Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/2RhzU1azzKVd3bb57Q_sTGxA0PU.roa
File: 2RhzU1azzKVd3bb57Q_sTGxA0PU.roa (raw, json)
Hash identifier: HiWRdKAPcBtA6oR5esTRQ0eo07chVP+SKVIa7QVn2VE=
Subject key identifier: D9:18:73:53:56:B3:CC:A5:5D:DD:B6:F9:ED:0F:EC:4C:6C:40:D0:F5
Certificate issuer: /CN=e8b3eed1c7aca636d6245852b802e0e73754df63
Certificate serial: 01856CE40CA6FF57DE0093247F74F51D53FA
Authority key identifier: E8:B3:EE:D1:C7:AC:A6:36:D6:24:58:52:B8:02:E0:E7:37:54:DF:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6LPu0cespjbWJFhSuALg5zdU32M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/2RhzU1azzKVd3bb57Q_sTGxA0PU.roa
Signing time: Sun 01 Jan 2023 10:32:42 +0000
ROA not before: Sun 01 Jan 2023 10:32:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 271932
IP address blocks: 37.148.216.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:29:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:e4:0c:a6:ff:57:de:00:93:24:7f:74:f5:1d:53:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8b3eed1c7aca636d6245852b802e0e73754df63
Validity
Not Before: Jan 1 10:32:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d918735356b3cca55dddb6f9ed0fec4c6c40d0f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:8c:b5:19:07:e5:2d:c2:3a:64:81:c6:f1:17:
e5:c6:49:80:e4:f3:77:41:7f:00:7e:8f:3d:93:91:
8d:49:47:4a:b1:f6:41:6f:ed:52:26:d8:bb:f0:03:
d0:f4:b7:50:95:df:99:73:9b:ef:53:1f:3c:e4:0d:
15:78:3e:ff:2b:4a:fa:66:a0:0e:8b:b5:30:20:f8:
e0:49:56:51:1d:37:1d:f5:9c:17:58:80:45:ca:29:
02:8a:de:dd:e1:35:69:e7:7a:95:69:9c:de:6b:17:
8f:3e:82:d8:ff:b6:83:61:d1:5a:75:7d:b0:9f:4d:
04:72:72:b7:1a:db:30:40:60:c8:e6:f1:f1:2d:64:
8b:6f:97:d7:ab:3b:08:2f:d3:5a:38:fc:36:5f:b1:
0b:f3:ab:d4:4d:1c:5a:ac:3a:32:5a:b4:57:a6:0e:
fa:fb:5a:29:e3:7a:42:13:b8:ce:fb:0e:a2:84:4d:
47:a1:3c:60:8d:26:c1:73:85:89:83:5f:41:1f:42:
75:bb:3e:c8:8a:69:c7:32:55:82:53:17:94:fa:de:
44:e7:1f:c3:30:91:3a:30:c7:b5:3f:cb:dd:97:05:
fa:d0:c3:3d:25:7e:56:22:fa:d3:f3:84:b5:6d:8b:
f3:80:eb:eb:9a:46:c8:8e:5e:17:94:c4:be:c2:0b:
eb:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:18:73:53:56:B3:CC:A5:5D:DD:B6:F9:ED:0F:EC:4C:6C:40:D0:F5
X509v3 Authority Key Identifier:
keyid:E8:B3:EE:D1:C7:AC:A6:36:D6:24:58:52:B8:02:E0:E7:37:54:DF:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6LPu0cespjbWJFhSuALg5zdU32M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/2RhzU1azzKVd3bb57Q_sTGxA0PU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/6LPu0cespjbWJFhSuALg5zdU32M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.148.216.0/23
Signature Algorithm: sha256WithRSAEncryption
70:8e:03:c8:f8:8f:d7:15:b1:d4:22:8c:f8:3b:c9:b7:8d:d6:
e9:97:ce:7f:0d:fc:15:af:30:4e:57:e9:37:55:f5:49:e4:1c:
96:9f:54:0d:6e:a7:ec:66:08:c4:e8:13:53:c1:e7:60:42:c6:
a8:47:92:88:dc:b8:28:6e:79:11:b0:37:e2:bb:7c:41:b8:bb:
cb:60:c3:ba:fb:a1:b4:75:43:36:14:6a:66:26:2a:28:70:0c:
ba:a4:a5:e5:c4:2d:01:87:45:aa:e8:4d:af:ad:62:c6:c6:c2:
56:07:09:79:a3:33:17:84:c7:64:69:8e:8e:fe:c6:98:a7:ba:
ca:c9:05:a8:2d:3d:02:16:ee:3f:ae:0d:0c:25:36:2f:ad:0f:
d7:03:4e:64:eb:6f:80:15:40:9d:ac:0a:e2:c3:f8:9f:1a:22:
1a:aa:af:aa:6c:ad:b4:cc:cb:f0:2b:47:0a:41:6c:46:45:06:
e1:d2:f1:99:b1:d4:2a:59:57:0f:9c:65:b6:79:03:00:0e:18:
5e:b7:0f:49:b7:0b:1d:85:5f:a3:84:86:83:ae:8b:55:a4:fc:
55:6e:38:1c:e9:68:90:22:bb:a3:5d:c8:67:11:78:92:e0:b2:
a7:ca:dd:e4:d6:c5:c3:c0:35:bd:d7:a2:a8:6b:9f:bf:f1:28:
b7:31:10:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:41:08 2024 by rpki-client on console-fra.rpki-client.org