Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/orRMsYxxPjjRuwFmkL3pgm_lPKI.roa
File: orRMsYxxPjjRuwFmkL3pgm_lPKI.roa (raw, json)
Hash identifier: /5xx9y4jytNJ8xyYovpOMeB7GNZT+fy3NGqjM7+f7Sw=
Subject key identifier: A2:B4:4C:B1:8C:71:3E:38:D1:BB:01:66:90:BD:E9:82:6F:E5:3C:A2
Certificate issuer: /CN=f13533399f55eb52e6b2200c7cae4272b74d6464
Certificate serial: 018576E205ACC1B8011C6DBC4F57A4578512
Authority key identifier: F1:35:33:39:9F:55:EB:52:E6:B2:20:0C:7C:AE:42:72:B7:4D:64:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/orRMsYxxPjjRuwFmkL3pgm_lPKI.roa
Signing time: Tue 03 Jan 2023 09:06:42 +0000
ROA not before: Tue 03 Jan 2023 09:06:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210818
IP address blocks: 37.32.43.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 04 Jan 2023 10:52:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:76:e2:05:ac:c1:b8:01:1c:6d:bc:4f:57:a4:57:85:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f13533399f55eb52e6b2200c7cae4272b74d6464
Validity
Not Before: Jan 3 09:06:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a2b44cb18c713e38d1bb016690bde9826fe53ca2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:6f:6c:d4:d7:bc:99:98:48:cb:32:0e:19:92:
1a:13:4a:22:85:41:85:40:3a:af:0d:54:d6:ac:f3:
38:97:13:52:ef:50:56:8f:b2:c7:77:ad:11:7d:7b:
14:10:0c:b6:b1:09:84:0b:da:15:bc:b4:5c:6e:d8:
53:62:73:a8:34:bc:44:cd:69:95:b8:bd:c8:43:c6:
d6:ad:92:4d:87:36:4a:e7:e0:93:ce:7f:72:f3:76:
24:8a:88:e9:38:36:b4:a4:9d:de:17:d1:4b:c2:9b:
31:83:28:f3:82:13:39:f7:02:28:7a:76:d0:1c:ba:
ff:fe:90:a7:11:1e:3b:2a:1d:38:ea:49:22:a7:48:
2e:c4:a2:b0:c1:66:e9:ca:b5:c4:46:a3:26:09:d0:
11:8c:57:72:fc:4a:2b:fc:dd:85:28:40:fa:55:fa:
8e:c6:dc:15:5d:99:4d:1c:63:c4:00:d7:8d:41:5c:
3d:3a:ca:d4:a1:f9:40:54:24:17:ec:97:21:16:fa:
aa:5f:11:cd:51:e4:39:17:b6:12:46:3e:dc:ff:44:
eb:7d:70:29:62:6f:8b:1f:07:7c:d3:7d:e8:92:ca:
04:42:4c:72:17:74:37:bd:93:6e:dc:c2:70:a7:05:
00:34:78:8a:bc:68:65:b0:aa:4a:da:c5:08:ca:36:
d8:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:B4:4C:B1:8C:71:3E:38:D1:BB:01:66:90:BD:E9:82:6F:E5:3C:A2
X509v3 Authority Key Identifier:
keyid:F1:35:33:39:9F:55:EB:52:E6:B2:20:0C:7C:AE:42:72:B7:4D:64:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/orRMsYxxPjjRuwFmkL3pgm_lPKI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.32.43.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:6d:b7:dd:07:07:4d:c4:78:a2:af:11:d9:fa:61:9a:ac:40:
51:3c:8c:22:9e:a4:15:4a:c3:38:32:f8:fc:04:dc:cf:0e:2d:
6c:73:d0:55:91:da:d0:95:20:b2:53:6f:d0:4a:96:e6:2e:ac:
0e:1e:86:e6:b5:42:c2:14:f2:0a:9d:8e:37:50:a0:1e:73:b5:
42:33:13:cf:ad:b7:8c:6c:7f:7d:da:92:be:2b:8a:1b:d8:2f:
68:84:4e:02:8a:8c:2e:46:0f:18:d5:05:2c:2e:d4:35:f1:3e:
5c:e1:c6:1c:d9:52:2c:25:39:77:56:b2:1d:dd:6d:8b:90:0d:
ba:61:94:65:cf:1f:87:8a:c0:72:58:5d:d3:1c:cc:a3:1c:42:
99:b7:dd:c2:48:1c:83:30:09:95:f6:28:d5:03:59:4b:e3:34:
24:85:1f:05:7d:0b:4b:4e:1f:a2:de:fe:22:01:08:c2:d8:20:
80:ea:1f:13:4c:68:75:47:e6:a6:f7:3b:f1:93:03:c0:bf:14:
e7:67:09:45:20:a4:1b:6c:17:dd:6e:43:25:5d:3e:05:d3:54:
26:33:b1:bb:a9:03:43:1b:1b:23:dd:4c:84:94:b2:cb:9e:4f:
6e:a2:b5:c8:8c:df:36:ee:b9:e5:c0:dd:c4:15:1e:df:15:61:
1a:58:3e:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:29 2024 by rpki-client on console-fra.rpki-client.org