Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/ut2wnCTdHLMZLL3sQYnr2nYegWw.roa
File: ut2wnCTdHLMZLL3sQYnr2nYegWw.roa (raw, json)
Hash identifier: SGDFpG1tSUd4Sz8fAjRM5s1Z2vuEZC+D537ttuDxuv0=
Subject key identifier: BA:DD:B0:9C:24:DD:1C:B3:19:2C:BD:EC:41:89:EB:DA:76:1E:81:6C
Certificate issuer: /CN=f13533399f55eb52e6b2200c7cae4272b74d6464
Certificate serial: 0193B07782AB81A6C7EED3C633D1135F3AC1
Authority key identifier: F1:35:33:39:9F:55:EB:52:E6:B2:20:0C:7C:AE:42:72:B7:4D:64:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/ut2wnCTdHLMZLL3sQYnr2nYegWw.roa
Signing time: Tue 10 Dec 2024 12:07:22 +0000
ROA not before: Tue 10 Dec 2024 12:07:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214515
IP address blocks: 37.32.41.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 03:48:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:b0:77:82:ab:81:a6:c7:ee:d3:c6:33:d1:13:5f:3a:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f13533399f55eb52e6b2200c7cae4272b74d6464
Validity
Not Before: Dec 10 12:07:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=baddb09c24dd1cb3192cbdec4189ebda761e816c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:a3:a1:ed:f9:f7:fc:dc:16:4e:a7:b2:dc:69:
7c:b5:92:23:3d:8d:23:fc:d8:08:15:51:66:21:3b:
5e:74:77:fe:7a:79:ca:c9:91:6e:9d:72:7d:1f:83:
6c:0d:b4:bd:bb:47:7d:57:18:a7:e8:12:3d:b9:4d:
8d:09:fa:ce:8d:bc:8c:a3:7e:df:bb:77:f7:4c:77:
56:6a:de:47:11:ff:e6:99:87:57:3a:a9:05:38:11:
40:a1:90:c6:2c:e0:20:3b:46:c6:ae:bf:bc:1c:9b:
ab:59:6b:d4:3f:6b:ec:58:53:59:aa:8c:90:3a:dc:
04:25:ec:d8:c5:17:67:97:47:69:93:e9:0c:d8:48:
a3:2e:74:8f:97:bb:64:b3:65:aa:29:83:32:a9:7f:
eb:a9:7b:e7:7d:e7:6f:c0:31:25:7e:e1:96:2b:81:
b1:66:ff:f5:92:81:8e:2f:d3:76:ae:e4:77:7f:04:
99:d0:75:26:d3:aa:4c:04:c2:63:db:1f:b0:54:ca:
59:8a:d8:05:c7:3b:76:7b:a9:80:d3:ca:eb:c7:c3:
8b:38:f9:e3:e2:d0:52:bb:02:78:71:d5:47:23:63:
ad:b4:b0:de:fc:53:29:68:4a:f4:18:63:50:e2:62:
0a:74:48:07:ad:3e:0d:99:be:36:41:e0:9f:48:38:
f7:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:DD:B0:9C:24:DD:1C:B3:19:2C:BD:EC:41:89:EB:DA:76:1E:81:6C
X509v3 Authority Key Identifier:
keyid:F1:35:33:39:9F:55:EB:52:E6:B2:20:0C:7C:AE:42:72:B7:4D:64:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/ut2wnCTdHLMZLL3sQYnr2nYegWw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.32.41.0/24
Signature Algorithm: sha256WithRSAEncryption
91:4a:6e:06:89:50:b1:0c:43:07:06:23:2a:61:70:d4:13:b7:
a2:23:87:5e:6a:d4:56:3e:24:73:37:b3:3c:ba:42:35:bc:ae:
34:f2:8f:13:28:ce:56:19:b6:ca:84:e3:d6:ed:7a:88:74:ee:
99:c0:40:3a:05:3b:2e:52:e1:73:0d:c8:ae:6d:35:c2:0c:5e:
14:06:d4:8c:74:ca:91:c3:28:ba:81:61:d3:16:a7:6b:2c:c0:
3c:5e:f0:e5:7d:44:46:95:d0:27:8d:01:72:b7:03:e5:dc:a1:
47:ba:2e:99:e9:05:e8:17:c1:d2:79:ab:88:aa:37:57:0b:3b:
31:38:35:95:a4:b8:a8:08:cc:ce:5a:0d:ae:b1:49:8d:a3:9e:
6b:2c:b3:58:84:d3:4d:58:96:c2:bb:f1:5e:8c:99:1b:c5:1c:
bc:ff:33:30:fb:3e:a5:f4:e9:39:81:74:db:43:4b:f8:53:ad:
1e:7e:72:0f:74:e3:86:b6:b2:a6:77:97:d1:ff:8e:42:13:f2:
e7:5d:42:ac:c5:50:60:15:2c:11:12:17:3c:e7:29:5a:0e:8a:
31:1b:8f:84:f6:ac:d0:b6:06:d0:71:22:95:aa:27:82:bd:82:
03:5a:5f:c0:c7:a4:19:e9:f1:fb:79:ae:5a:7c:d9:0c:a3:c4:
64:3e:84:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 01:55:29 2025 by rpki-client