Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/cb83b2-33b5-4560-8935-0a98048cdf72/1/R5Mo0kMk-q9m2uOnroDdSeigIWc.roa
File: R5Mo0kMk-q9m2uOnroDdSeigIWc.roa (raw, json)
Hash identifier: z/iI6Nju9uoCaEuhflO5sh0Up6mZzqtFaZ04vk3eEW4=
Subject key identifier: 47:93:28:D2:43:24:FA:AF:66:DA:E3:A7:AE:80:DD:49:E8:A0:21:67
Certificate issuer: /CN=02bbd4f865a12d79a09a034486ce61ba023882c7
Certificate serial: 018CC5BC41EDA6171E1914638EF5465259EC
Authority key identifier: 02:BB:D4:F8:65:A1:2D:79:A0:9A:03:44:86:CE:61:BA:02:38:82:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ArvU-GWhLXmgmgNEhs5hugI4gsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/cb83b2-33b5-4560-8935-0a98048cdf72/1/R5Mo0kMk-q9m2uOnroDdSeigIWc.roa
Signing time: Mon 01 Jan 2024 15:54:58 +0000
ROA not before: Mon 01 Jan 2024 15:54:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49581
IP address blocks: 37.77.48.0/21 maxlen: 21
2a00:c9e0::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:31:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:bc:41:ed:a6:17:1e:19:14:63:8e:f5:46:52:59:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=02bbd4f865a12d79a09a034486ce61ba023882c7
Validity
Not Before: Jan 1 15:54:58 2024 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=479328d24324faaf66dae3a7ae80dd49e8a02167
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:53:c6:3c:dd:e5:9d:78:fc:c9:cf:4e:c4:b6:
34:3c:37:64:3f:53:fe:b8:e6:b9:7e:ec:05:97:92:
72:15:65:58:2c:5b:35:7b:39:c8:94:4c:0d:f2:cd:
f3:61:a4:c9:55:a1:30:48:b6:d9:9e:3f:41:c1:a5:
bb:bc:8c:66:b3:e6:39:ad:61:f8:b2:23:be:eb:96:
a9:2c:7a:d8:2b:54:61:a2:57:a5:26:b6:70:ed:03:
ec:6c:7c:ca:c9:c8:4d:50:06:2b:16:0e:d8:11:f6:
d3:39:ba:74:da:46:aa:21:e4:48:7c:bc:66:dc:47:
69:4b:0b:c5:e9:84:e2:d7:14:38:8e:69:ee:6d:6b:
6d:fb:60:13:50:f0:7d:7f:a0:46:c6:d3:25:48:40:
a3:42:de:de:8c:07:9f:45:12:81:2b:3f:ae:78:e7:
20:f7:a6:03:69:05:c7:12:ac:00:b2:51:8c:c2:2d:
8c:d0:06:f1:cf:bc:3b:12:64:91:cb:65:49:1d:77:
fb:6e:66:64:59:b2:63:ff:ee:34:a0:72:a3:7c:88:
b3:b9:4f:ff:02:f3:b2:13:c6:33:c6:65:87:62:ff:
54:46:89:01:e8:f4:b9:20:8f:03:9f:8a:14:93:4d:
c7:ce:a5:f6:d3:32:a4:d7:b3:47:f3:ce:dd:71:0b:
48:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:93:28:D2:43:24:FA:AF:66:DA:E3:A7:AE:80:DD:49:E8:A0:21:67
X509v3 Authority Key Identifier:
keyid:02:BB:D4:F8:65:A1:2D:79:A0:9A:03:44:86:CE:61:BA:02:38:82:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ArvU-GWhLXmgmgNEhs5hugI4gsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/cb83b2-33b5-4560-8935-0a98048cdf72/1/R5Mo0kMk-q9m2uOnroDdSeigIWc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/cb83b2-33b5-4560-8935-0a98048cdf72/1/ArvU-GWhLXmgmgNEhs5hugI4gsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.77.48.0/21
IPv6:
2a00:c9e0::/29
Signature Algorithm: sha256WithRSAEncryption
45:ad:8d:08:7d:b5:f9:0a:c5:fd:ea:b9:14:6f:7e:32:3a:0e:
34:dd:76:3d:83:02:c4:e1:a3:c0:cb:ae:e0:52:50:0f:21:4e:
95:e1:0d:47:8b:91:0e:4b:39:aa:da:29:b4:b5:10:ac:5e:94:
de:f7:34:5c:f1:6b:45:b0:32:0a:7b:c2:1c:d2:2c:19:d9:27:
ae:58:46:02:d2:8b:d7:ad:3a:ce:97:19:b5:fb:e0:79:49:86:
1a:ae:51:db:99:bf:b8:a8:a6:95:a3:e9:4c:a8:60:50:66:27:
dc:16:91:c1:44:d8:3b:44:1b:cf:30:29:06:ab:98:28:17:fa:
f3:69:0a:6f:4b:b6:7b:7d:61:7e:2e:ba:aa:c8:bc:99:ac:a2:
98:bf:2c:c4:90:b2:69:09:12:e2:e7:fb:f4:6e:97:5d:d9:45:
a5:c9:cb:da:ee:bd:6b:db:d1:90:85:e1:b3:55:03:62:5c:3d:
da:f3:47:3e:a3:33:2e:bf:f6:07:c8:bd:0c:8a:2b:24:ca:e2:
ae:57:36:a1:e9:7b:28:d5:27:3e:51:fa:63:91:86:92:ea:d0:
db:49:9c:d8:cf:c3:94:d0:9c:e1:c2:93:5c:20:d4:e5:d5:ae:
e0:ab:e2:00:91:51:7f:94:ce:ef:16:89:33:df:5c:19:a6:81:
42:6f:cc:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:24 2024 by rpki-client on console-ams.rpki-client.org