Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/wmVcsdI5pXxmjqEYqZcBGUiteJM.roa
File: wmVcsdI5pXxmjqEYqZcBGUiteJM.roa (raw, json)
Hash identifier: ALQGNH0NNS/4FR3YVQ2qOtwf0FQOzF7j/uykV+gxKCk=
Subject key identifier: C2:65:5C:B1:D2:39:A5:7C:66:8E:A1:18:A9:97:01:19:48:AD:78:93
Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0
Certificate serial: 0193B5651C43B5BA5E1127669A3FB2894232
Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/wmVcsdI5pXxmjqEYqZcBGUiteJM.roa
Signing time: Wed 11 Dec 2024 11:05:22 +0000
ROA not before: Wed 11 Dec 2024 11:05:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 20473
IP address blocks: 37.202.203.0/24 maxlen: 24
37.202.217.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 13 Dec 2024 06:44:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:b5:65:1c:43:b5:ba:5e:11:27:66:9a:3f:b2:89:42:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0
Validity
Not Before: Dec 11 11:05:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c2655cb1d239a57c668ea118a997011948ad7893
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:46:61:73:25:ab:4d:22:d2:df:c0:d7:5b:0f:
63:15:b3:a0:a9:0e:9a:e4:be:23:ce:91:1e:72:52:
80:ac:c8:a4:fb:c6:f8:59:a2:a7:2d:05:5f:f1:1f:
3f:91:29:68:1f:13:6f:1f:fe:a4:d3:f5:89:56:2f:
c4:4e:b1:03:13:c0:7b:cb:7f:cf:91:5f:02:dc:79:
c5:35:5e:a9:0b:f2:f2:9e:88:48:32:e7:b1:06:a4:
62:57:f1:d5:23:0a:6b:49:d2:1e:3d:c4:b1:7a:0f:
ac:68:4f:b7:b4:0d:ed:d4:19:0e:d0:e4:c2:a1:e3:
5e:d5:55:36:8d:a9:a0:04:17:2f:8f:3a:ee:4e:98:
db:4f:93:92:4c:57:5c:b1:cf:e1:7b:2d:d1:4b:42:
ec:1e:bc:7b:02:fd:a9:31:f7:c9:10:44:fc:bc:03:
59:b2:1c:17:d0:f0:67:4a:77:ad:e9:7f:fc:c0:6a:
d8:63:94:e4:94:25:16:eb:0b:a9:fd:7e:fb:44:9e:
f9:92:dc:65:c7:e0:aa:70:6f:8f:ed:11:1a:ae:e2:
0a:ca:6f:59:1f:39:28:56:db:cd:26:c5:8f:85:1c:
10:51:a0:1d:79:09:55:6d:f5:20:76:39:d9:f5:60:
0f:57:d9:53:32:ba:2d:42:c2:7a:3b:c4:69:e1:09:
13:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:65:5C:B1:D2:39:A5:7C:66:8E:A1:18:A9:97:01:19:48:AD:78:93
X509v3 Authority Key Identifier:
keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/wmVcsdI5pXxmjqEYqZcBGUiteJM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.202.203.0/24
37.202.217.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:4d:fa:a4:ef:b7:f0:9d:07:5b:3f:88:b4:f6:3a:2c:1e:79:
24:a5:b9:8a:59:ce:1f:47:1c:99:a7:a6:9f:05:2f:d6:ae:95:
30:b7:e0:9a:c1:e2:e5:a8:87:81:e4:bb:81:16:7a:9e:ff:a3:
89:5d:ee:92:8b:6e:93:ba:19:8b:0f:43:dc:93:57:a4:99:cc:
85:b9:f1:c6:8a:4f:40:ee:95:19:61:e7:bc:51:bf:56:32:08:
9a:7b:4b:42:20:00:e4:a9:59:b4:bd:97:86:55:11:d1:7b:5d:
ed:3d:8e:b3:b0:eb:9a:ff:b9:1a:39:1f:48:7b:44:83:27:cf:
1d:76:bf:39:9a:16:ff:83:a1:f6:80:c8:82:bf:e7:21:e2:30:
d7:7a:65:93:9c:4b:90:4b:30:10:ea:4d:46:e4:85:b9:a5:3c:
0f:dd:35:2d:dd:9e:13:44:ab:b4:11:1a:1c:5f:c1:83:b7:a4:
cc:99:6c:aa:e0:f9:ba:e2:0e:ca:65:6c:2f:81:c0:f0:12:2e:
3d:ca:f1:75:ab:7c:72:89:3f:d5:ad:46:87:bf:e3:26:33:43:
be:14:3f:94:53:c2:96:f3:c7:36:72:62:71:99:38:8a:7f:74:
3b:68:62:59:e5:11:55:22:12:3d:19:34:05:16:82:72:31:f6:
61:e1:bf:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 10:25:04 2025 by rpki-client