Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/dc7030-78cc-4800-888d-1427dd16efa4/1/EoAseyQwTRKoFG5GMgHQagXtczc.roa
File: EoAseyQwTRKoFG5GMgHQagXtczc.roa (raw, json)
Hash identifier: STscvxt/3Xc0GKGt/n1L1EK2VQmW14OmhLvc4eZvXoc=
Subject key identifier: 12:80:2C:7B:24:30:4D:12:A8:14:6E:46:32:01:D0:6A:05:ED:73:37
Certificate issuer: /CN=2e368b0aec6c7fd48d0d96b4077a23f906a86a48
Certificate serial: 018BEC904BBD4A356BF31189F65637C89914
Authority key identifier: 2E:36:8B:0A:EC:6C:7F:D4:8D:0D:96:B4:07:7A:23:F9:06:A8:6A:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LjaLCuxsf9SNDZa0B3oj-Qaoakg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/dc7030-78cc-4800-888d-1427dd16efa4/1/EoAseyQwTRKoFG5GMgHQagXtczc.roa
Signing time: Mon 20 Nov 2023 11:49:21 +0000
ROA not before: Mon 20 Nov 2023 11:49:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208485
IP address blocks: 37.140.253.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:ec:90:4b:bd:4a:35:6b:f3:11:89:f6:56:37:c8:99:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2e368b0aec6c7fd48d0d96b4077a23f906a86a48
Validity
Not Before: Nov 20 11:49:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=12802c7b24304d12a8146e463201d06a05ed7337
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:fd:36:30:bb:25:ed:2c:03:ef:a2:ce:d9:b1:
34:b4:f3:6e:a2:21:2f:4a:e9:95:0d:8f:6a:9a:65:
0c:a8:1b:ed:1d:3e:b0:08:57:ed:bd:89:f8:1d:01:
74:41:35:1e:24:2b:62:49:8a:87:99:27:97:13:6a:
bf:fc:76:bc:75:b5:2f:a9:94:e9:1c:51:c7:78:5c:
69:92:88:14:8f:da:a9:f8:2f:e0:8b:1a:5f:c9:24:
5b:07:c7:be:9d:51:bc:49:bf:69:5d:4a:51:0d:75:
35:93:6c:d5:b9:6a:63:9f:39:0b:13:ec:2a:a8:b8:
0d:8a:02:a1:c8:2c:d6:f6:6d:6c:b0:e4:52:39:76:
eb:c5:c2:93:3e:e4:2f:a5:4e:6b:72:73:6d:0d:c3:
51:4c:52:2b:4b:74:52:ab:4f:44:79:17:7b:41:22:
1a:8a:7d:e2:ce:bf:bf:c6:8b:ce:2d:9a:2f:e9:4a:
eb:62:3d:5d:a2:57:80:83:3b:8b:1b:96:dd:8a:34:
65:ff:c5:42:e6:11:23:e0:c0:ea:70:ed:bf:69:8e:
fe:ae:be:66:fb:f6:5c:73:4c:6a:d0:82:ee:dc:d3:
33:be:a9:14:a4:3e:ed:91:6f:d7:19:14:dc:58:6e:
11:bf:9a:71:4b:9b:18:49:bc:07:a0:b1:dd:0e:f0:
f8:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:80:2C:7B:24:30:4D:12:A8:14:6E:46:32:01:D0:6A:05:ED:73:37
X509v3 Authority Key Identifier:
keyid:2E:36:8B:0A:EC:6C:7F:D4:8D:0D:96:B4:07:7A:23:F9:06:A8:6A:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LjaLCuxsf9SNDZa0B3oj-Qaoakg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/dc7030-78cc-4800-888d-1427dd16efa4/1/EoAseyQwTRKoFG5GMgHQagXtczc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/dc7030-78cc-4800-888d-1427dd16efa4/1/LjaLCuxsf9SNDZa0B3oj-Qaoakg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.140.253.0/24
Signature Algorithm: sha256WithRSAEncryption
08:45:c6:59:27:11:2b:a0:2e:6d:85:22:e1:8d:11:b7:0e:14:
9e:25:94:0f:92:80:95:09:fc:e2:20:ce:4d:e2:8f:5f:2d:5f:
f4:e5:84:50:0e:6d:b3:8f:fb:52:29:de:72:db:07:7d:fc:f5:
43:bf:ae:72:06:34:60:ec:07:6a:e7:e3:33:b6:49:c2:6f:d6:
21:fb:34:89:83:24:5a:a6:ac:8c:0b:0e:1b:89:be:89:79:70:
b8:a6:53:aa:8c:46:eb:cc:fa:04:6d:99:0a:93:fd:4f:90:08:
8f:4a:f9:eb:fe:de:ad:92:f7:a9:0c:c6:79:c6:6d:40:1f:06:
c6:fd:89:e0:0a:f9:43:56:b5:f3:f9:93:01:f6:7b:16:7c:f8:
6d:be:74:f1:2d:1e:6a:c9:bb:03:78:9e:b8:45:8f:99:03:f9:
4a:ad:75:2d:cf:bb:d0:a9:c9:6f:52:7e:54:e8:64:c7:c8:e7:
13:d6:78:87:a3:32:7f:79:af:da:e2:c5:03:b6:58:7f:1b:41:
23:b9:58:62:c2:7d:21:79:11:57:91:8b:e3:17:40:76:40:43:
a0:ab:7f:f0:68:c6:d7:16:c4:1d:76:f2:bf:37:f1:62:73:79:
89:cb:7f:a0:10:e1:a0:55:7f:ce:b2:d0:fa:d9:17:f1:97:58:
aa:15:f6:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 18:21:46 2024 by rpki-client on console-ams.rpki-client.org