Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/GX9On6ZJj2pqqvyeylIKstN4tWs.roa
File: GX9On6ZJj2pqqvyeylIKstN4tWs.roa (raw, json)
Hash identifier: t2dwk2uSRHiGLIuwJNYbT2U2d/HfMZKtQkWIqtH9vPc=
Subject key identifier: 19:7F:4E:9F:A6:49:8F:6A:6A:AA:FC:9E:CA:52:0A:B2:D3:78:B5:6B
Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0
Certificate serial: 01927191C7B0FA658D64339EC5FC6C8428F5
Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/GX9On6ZJj2pqqvyeylIKstN4tWs.roa
Signing time: Wed 09 Oct 2024 13:57:12 +0000
ROA not before: Wed 09 Oct 2024 13:57:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 20473
IP address blocks: 37.202.205.0/24 maxlen: 24
37.202.212.0/23 maxlen: 24
Validation: Failed, certificate revoked on Fri 11 Oct 2024 17:10:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:71:91:c7:b0:fa:65:8d:64:33:9e:c5:fc:6c:84:28:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0
Validity
Not Before: Oct 9 13:57:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=197f4e9fa6498f6a6aaafc9eca520ab2d378b56b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:34:a2:b2:49:5d:46:ff:75:6d:fa:08:c1:c6:
92:6b:cd:ab:3c:67:24:c8:e1:a0:85:96:d2:74:15:
3d:48:a6:7d:7a:fa:ba:86:3f:5d:70:19:03:7a:76:
f3:39:82:80:ea:3b:19:0f:30:bb:b1:7b:f2:71:40:
73:ec:3f:f3:4b:88:66:f5:de:3d:62:52:fa:e1:d8:
93:c2:a6:f0:f1:37:a4:29:22:fb:59:f5:8d:8c:80:
03:bf:e9:d4:ed:74:45:0c:05:53:38:2b:c1:9b:ce:
bb:ad:91:14:fb:0c:0a:2f:fa:d5:8f:b2:78:4e:13:
d9:05:fe:64:4e:ae:7b:b3:33:02:94:0c:5c:24:7f:
cc:64:8b:d9:18:7d:ac:a9:96:cd:ba:00:b0:0d:31:
ff:80:79:f1:c3:6c:43:95:99:af:41:9b:bd:75:11:
90:00:94:6b:30:40:c0:08:ee:5b:00:4b:a3:10:01:
31:56:6a:43:5d:3b:f8:a6:83:a7:57:a8:04:f8:36:
fc:56:ad:40:19:ec:fc:db:b1:97:db:d9:f5:ef:43:
e3:b0:ab:81:60:71:47:1d:21:2f:70:ad:d3:7c:6e:
ab:ea:eb:29:08:28:0b:b1:9f:cf:01:ec:f5:e9:e5:
d8:08:19:8b:32:0c:55:8e:16:10:42:9e:00:d9:8a:
bd:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:7F:4E:9F:A6:49:8F:6A:6A:AA:FC:9E:CA:52:0A:B2:D3:78:B5:6B
X509v3 Authority Key Identifier:
keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/GX9On6ZJj2pqqvyeylIKstN4tWs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.202.205.0/24
37.202.212.0/23
Signature Algorithm: sha256WithRSAEncryption
52:1e:d5:9c:6b:5e:a9:10:bc:40:f8:fa:ca:9a:36:31:09:9a:
6d:42:e8:4d:f9:9f:3f:f7:c5:f8:7a:50:8e:19:8d:84:1e:ac:
f7:31:77:ee:12:df:d7:4c:62:96:8c:cd:03:4c:60:1d:e9:6c:
e4:22:c5:55:d2:83:14:2e:38:0c:a8:4b:64:dd:b4:90:f2:9a:
f3:d7:8e:f0:05:25:bd:4e:dc:53:ae:9f:79:52:98:61:63:1f:
c4:f1:fc:24:92:52:a6:45:ef:93:fc:ef:89:f4:8a:f0:1d:3e:
09:e2:ce:37:02:95:19:ea:21:f1:de:db:f1:11:7f:20:dd:87:
15:01:f5:11:b9:8e:b2:86:10:ac:b5:ae:1d:1f:27:37:3c:0e:
fe:63:5a:87:f3:f7:e4:31:90:dc:4d:4a:19:1d:2c:dc:b9:68:
ff:27:a2:0e:68:63:26:0d:3b:e1:47:81:81:b5:09:56:f3:c9:
b4:25:7e:c9:a7:b7:21:5a:89:72:20:b4:b1:e0:3e:a2:6d:15:
54:b2:ee:28:43:a6:20:19:9a:35:66:4a:7a:ee:9b:6f:77:84:
d7:73:b2:f0:72:c1:e1:64:38:ec:d6:6e:7f:f9:86:ad:65:6d:
b6:df:3c:d0:12:33:77:b9:5c:30:84:d8:4b:63:0b:95:4f:aa:
7f:2a:8b:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Oct 11 18:49:55 2024 by rpki-client on console-fra.rpki-client.org