Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/663UchmItBfwEV6ZCp-2A83UbOk.roa
File: 663UchmItBfwEV6ZCp-2A83UbOk.roa (raw, json)
Hash identifier: BXYeMRANU7vPpG8nM+8g48T6Uiv6qXUSHetne1MxA4o=
Subject key identifier: EB:AD:D4:72:19:88:B4:17:F0:11:5E:99:0A:9F:B6:03:CD:D4:6C:E9
Certificate issuer: /CN=e8b3eed1c7aca636d6245852b802e0e73754df63
Certificate serial: 018CC725AFF62D735E424295C5E85D1B4D8D
Authority key identifier: E8:B3:EE:D1:C7:AC:A6:36:D6:24:58:52:B8:02:E0:E7:37:54:DF:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6LPu0cespjbWJFhSuALg5zdU32M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/663UchmItBfwEV6ZCp-2A83UbOk.roa
Signing time: Mon 01 Jan 2024 22:29:45 +0000
ROA not before: Mon 01 Jan 2024 22:29:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 37.148.218.0/23 maxlen: 24
185.11.142.0/23 maxlen: 24
Validation: Failed, certificate revoked on Fri 23 Feb 2024 07:12:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:25:af:f6:2d:73:5e:42:42:95:c5:e8:5d:1b:4d:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8b3eed1c7aca636d6245852b802e0e73754df63
Validity
Not Before: Jan 1 22:29:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ebadd4721988b417f0115e990a9fb603cdd46ce9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:22:71:72:85:73:aa:1a:f4:1a:44:ac:c9:37:
60:a5:f8:1c:a7:0e:3b:9b:c2:d9:8f:02:c0:ea:4b:
10:d6:28:92:da:7b:8c:2c:d5:1c:f1:70:19:58:da:
67:84:54:a5:7a:25:c3:ac:d4:50:a3:45:75:e6:46:
07:87:2d:1f:53:cd:8d:36:f2:d2:6e:44:43:d3:da:
ab:6b:60:66:df:34:22:42:58:78:05:b9:2f:ab:f1:
64:e2:7c:cd:d5:f3:83:80:c5:86:ba:c1:5f:dd:d6:
ab:81:86:e3:79:90:41:af:d7:25:ad:96:43:e4:ec:
e9:95:eb:52:5e:10:8b:9b:e0:6b:bd:b0:46:29:88:
15:f1:3a:c6:26:7c:43:d9:c3:9d:58:f5:df:21:f6:
55:e1:74:0c:ed:d0:8e:16:bb:fc:55:73:f1:df:aa:
e5:9a:42:1a:ac:81:83:f7:5e:e1:34:d4:3d:c3:dd:
a7:9a:e8:3c:97:0f:34:8d:8f:cd:cc:bd:36:e0:88:
7e:75:53:4b:31:5b:19:f9:b0:b9:a8:31:42:25:97:
c7:c6:28:7c:b5:92:b8:44:f6:e9:e8:02:a7:04:68:
dc:a3:c1:1a:af:28:35:71:bc:60:0a:df:2f:94:9a:
53:6e:42:ff:83:13:f7:6f:37:20:ab:b7:e0:f7:ab:
7b:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:AD:D4:72:19:88:B4:17:F0:11:5E:99:0A:9F:B6:03:CD:D4:6C:E9
X509v3 Authority Key Identifier:
keyid:E8:B3:EE:D1:C7:AC:A6:36:D6:24:58:52:B8:02:E0:E7:37:54:DF:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6LPu0cespjbWJFhSuALg5zdU32M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/663UchmItBfwEV6ZCp-2A83UbOk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/6LPu0cespjbWJFhSuALg5zdU32M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.148.218.0/23
185.11.142.0/23
Signature Algorithm: sha256WithRSAEncryption
1c:0c:a8:d3:29:80:2f:09:21:c6:fd:fb:ef:06:45:24:4f:c5:
27:3b:f2:0e:b1:99:a4:0a:05:af:e2:63:df:04:2f:53:3e:48:
ba:e9:37:5e:f7:0d:75:98:aa:20:55:96:20:bd:e6:05:56:26:
c4:5d:76:0a:df:d6:6d:56:54:92:bf:07:1f:b0:79:5d:70:f3:
fd:5b:e3:52:e2:85:37:6f:4c:6b:33:e7:6e:3f:9a:0d:5c:2b:
64:a4:5d:82:5e:40:c3:46:55:31:c7:0e:38:a9:93:1f:f4:a2:
71:fd:84:f8:d0:d1:1c:2d:78:bb:87:45:83:6d:24:f3:9b:87:
fa:5d:68:86:99:26:39:8b:a2:9f:69:ee:e0:e6:3e:9a:1c:59:
be:2b:da:96:0b:c9:71:be:2e:45:d6:4f:43:fd:e5:e5:a9:e9:
40:2a:d4:42:54:42:c6:ee:3b:99:d4:4c:0d:37:40:db:b5:b0:
f3:11:d4:28:9e:21:b5:6e:08:42:8f:f6:de:fd:ad:d8:d4:bb:
b7:7b:5f:c5:35:27:e2:8f:d2:e1:c6:be:1c:13:de:45:9b:71:
e9:ad:0b:1a:11:a2:5b:16:49:67:3d:9e:91:75:04:17:ad:75:
f9:98:cd:57:ed:6e:a7:e8:62:08:a1:e9:d5:5e:05:f8:ea:26:
19:fc:a4:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:26:30 2024 by rpki-client on console-ams.rpki-client.org