Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/4oOoLfHsd2xjZBoJ87TLqsXyrSI.roa
File: 4oOoLfHsd2xjZBoJ87TLqsXyrSI.roa (raw, json)
Hash identifier: dIL5RD1rVJl0bFwMECw/eHKTuIA6AFiCIVAjMs7rLic=
Subject key identifier: E2:83:A8:2D:F1:EC:77:6C:63:64:1A:09:F3:B4:CB:AA:C5:F2:AD:22
Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0
Certificate serial: 01927192B226D149834FD9027ACED10BECB6
Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/4oOoLfHsd2xjZBoJ87TLqsXyrSI.roa
Signing time: Wed 09 Oct 2024 13:58:12 +0000
ROA not before: Wed 09 Oct 2024 13:58:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211750
IP address blocks: 37.202.206.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 09 Nov 2024 11:09:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:71:92:b2:26:d1:49:83:4f:d9:02:7a:ce:d1:0b:ec:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0
Validity
Not Before: Oct 9 13:58:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e283a82df1ec776c63641a09f3b4cbaac5f2ad22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:4f:98:a6:31:b9:f5:85:0f:b3:1f:22:ad:bf:
c8:2e:3f:8b:b7:12:95:a4:4f:e7:ff:68:01:69:55:
d9:39:9c:f3:d2:59:c8:b4:c2:68:8a:c5:28:c8:27:
2f:c8:11:cd:7e:38:84:b5:39:1f:de:38:31:a3:9a:
87:5b:de:4d:d3:cd:7e:05:33:a4:13:b5:37:6d:cb:
4a:cd:c8:93:9f:88:3c:b0:84:5e:b3:68:7e:b8:d1:
50:55:55:fd:b5:d1:94:96:b6:6c:29:a9:8f:d1:e3:
af:49:69:5a:2b:7a:80:6a:ab:59:b7:6c:90:b1:65:
7e:42:f3:75:da:2c:92:38:cb:f1:bb:fb:22:db:86:
2b:84:37:cb:8d:6c:2c:2f:89:89:0f:cc:1e:10:29:
e6:ad:80:e8:fe:a3:39:08:1d:27:cf:52:09:1f:8e:
9a:51:35:7e:21:94:ac:b7:6e:d7:9b:cd:7e:11:73:
94:b0:40:0a:e8:cf:9a:0d:25:e0:33:6e:b9:67:93:
b5:c9:2a:ab:80:fc:c1:f9:60:b8:9d:10:c2:87:96:
07:18:a1:08:50:ba:24:7e:1c:08:c4:53:b8:8f:de:
cb:d3:ef:91:14:70:85:37:d0:fa:2f:94:67:e7:df:
0c:db:d7:de:12:71:83:94:f6:56:e2:4a:4e:a0:7c:
13:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:83:A8:2D:F1:EC:77:6C:63:64:1A:09:F3:B4:CB:AA:C5:F2:AD:22
X509v3 Authority Key Identifier:
keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/4oOoLfHsd2xjZBoJ87TLqsXyrSI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.202.206.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:9e:9e:63:89:83:62:66:d5:d4:67:be:f0:ca:2c:9e:10:96:
12:84:84:8d:99:e3:4d:7f:8a:1b:70:09:d2:77:b0:07:ed:4c:
43:0c:10:b1:29:c6:bb:d8:ce:a8:88:a1:2f:34:50:b2:f2:a1:
d4:9e:d6:7e:9b:7d:f6:09:d0:be:a7:ab:16:88:99:c8:f1:c3:
29:ce:9a:5a:23:dc:98:f3:50:5d:47:a9:5e:d8:2d:03:0f:fa:
b2:7f:0f:86:3a:4f:d9:3e:a5:1e:de:76:f5:80:47:58:04:fc:
24:f1:49:61:65:94:dc:3f:f9:b5:60:d7:c1:99:2b:b4:01:11:
e5:2b:e6:ad:c5:69:27:42:e1:45:b1:31:b9:20:24:12:ad:08:
d8:26:61:75:0b:88:0d:a2:39:0a:90:49:66:5f:bf:dd:aa:bb:
44:c5:4b:91:cf:fe:64:7a:24:bf:6b:15:58:d8:75:b4:25:e1:
e3:e3:87:eb:88:6b:09:6b:39:28:ca:dd:00:97:75:7e:d0:e3:
12:88:6b:c4:bd:3b:6b:46:42:f5:69:ff:e2:53:90:6e:62:0d:
15:29:be:5f:93:37:80:cb:f6:f2:2c:60:94:92:a5:56:77:0e:
dc:38:c3:03:ab:21:15:6f:78:27:28:bb:50:bc:11:9d:20:71:
9d:e9:4b:69
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZJxkrIm0UmDT9kCes7RC+y2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM2NjI2NmY0NjZmYjI0OThhMzk0NTliMzM1MmRhMjUxNTFh
NWE0YzAwHhcNMjQxMDA5MTM1ODEyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlMjgzYTgyZGYxZWM3NzZjNjM2NDFhMDlmM2I0Y2JhYWM1ZjJhZDIyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmk+YpjG59YUPsx8irb/ILj+LtxKV
pE/n/2gBaVXZOZzz0lnItMJoisUoyCcvyBHNfjiEtTkf3jgxo5qHW95N081+BTOk
E7U3bctKzciTn4g8sIRes2h+uNFQVVX9tdGUlrZsKamP0eOvSWlaK3qAaqtZt2yQ
sWV+QvN12iySOMvxu/si24YrhDfLjWwsL4mJD8weECnmrYDo/qM5CB0nz1IJH46a
UTV+IZSst27Xm81+EXOUsEAK6M+aDSXgM265Z5O1ySqrgPzB+WC4nRDCh5YHGKEI
ULokfhwIxFO4j97L0++RFHCFN9D6L5Rn598M29feEnGDlPZW4kpOoHwToQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOKDqC3x7HdsY2QaCfO0y6rF8q0iMB8GA1UdIwQY
MBaAFMZiZvRm+ySYo5RZszUtolFRpaTAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveG1KbTlHYjdKSmlqbEZtek5TMmlVVkdscE1BLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS9mNDNiMWQtOWU1MC00NTUxLWFlNmEt
MTdiOWRlMTQxMjUyLzEvNG9Pb0xmSHNkMnhqWkJvSjg3VExxc1h5clNJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS9mNDNiMWQtOWU1MC00NTUxLWFlNmEtMTdiOWRlMTQxMjUy
LzEveG1KbTlHYjdKSmlqbEZtek5TMmlVVkdscE1BLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAJcrOMA0G
CSqGSIb3DQEBCwUAA4IBAQCKnp5jiYNiZtXUZ77wyiyeEJYShISNmeNNf4obcAnS
d7AH7UxDDBCxKca72M6oiKEvNFCy8qHUntZ+m332CdC+p6sWiJnI8cMpzppaI9yY
81BdR6le2C0DD/qyfw+GOk/ZPqUe3nb1gEdYBPwk8UlhZZTcP/m1YNfBmSu0ARHl
K+atxWknQuFFsTG5ICQSrQjYJmF1C4gNojkKkElmX7/dqrtExUuRz/5keiS/axVY
2HW0JeHj44friGsJazkoyt0Al3V+0OMSiGvEvTtrRkL1af/iU5BuYg0VKb5fkzeA
y/byLGCUkqVWdw7cOMMDqyEVb3gnKLtQvBGdIHGd6Utp
-----END CERTIFICATE-----
Generated at Sat Nov 9 13:42:22 2024 by rpki-client on console-fra.rpki-client.org