Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/9151c0-3326-4801-9363-c7d19930d66d/1/8I1nyD7gVCP16mwZ-VMroBl1zyI.roa
File: 8I1nyD7gVCP16mwZ-VMroBl1zyI.roa (raw, json)
Hash identifier: 8/QBT+CIsrBiL/m8TLQgPLEKFEEOI1vORuWoMbyuy9k=
Subject key identifier: F0:8D:67:C8:3E:E0:54:23:F5:EA:6C:19:F9:53:2B:A0:19:75:CF:22
Certificate issuer: /CN=b4e82ba1715d6aeae5b0102725ffe0c834735d7d
Certificate serial: 01856F799BD6124B9BD0E683932CDA3586DF
Authority key identifier: B4:E8:2B:A1:71:5D:6A:EA:E5:B0:10:27:25:FF:E0:C8:34:73:5D:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tOgroXFdaurlsBAnJf_gyDRzXX0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/9151c0-3326-4801-9363-c7d19930d66d/1/8I1nyD7gVCP16mwZ-VMroBl1zyI.roa
Signing time: Sun 01 Jan 2023 22:35:18 +0000
ROA not before: Sun 01 Jan 2023 22:35:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 13099
IP address blocks: 37.32.75.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:79:9b:d6:12:4b:9b:d0:e6:83:93:2c:da:35:86:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4e82ba1715d6aeae5b0102725ffe0c834735d7d
Validity
Not Before: Jan 1 22:35:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f08d67c83ee05423f5ea6c19f9532ba01975cf22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:3e:c4:c4:97:47:1a:db:60:90:84:9e:08:af:
e0:eb:e7:31:05:19:04:d3:5d:af:3d:b9:24:2b:df:
cb:1e:bc:17:cd:d4:eb:89:95:1d:29:ae:7d:7d:2a:
c8:18:d2:06:a2:81:3e:b6:82:0a:4a:64:32:79:2b:
72:d6:52:7f:f4:4d:cd:d0:63:ba:e0:1e:eb:5c:21:
86:7d:ed:b9:95:03:4e:2d:96:98:07:23:08:27:a3:
9d:b8:6f:38:28:d8:60:8f:7c:e5:cf:e7:44:7c:5c:
1a:15:6e:24:4a:80:4a:ba:fd:f3:a1:2c:8d:cf:50:
90:59:0b:03:8c:f6:2f:98:bb:6e:c9:08:ed:a7:9b:
14:3e:7a:79:f3:48:ba:62:40:60:c0:9e:ac:4e:49:
e3:5b:7e:89:ab:dc:88:ab:ab:c4:8a:78:b8:45:93:
76:db:0b:a0:0e:95:d9:51:e0:37:8d:47:52:c0:96:
c7:06:45:b9:65:14:c7:44:8b:b5:4d:ce:7f:79:87:
69:e0:a2:31:dd:99:af:4c:f5:92:60:cf:d0:d7:30:
cb:45:cc:94:f7:46:29:8f:ba:71:da:1a:e3:a4:e4:
2f:c7:75:40:ad:8d:ed:17:3f:62:79:2c:5f:06:31:
ac:36:37:38:d3:d5:70:19:95:0c:a6:32:a6:8d:d0:
1d:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:8D:67:C8:3E:E0:54:23:F5:EA:6C:19:F9:53:2B:A0:19:75:CF:22
X509v3 Authority Key Identifier:
keyid:B4:E8:2B:A1:71:5D:6A:EA:E5:B0:10:27:25:FF:E0:C8:34:73:5D:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tOgroXFdaurlsBAnJf_gyDRzXX0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/9151c0-3326-4801-9363-c7d19930d66d/1/8I1nyD7gVCP16mwZ-VMroBl1zyI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/9151c0-3326-4801-9363-c7d19930d66d/1/tOgroXFdaurlsBAnJf_gyDRzXX0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.32.75.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:6b:70:15:66:b7:3d:5f:9f:d9:50:ac:90:6c:6b:f3:1d:e2:
8e:a3:14:c8:f1:a7:d4:0d:6b:4b:3b:15:a8:90:bf:c9:72:1b:
6a:67:64:fb:c7:aa:6a:ea:d3:0d:36:52:5e:7f:63:f2:b0:98:
3c:7c:b5:50:16:34:37:63:8a:06:13:ee:5d:4a:c2:c7:5e:54:
5a:11:c4:82:b7:31:f5:d1:c4:96:ff:60:37:97:75:6e:06:e1:
19:41:aa:5a:02:27:e4:de:99:65:03:2d:4f:8e:16:56:e0:49:
ee:88:c7:ff:63:c7:e7:86:f0:c6:dc:89:9d:14:9d:87:e9:fc:
36:dc:ba:6a:96:e8:1b:87:2e:a4:c0:22:f0:e4:43:a1:9a:37:
ca:86:13:54:a0:3e:85:3c:12:d3:24:be:09:d9:13:bb:2e:8e:
92:21:86:05:dc:4a:80:b2:f9:68:95:27:f9:bd:93:52:b7:3b:
79:81:ba:cf:09:f9:2a:88:48:92:8c:58:4c:60:03:8e:d3:b0:
a1:19:83:da:8b:f9:43:8b:eb:a4:d5:86:79:aa:5f:82:da:be:
37:17:d1:60:71:c7:0a:b1:ea:2e:80:c2:f0:1e:36:24:74:00:
56:43:ce:36:54:e0:5b:14:f9:e7:41:25:f1:b9:ec:75:d7:c3:
f0:ea:9d:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 09:30:43 2024 by rpki-client on console-ams.rpki-client.org