Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/KzogW-BKcmgdyw9qa7xUa5A4yFw.roa
File: KzogW-BKcmgdyw9qa7xUa5A4yFw.roa (raw, json)
Hash identifier: BRbb7554ZlJN2QRZKrZIXTBt5NccMlr9185ek/6PCzY=
Subject key identifier: 2B:3A:20:5B:E0:4A:72:68:1D:CB:0F:6A:6B:BC:54:6B:90:38:C8:5C
Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0
Certificate serial: 019289574A1DBED4BCBCAB7B23DE1E43816D
Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/KzogW-BKcmgdyw9qa7xUa5A4yFw.roa
Signing time: Mon 14 Oct 2024 04:44:12 +0000
ROA not before: Mon 14 Oct 2024 04:44:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49981
IP address blocks: 37.202.210.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 09 Nov 2024 11:09:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:89:57:4a:1d:be:d4:bc:bc:ab:7b:23:de:1e:43:81:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0
Validity
Not Before: Oct 14 04:44:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2b3a205be04a72681dcb0f6a6bbc546b9038c85c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:25:68:5e:cc:f7:5b:9e:37:8e:52:3e:9a:81:
68:71:f2:07:b6:f2:fd:2f:77:f2:f4:c8:6a:5b:8c:
79:bc:bc:56:09:89:4d:7a:9c:dd:63:c9:9b:74:30:
3e:e9:d7:d8:b6:11:c7:29:04:31:ae:9d:5b:08:f8:
04:89:a8:98:eb:75:fb:8b:10:af:e9:3e:1b:c9:89:
ef:b6:ad:eb:60:55:54:a8:72:8e:8c:68:b8:df:dd:
3c:4b:7a:fd:79:f9:68:76:1a:5d:39:63:9f:83:89:
fe:6a:70:a7:cb:8b:ec:8f:44:66:ed:74:7d:bc:d2:
51:ef:d7:59:84:d5:ac:44:5f:fc:e1:9b:8f:6b:3d:
16:70:e6:7d:99:22:ef:ff:16:dd:e1:5c:26:6a:58:
69:30:d7:c0:f4:79:a2:93:65:92:20:9e:d3:a9:20:
8c:fc:de:da:9a:f4:2e:14:af:57:20:63:5c:7c:ca:
6a:f8:8f:e5:8e:5a:15:5b:92:48:aa:c8:f1:1e:38:
96:21:a8:ea:3b:62:c0:91:11:d0:a0:36:45:79:09:
66:9f:d9:a2:d5:97:99:53:a9:73:ef:8c:17:c2:60:
1e:27:e3:22:fa:98:48:dc:1c:b8:a8:ce:ae:7d:a7:
b1:79:9f:8c:ff:4a:ef:50:a5:c4:f2:55:eb:50:5b:
b9:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:3A:20:5B:E0:4A:72:68:1D:CB:0F:6A:6B:BC:54:6B:90:38:C8:5C
X509v3 Authority Key Identifier:
keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/KzogW-BKcmgdyw9qa7xUa5A4yFw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.202.210.0/24
Signature Algorithm: sha256WithRSAEncryption
81:15:0d:9a:1c:38:03:0d:6e:a5:4f:f3:83:c1:5b:31:76:25:
d8:fb:70:e7:b5:8b:29:48:1f:b5:fa:c3:90:ef:26:54:2a:75:
f8:d9:24:5e:2a:08:b6:54:4c:1a:ad:b8:ec:6a:5a:ab:80:d2:
58:51:bd:9a:5d:15:f5:b0:88:ff:0c:61:cf:dd:93:8b:2a:2e:
6e:bd:c9:62:33:26:c1:f0:af:0e:c7:ea:7b:7a:a7:c0:b7:31:
4d:92:25:3a:59:7f:24:a5:26:08:c6:b9:2d:87:9c:6e:f7:29:
e2:37:07:37:98:2c:2a:06:a4:11:a8:69:5d:3c:a1:5b:05:92:
7c:85:27:a4:bb:ff:34:29:a6:04:c9:97:1c:c6:53:c4:12:41:
15:4f:0e:5a:05:90:58:0c:9e:1e:1a:5f:1e:64:82:8f:5a:f7:
68:00:94:04:21:4b:20:5b:a9:67:d9:f2:5c:07:19:27:b2:e9:
c1:66:1d:31:2a:b4:ff:29:29:51:c5:f7:86:6f:d0:9b:99:56:
29:7c:e8:6c:7d:fe:eb:ba:84:28:ca:88:d1:a5:a2:9d:37:e6:
b5:ee:b9:ea:40:9e:f9:6e:c9:d7:ab:fc:ec:2d:a6:33:b3:ef:
c2:07:36:f6:a9:6c:4b:36:48:1b:5c:63:a1:0b:0d:2a:4d:87:
16:a4:3f:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 9 13:42:22 2024 by rpki-client on console-fra.rpki-client.org