Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/dAdQKh9L9IbyGxu3yN0xCV3BLrE.roa
File: dAdQKh9L9IbyGxu3yN0xCV3BLrE.roa (raw, json)
Hash identifier: EuCLkSQn/cmF7DmFeob9BAasObzxnP96esNynGGRFnw=
Subject key identifier: 74:07:50:2A:1F:4B:F4:86:F2:1B:1B:B7:C8:DD:31:09:5D:C1:2E:B1
Certificate issuer: /CN=f13533399f55eb52e6b2200c7cae4272b74d6464
Certificate serial: 018CCA28780B3FF15801DED75A6C3D0072C9
Authority key identifier: F1:35:33:39:9F:55:EB:52:E6:B2:20:0C:7C:AE:42:72:B7:4D:64:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/dAdQKh9L9IbyGxu3yN0xCV3BLrE.roa
Signing time: Tue 02 Jan 2024 12:31:38 +0000
ROA not before: Tue 02 Jan 2024 12:31:38 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216344
IP address blocks: 37.32.43.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 02 Jun 2024 15:55:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:28:78:0b:3f:f1:58:01:de:d7:5a:6c:3d:00:72:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f13533399f55eb52e6b2200c7cae4272b74d6464
Validity
Not Before: Jan 2 12:31:38 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7407502a1f4bf486f21b1bb7c8dd31095dc12eb1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:58:2d:03:97:87:0d:c3:e1:ee:d0:eb:31:67:
b6:d6:ba:45:e3:63:ea:fe:f2:e2:f5:d0:1c:d0:e8:
ff:b6:43:c1:62:36:2d:85:bd:af:de:2d:17:57:4c:
e9:31:f7:28:fa:20:60:d9:e3:23:69:ca:2f:f2:6c:
d1:f4:c9:e4:2e:b8:67:8c:b7:73:eb:99:71:4a:05:
76:36:64:7a:b4:51:ee:14:cb:01:ea:c6:ab:e9:c0:
7b:e6:04:1a:cb:a1:fb:a0:e8:46:96:70:9e:3a:32:
a7:b4:46:b0:86:b6:6e:bf:59:69:df:82:14:17:7c:
7f:89:57:83:7d:ae:bc:00:f7:8a:7b:97:35:4c:87:
24:65:e4:d3:19:e8:bb:50:8f:06:05:af:40:fd:60:
c0:75:c4:f1:16:c3:bc:63:ad:72:6a:cd:b0:7d:ae:
ca:54:de:bf:f7:4f:a3:16:3f:04:34:03:76:7c:4f:
34:69:30:67:06:e5:71:d4:4c:dd:c0:53:3a:2f:45:
81:26:dd:c9:be:0b:9d:1b:72:31:8e:ac:f9:3c:5f:
28:f1:9b:ba:19:5f:cc:06:df:41:22:de:f4:ad:f3:
21:af:ae:42:b1:10:7a:0a:3f:62:7d:b0:fd:b4:30:
b5:b4:1f:bc:2c:66:89:f8:bb:1e:05:e9:8f:38:b3:
36:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:07:50:2A:1F:4B:F4:86:F2:1B:1B:B7:C8:DD:31:09:5D:C1:2E:B1
X509v3 Authority Key Identifier:
keyid:F1:35:33:39:9F:55:EB:52:E6:B2:20:0C:7C:AE:42:72:B7:4D:64:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/dAdQKh9L9IbyGxu3yN0xCV3BLrE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.32.43.0/24
Signature Algorithm: sha256WithRSAEncryption
50:82:ff:1a:39:0c:5c:07:d7:27:88:02:67:a6:77:60:88:4a:
99:5a:05:34:a1:c6:05:69:3e:90:ae:de:8e:93:c2:ca:4b:40:
21:3f:b7:2f:f4:ce:02:59:0c:33:a2:5f:b3:94:24:ab:f9:cb:
2f:ae:7b:e5:6b:7b:15:98:4f:cf:e1:c3:39:d3:40:37:f4:80:
2b:68:00:43:4c:9a:07:52:a2:6a:b4:5a:0c:76:69:35:92:72:
94:48:16:50:39:7f:f7:a1:4a:d9:f6:ea:da:1d:93:10:ac:33:
97:2f:72:ca:d0:2f:05:69:f4:0a:3b:e4:3c:bb:fa:84:3d:0a:
de:c2:a3:b4:65:9d:1c:0f:4e:ed:10:2c:d3:6d:0d:69:ea:ad:
0b:bb:46:72:51:d9:ca:6c:4b:77:ee:bd:05:ed:8e:54:77:86:
f6:ad:b5:4e:4d:c5:2f:fc:c4:fd:14:f4:33:4d:21:2b:c3:b3:
8a:7e:4e:14:39:ab:84:42:48:55:bd:51:06:fa:a2:4a:07:d9:
ea:82:16:34:00:36:9b:96:47:08:be:42:fc:90:58:48:5a:db:
dc:76:0b:05:a0:70:26:65:6d:96:4f:be:e4:da:19:b2:0c:a1:
0f:01:4e:d6:98:f8:fd:f8:35:6b:46:83:77:ff:db:0b:c7:bc:
04:52:8a:81
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzKKHgLP/FYAd7XWmw9AHLJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYxMzUzMzM5OWY1NWViNTJlNmIyMjAwYzdjYWU0MjcyYjc0
ZDY0NjQwHhcNMjQwMTAyMTIzMTM4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NDA3NTAyYTFmNGJmNDg2ZjIxYjFiYjdjOGRkMzEwOTVkYzEyZWIxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlVgtA5eHDcPh7tDrMWe21rpF42Pq
/vLi9dAc0Oj/tkPBYjYthb2v3i0XV0zpMfco+iBg2eMjacov8mzR9MnkLrhnjLdz
65lxSgV2NmR6tFHuFMsB6sar6cB75gQay6H7oOhGlnCeOjKntEawhrZuv1lp34IU
F3x/iVeDfa68APeKe5c1TIckZeTTGei7UI8GBa9A/WDAdcTxFsO8Y61yas2wfa7K
VN6/90+jFj8ENAN2fE80aTBnBuVx1EzdwFM6L0WBJt3JvgudG3Ixjqz5PF8o8Zu6
GV/MBt9BIt70rfMhr65CsRB6Cj9ifbD9tDC1tB+8LGaJ+LseBemPOLM2cQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHQHUCofS/SG8hsbt8jdMQldwS6xMB8GA1UdIwQY
MBaAFPE1MzmfVetS5rIgDHyuQnK3TWRkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOFRVek9aOVY2MUxtc2lBTWZLNUNjcmROWkdRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi84NDRlZWItY2RmMS00N2YxLWJjZmEt
OTg5MTY2ODgxOTY5LzEvZEFkUUtoOUw5SWJ5R3h1M3lOMHhDVjNCTHJFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Mi84NDRlZWItY2RmMS00N2YxLWJjZmEtOTg5MTY2ODgxOTY5
LzEvOFRVek9aOVY2MUxtc2lBTWZLNUNjcmROWkdRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAJSArMA0G
CSqGSIb3DQEBCwUAA4IBAQBQgv8aOQxcB9cniAJnpndgiEqZWgU0ocYFaT6Qrt6O
k8LKS0AhP7cv9M4CWQwzol+zlCSr+csvrnvla3sVmE/P4cM500A39IAraABDTJoH
UqJqtFoMdmk1knKUSBZQOX/3oUrZ9uraHZMQrDOXL3LK0C8FafQKO+Q8u/qEPQre
wqO0ZZ0cD07tECzTbQ1p6q0Lu0ZyUdnKbEt37r0F7Y5Ud4b2rbVOTcUv/MT9FPQz
TSErw7OKfk4UOauEQkhVvVEG+qJKB9nqghY0ADablkcIvkL8kFhIWtvcdgsFoHAm
ZW2WT77k2hmyDKEPAU7WmPj9+DVrRoN3/9sLx7wEUoqB
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:29 2024 by rpki-client on console-fra.rpki-client.org