Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/D8pOSXgA3paDAhbwQe025cXJS8g.roa
File: D8pOSXgA3paDAhbwQe025cXJS8g.roa (raw, json)
Hash identifier: iBXWvIUX0v0lf42gChB57XQyHDO/8uucuoGEFUDzI5M=
Subject key identifier: 0F:CA:4E:49:78:00:DE:96:83:02:16:F0:41:ED:36:E5:C5:C9:4B:C8
Certificate issuer: /CN=2e82963ff1aa70ab10d1d33e86b1d6d494d6ce51
Certificate serial: 0187653B5F08E15CD168B27AE051600AB40B
Authority key identifier: 2E:82:96:3F:F1:AA:70:AB:10:D1:D3:3E:86:B1:D6:D4:94:D6:CE:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LoKWP_GqcKsQ0dM-hrHW1JTWzlE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/D8pOSXgA3paDAhbwQe025cXJS8g.roa
Signing time: Sun 09 Apr 2023 08:56:42 +0000
ROA not before: Sun 09 Apr 2023 08:56:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1239
IP address blocks: 37.19.64.0/22 maxlen: 22
185.145.52.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 10 May 2023 13:02:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:65:3b:5f:08:e1:5c:d1:68:b2:7a:e0:51:60:0a:b4:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2e82963ff1aa70ab10d1d33e86b1d6d494d6ce51
Validity
Not Before: Apr 9 08:56:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0fca4e497800de96830216f041ed36e5c5c94bc8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:76:ad:42:fb:97:64:8e:a4:25:8c:06:b8:3b:
9e:87:18:19:fc:4f:ce:8c:6c:e5:a6:93:57:13:d6:
24:a3:bf:90:4e:82:88:cc:eb:e8:ff:af:c6:18:57:
9b:d6:09:9e:a1:d2:93:dc:bb:de:ef:0b:9c:1d:bb:
aa:64:7d:a2:ea:52:53:46:c4:7b:18:25:7a:d8:96:
aa:31:71:e2:80:42:d1:34:db:5b:02:75:ea:d7:6f:
4d:bd:e2:4c:31:a7:95:12:93:f1:af:05:db:95:2d:
a9:e0:ef:8c:dc:de:e5:fb:de:51:5c:77:ea:05:a7:
ab:64:bb:41:34:5b:e7:b9:36:f5:dd:11:8f:24:49:
f2:57:53:01:37:de:ca:a9:64:6a:82:5c:2e:07:2b:
1c:db:03:23:6d:5f:30:67:93:a5:c1:d7:8c:d6:5d:
e7:1f:3b:45:54:b9:08:cf:fb:8d:64:0a:9d:a3:04:
83:c2:65:31:45:75:8e:04:42:5f:d2:88:74:6d:41:
ff:f0:f8:c0:66:8a:9b:69:bc:50:55:06:41:7c:11:
b5:18:40:31:32:0a:67:b7:0d:c4:33:a2:05:ca:fa:
af:c8:bd:28:8c:e2:49:d0:25:9c:42:1d:c1:bd:23:
9e:56:b1:0d:4b:e7:85:73:81:3c:59:8e:9b:92:7b:
e9:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:CA:4E:49:78:00:DE:96:83:02:16:F0:41:ED:36:E5:C5:C9:4B:C8
X509v3 Authority Key Identifier:
keyid:2E:82:96:3F:F1:AA:70:AB:10:D1:D3:3E:86:B1:D6:D4:94:D6:CE:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LoKWP_GqcKsQ0dM-hrHW1JTWzlE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/D8pOSXgA3paDAhbwQe025cXJS8g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/LoKWP_GqcKsQ0dM-hrHW1JTWzlE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.19.64.0/22
185.145.52.0/24
Signature Algorithm: sha256WithRSAEncryption
cf:15:b0:46:f0:7a:55:71:6e:96:bc:da:dd:54:04:98:cd:65:
ff:87:fd:60:fe:3e:df:43:72:38:cc:51:5b:41:73:3d:51:cd:
05:d2:01:26:7f:df:d8:09:e9:87:3f:0a:3e:f0:7b:2c:09:ed:
cc:ca:13:b3:69:73:72:34:b7:77:fb:1c:1c:c3:59:e2:07:ab:
01:e0:94:5a:dd:b8:ed:4d:1c:0d:2d:34:bf:dd:b7:8c:57:2e:
75:1a:44:2d:93:f3:c2:02:1e:a3:c4:79:a8:ad:ea:af:47:c8:
cc:0c:6b:73:39:a1:ba:c7:21:2b:79:18:d1:9a:f3:3f:2b:d2:
27:d3:1a:39:a6:7e:f3:4d:fe:ac:34:16:aa:0c:0e:29:90:ba:
6d:b2:32:ba:4c:8d:19:82:44:7b:79:d6:8b:f1:e8:a3:46:e8:
99:76:ba:30:af:35:f2:96:2a:ce:26:95:74:5d:c3:d5:a4:c4:
1c:6b:72:64:11:98:d3:89:30:38:46:26:c7:8f:17:5b:27:a5:
4e:7e:5a:6a:33:75:76:b6:e1:5d:63:3c:8f:69:a1:8f:da:b3:
5c:7d:99:05:92:99:6e:ab:a0:6b:d0:4a:64:8b:c2:18:54:b0:
ae:04:35:ca:76:63:19:ae:3b:9a:c3:00:00:ab:54:96:c4:73:
7d:c4:85:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:05 2024 by rpki-client on console-fra.rpki-client.org