Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/LDYOn1EWJXGUAeUVsp9q0FqpmpQ.roa
File: LDYOn1EWJXGUAeUVsp9q0FqpmpQ.roa (raw, json)
Hash identifier: I0h2KbrmZkvClIWQX1xYWlNZtdlpMlJknH8K4dbRgSw=
Subject key identifier: 2C:36:0E:9F:51:16:25:71:94:01:E5:15:B2:9F:6A:D0:5A:A9:9A:94
Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0
Certificate serial: 01930C7B8372D7DC71BC61A4B96D07C174D0
Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/LDYOn1EWJXGUAeUVsp9q0FqpmpQ.roa
Signing time: Fri 08 Nov 2024 15:54:01 +0000
ROA not before: Fri 08 Nov 2024 15:54:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 37.202.208.0/23 maxlen: 24
Validation: Failed, certificate revoked on Sat 09 Nov 2024 11:09:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:0c:7b:83:72:d7:dc:71:bc:61:a4:b9:6d:07:c1:74:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0
Validity
Not Before: Nov 8 15:54:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2c360e9f511625719401e515b29f6ad05aa99a94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:90:35:b2:8f:41:bd:56:21:76:2c:05:77:07:
ad:59:11:63:43:53:51:4f:b6:f0:f1:14:fd:77:f1:
8d:40:48:d9:1d:7c:f2:26:49:51:e3:d3:52:d0:27:
1b:78:e4:8d:be:f5:51:da:d1:89:b0:07:02:34:f5:
3c:f4:16:b3:97:b4:6e:13:d3:dd:a6:2b:67:46:a1:
f7:c7:98:33:d7:24:c7:22:f4:a9:24:70:10:73:2b:
68:09:6d:39:2b:c0:a8:f9:42:cb:f8:48:3d:f3:3a:
10:fe:af:34:6a:05:10:a3:86:ed:9b:5f:2b:fa:2c:
65:e1:c3:6b:49:17:e1:6b:83:4f:74:8c:4a:89:f4:
81:21:be:01:7f:f1:28:7b:21:d7:9f:cf:ee:1f:4d:
38:cf:5a:80:3b:55:a2:8e:44:70:65:c0:d1:d2:47:
2b:56:6b:30:55:d7:a6:6c:a7:76:32:30:90:27:75:
f1:51:14:b1:df:8c:f3:13:6b:78:4a:40:06:bd:a6:
ae:96:13:d2:ea:ef:4c:a7:1e:d0:fb:6a:08:f2:91:
c2:38:76:72:61:39:b0:8d:3b:f8:13:e6:cd:22:48:
42:71:c4:9d:68:42:5d:59:50:4c:5c:bd:04:cc:d7:
e0:49:b3:ed:69:5f:34:9b:60:e6:7d:7d:f8:f5:b0:
15:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:36:0E:9F:51:16:25:71:94:01:E5:15:B2:9F:6A:D0:5A:A9:9A:94
X509v3 Authority Key Identifier:
keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/LDYOn1EWJXGUAeUVsp9q0FqpmpQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.202.208.0/23
Signature Algorithm: sha256WithRSAEncryption
ad:4a:b2:b7:74:42:35:26:94:af:0a:c2:a4:d2:66:5d:a5:65:
a9:35:fb:e6:51:34:e5:55:e6:73:1e:70:93:80:55:68:81:9f:
96:72:b4:4f:14:12:29:78:33:03:3a:29:2e:47:e1:6a:ad:4f:
ee:8f:83:bd:f9:b1:af:24:8e:41:c3:b4:74:c6:af:22:0c:fe:
1f:e8:d2:71:47:a2:61:a1:3b:6c:87:b4:75:ef:bd:60:d3:53:
f2:33:ca:d1:f4:f5:ed:97:b3:cd:7f:a6:1e:13:80:e5:08:b3:
b1:fa:0c:e6:1b:58:11:19:c8:23:4e:35:ac:db:f0:e3:6a:21:
f3:81:ac:5e:5f:d5:a5:b7:1a:90:95:f0:6b:ab:06:95:67:fe:
da:4c:59:1f:ec:a9:67:bb:9c:b8:79:ef:14:e5:44:58:e1:db:
93:2e:0b:6f:93:53:98:04:be:11:2f:55:f2:f1:04:bc:c9:cb:
f3:77:d4:38:0a:ec:54:77:28:17:48:62:6e:88:f8:a9:e5:79:
f1:01:00:40:19:22:75:1c:4e:f8:ad:82:b8:be:30:86:f4:58:
ab:c1:8b:dd:28:1a:a7:a6:19:e9:01:df:c1:99:ce:26:bb:41:
cc:c1:b8:32:4f:ff:00:bb:a0:df:b5:b1:b5:28:21:37:57:32:
36:be:cc:01
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZMMe4Ny19xxvGGkuW0HwXTQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM2NjI2NmY0NjZmYjI0OThhMzk0NTliMzM1MmRhMjUxNTFh
NWE0YzAwHhcNMjQxMTA4MTU1NDAxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyYzM2MGU5ZjUxMTYyNTcxOTQwMWU1MTViMjlmNmFkMDVhYTk5YTk0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3JA1so9BvVYhdiwFdwetWRFjQ1NR
T7bw8RT9d/GNQEjZHXzyJklR49NS0CcbeOSNvvVR2tGJsAcCNPU89Bazl7RuE9Pd
pitnRqH3x5gz1yTHIvSpJHAQcytoCW05K8Co+ULL+Eg98zoQ/q80agUQo4btm18r
+ixl4cNrSRfha4NPdIxKifSBIb4Bf/EoeyHXn8/uH004z1qAO1WijkRwZcDR0kcr
VmswVdembKd2MjCQJ3XxURSx34zzE2t4SkAGvaaulhPS6u9Mpx7Q+2oI8pHCOHZy
YTmwjTv4E+bNIkhCccSdaEJdWVBMXL0EzNfgSbPtaV80m2DmfX349bAVlwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCw2Dp9RFiVxlAHlFbKfatBaqZqUMB8GA1UdIwQY
MBaAFMZiZvRm+ySYo5RZszUtolFRpaTAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveG1KbTlHYjdKSmlqbEZtek5TMmlVVkdscE1BLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS9mNDNiMWQtOWU1MC00NTUxLWFlNmEt
MTdiOWRlMTQxMjUyLzEvTERZT24xRVdKWEdVQWVVVnNwOXEwRnFwbXBRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS9mNDNiMWQtOWU1MC00NTUxLWFlNmEtMTdiOWRlMTQxMjUy
LzEveG1KbTlHYjdKSmlqbEZtek5TMmlVVkdscE1BLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBJcrQMA0G
CSqGSIb3DQEBCwUAA4IBAQCtSrK3dEI1JpSvCsKk0mZdpWWpNfvmUTTlVeZzHnCT
gFVogZ+WcrRPFBIpeDMDOikuR+FqrU/uj4O9+bGvJI5Bw7R0xq8iDP4f6NJxR6Jh
oTtsh7R1771g01PyM8rR9PXtl7PNf6YeE4DlCLOx+gzmG1gRGcgjTjWs2/DjaiHz
gaxeX9WltxqQlfBrqwaVZ/7aTFkf7Klnu5y4ee8U5URY4duTLgtvk1OYBL4RL1Xy
8QS8ycvzd9Q4CuxUdygXSGJuiPip5XnxAQBAGSJ1HE74rYK4vjCG9FirwYvdKBqn
phnpAd/Bmc4mu0HMwbgyT/8Au6DftbG1KCE3VzI2vswB
-----END CERTIFICATE-----
Generated at Sat Nov 9 13:42:22 2024 by rpki-client on console-fra.rpki-client.org