Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/f26f62-ffa2-4170-be4f-983d4da13447/1/WzMqLxsOpynyMw0uYDQyZVYKH58.roa
File: WzMqLxsOpynyMw0uYDQyZVYKH58.roa (raw, json)
Hash identifier: b+NRjiuOE8dt+3M3JDi9r7Hw6DV0nQAYbED99+OFxVY=
Subject key identifier: 5B:33:2A:2F:1B:0E:A7:29:F2:33:0D:2E:60:34:32:65:56:0A:1F:9F
Certificate issuer: /CN=b61bc97b98276eb3babd9e7aa67e2705ae11e658
Certificate serial: 018F771E4DB7CDB3C8A7AE85D568B6C77040
Authority key identifier: B6:1B:C9:7B:98:27:6E:B3:BA:BD:9E:7A:A6:7E:27:05:AE:11:E6:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/thvJe5gnbrO6vZ56pn4nBa4R5lg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/f26f62-ffa2-4170-be4f-983d4da13447/1/WzMqLxsOpynyMw0uYDQyZVYKH58.roa
Signing time: Tue 14 May 2024 12:40:25 +0000
ROA not before: Tue 14 May 2024 12:40:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207630
IP address blocks: 37.32.103.0/24 maxlen: 24
2a04:55c0::/29 maxlen: 32
Validation: Failed, certificate revoked on Mon 15 Jul 2024 16:09:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:77:1e:4d:b7:cd:b3:c8:a7:ae:85:d5:68:b6:c7:70:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b61bc97b98276eb3babd9e7aa67e2705ae11e658
Validity
Not Before: May 14 12:40:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5b332a2f1b0ea729f2330d2e60343265560a1f9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:75:9e:91:b7:b3:a1:54:40:ab:87:ee:00:94:
1b:ce:df:ce:96:77:ab:49:c4:c8:7c:34:fb:fa:3e:
cf:21:83:27:b2:49:34:cf:65:c0:19:80:2e:3b:36:
cd:d1:b5:26:13:d6:5f:19:1c:4d:9d:77:9c:46:1c:
41:e6:a7:ff:19:f2:fd:9e:fc:52:90:83:01:99:6e:
f3:fd:66:22:12:84:6a:1e:c7:6e:be:87:c0:de:ac:
01:f5:d7:b5:65:0d:18:d6:4b:b4:26:8f:c7:8a:ae:
35:b2:7e:41:0f:af:f8:9c:90:44:43:5f:50:79:88:
45:03:d2:75:1a:15:11:3b:04:96:7b:62:16:db:6a:
3f:1d:48:d2:e2:8d:b5:0d:76:87:fc:eb:0c:c6:a4:
68:6d:d7:01:e1:29:37:61:3e:2e:81:cf:f7:54:25:
03:43:f9:e2:5a:2a:79:e4:77:2e:aa:19:c9:fb:3c:
3b:ea:18:19:ae:24:ad:a9:a1:7b:31:c8:21:46:95:
b6:86:73:f2:2b:7b:9a:a5:65:64:cb:a7:ae:71:a5:
af:3e:09:85:a4:78:e8:06:4a:72:18:c1:98:64:07:
76:e8:8d:31:03:00:70:a4:af:51:65:87:e6:89:11:
1a:3d:53:93:d0:2b:de:ea:cb:ce:b5:2c:4f:13:e1:
22:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:33:2A:2F:1B:0E:A7:29:F2:33:0D:2E:60:34:32:65:56:0A:1F:9F
X509v3 Authority Key Identifier:
keyid:B6:1B:C9:7B:98:27:6E:B3:BA:BD:9E:7A:A6:7E:27:05:AE:11:E6:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/thvJe5gnbrO6vZ56pn4nBa4R5lg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/f26f62-ffa2-4170-be4f-983d4da13447/1/WzMqLxsOpynyMw0uYDQyZVYKH58.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/f26f62-ffa2-4170-be4f-983d4da13447/1/thvJe5gnbrO6vZ56pn4nBa4R5lg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.32.103.0/24
IPv6:
2a04:55c0::/29
Signature Algorithm: sha256WithRSAEncryption
62:a6:67:cb:80:fe:02:1b:92:7e:ab:4f:93:6d:c6:bb:7d:15:
45:43:47:e5:79:97:24:e7:b1:5f:71:24:6a:c8:cf:d8:25:00:
c9:c5:d6:8b:8d:ec:e3:4b:8a:cc:70:dd:03:65:6b:cc:ed:8c:
ce:73:f9:6f:14:c5:52:26:a3:98:5e:36:f0:0d:35:7f:9c:b6:
99:3b:75:8f:79:21:31:ea:16:b9:6d:a4:3c:04:32:bd:b0:be:
f7:ad:47:60:33:40:a0:4f:b5:32:26:0f:75:d3:3c:13:d4:b8:
4e:d2:c4:60:b2:2e:23:e0:22:dd:fe:44:3a:0d:56:fe:a5:bd:
41:92:9f:a7:d4:94:32:c7:85:13:38:2e:9e:33:a5:04:f8:c6:
fb:36:90:9e:3f:5b:96:f5:d8:1b:2d:bd:cc:b1:e9:ec:9f:dc:
d2:81:b7:bc:95:5b:b8:99:12:54:b6:88:c5:20:a9:e4:6d:35:
cd:90:62:26:ec:9e:3a:74:d3:cc:7c:8a:9c:3d:f9:7c:8e:de:
98:3a:5e:1e:1b:85:e9:34:e9:3e:3a:34:39:e4:4c:6d:68:61:
1d:5b:8a:77:c1:ee:59:ec:84:dc:fc:8f:6c:6d:be:d0:c7:69:
85:00:9b:b0:a6:d0:57:9e:c7:6e:3b:d3:f2:37:a8:5f:7d:d3:
00:4f:27:36
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAY93Hk23zbPIp66F1Wi2x3BAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI2MWJjOTdiOTgyNzZlYjNiYWJkOWU3YWE2N2UyNzA1YWUx
MWU2NTgwHhcNMjQwNTE0MTI0MDI1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1YjMzMmEyZjFiMGVhNzI5ZjIzMzBkMmU2MDM0MzI2NTU2MGExZjlmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuHWekbezoVRAq4fuAJQbzt/Olner
ScTIfDT7+j7PIYMnskk0z2XAGYAuOzbN0bUmE9ZfGRxNnXecRhxB5qf/GfL9nvxS
kIMBmW7z/WYiEoRqHsduvofA3qwB9de1ZQ0Y1ku0Jo/Hiq41sn5BD6/4nJBEQ19Q
eYhFA9J1GhUROwSWe2IW22o/HUjS4o21DXaH/OsMxqRobdcB4Sk3YT4ugc/3VCUD
Q/niWip55HcuqhnJ+zw76hgZriStqaF7McghRpW2hnPyK3uapWVky6eucaWvPgmF
pHjoBkpyGMGYZAd26I0xAwBwpK9RZYfmiREaPVOT0Cve6svOtSxPE+EiTwIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFFszKi8bDqcp8jMNLmA0MmVWCh+fMB8GA1UdIwQY
MBaAFLYbyXuYJ26zur2eeqZ+JwWuEeZYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdGh2SmU1Z25ick82dlo1NnBuNG5CYTRSNWxnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yy9mMjZmNjItZmZhMi00MTcwLWJlNGYt
OTgzZDRkYTEzNDQ3LzEvV3pNcUx4c09weW55TXcwdVlEUXlaVllLSDU4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Yy9mMjZmNjItZmZhMi00MTcwLWJlNGYtOTgzZDRkYTEzNDQ3
LzEvdGh2SmU1Z25ick82dlo1NnBuNG5CYTRSNWxnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAJSBnMA0E
AgACMAcDBQMqBFXAMA0GCSqGSIb3DQEBCwUAA4IBAQBipmfLgP4CG5J+q0+Tbca7
fRVFQ0fleZck57FfcSRqyM/YJQDJxdaLjezjS4rMcN0DZWvM7YzOc/lvFMVSJqOY
XjbwDTV/nLaZO3WPeSEx6ha5baQ8BDK9sL73rUdgM0CgT7UyJg910zwT1LhO0sRg
si4j4CLd/kQ6DVb+pb1Bkp+n1JQyx4UTOC6eM6UE+Mb7NpCeP1uW9dgbLb3Msens
n9zSgbe8lVu4mRJUtojFIKnkbTXNkGIm7J46dNPMfIqcPfl8jt6YOl4eG4XpNOk+
OjQ55ExtaGEdW4p3we5Z7ITc/I9sbb7Qx2mFAJuwptBXnsduO9PyN6hffdMATyc2
-----END CERTIFICATE-----
Generated at Mon Jul 15 18:57:41 2024 by rpki-client on console-fra.rpki-client.org