f:a6:18:a6:a2:04:bd:32:b4:cf:15:32:03:76:98:
f2:95:fa:39:d4:69:c8:7a:3d:c9:1c:67:ed:af:ba:
a0:61:e3:48:70:d6:82:3b:49:42:8e:b3:8a:ad:73:
a6:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:DF:2E:30:D0:79:34:8D:2B:BA:4E:8F:10:39:1B:0E:E9:64:8A:BB
X509v3 Authority Key Identifier:
keyid:0E:F5:CB:2F:59:0D:04:16:54:F4:DF:DB:60:A2:8F:9A:15:44:F4:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DvXLL1kNBBZU9N_bYKKPmhVE9EQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/226f04-f7db-491a-bafb-ee435d3cd585/1/p98uMNB5NI0ruk6PEDkbDulkirs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/226f04-f7db-491a-bafb-ee435d3cd585/1/DvXLL1kNBBZU9N_bYKKPmhVE9EQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.1.208.0/21
Signature Algorithm: sha256WithRSAEncryption
c9:45:99:92:e1:c8:b5:61:e5:94:47:b2:67:ca:51:0c:53:46:
2a:31:39:5d:56:62:44:b8:38:8f:ba:0a:7f:7a:de:af:1a:93:
20:94:4e:b1:89:c6:6b:45:95:b3:32:25:19:35:8b:e1:08:e4:
10:a2:8d:02:ee:47:cf:a7:b0:85:6d:0c:73:dc:fd:0e:60:d5:
99:c8:34:b0:07:92:37:42:3d:f8:55:ab:87:c9:34:86:5c:4d:
ae:04:d5:e2:5f:b5:d8:3d:39:1b:05:15:f4:e1:52:2c:0d:bb:
af:6e:45:95:69:02:67:d0:96:f1:5d:b3:6d:75:0c:59:89:ea:
b2:18:3d:90:5a:ee:37:81:d9:77:b2:12:72:b8:d8:b1:ac:1e:
41:30:f1:dc:8d:fc:31:5a:9b:04:de:b1:e1:90:ae:21:67:19:
e9:f2:24:1e:8e:63:f3:80:83:20:32:03:46:ed:33:09:42:6a:
cc:d1:85:b1:d2:f9:8b:37:22:91:67:e6:79:de:d4:10:8c:64:
36:45:f1:38:63:8a:86:0f:0d:1c:aa:74:e0:ea:a0:38:11:5a:
6b:24:38:85:88:f0:49:a6:67:dc:dc:88:2f:32:01:07:e7:c1:
4c:46:f2:1b:ab:62:ae:4a:d2:0b:47:1e:af:f7:08:19:25:6c:
0f:08:b4:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:42 2024 by rpki-client on console-ams.rpki-client.org