Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/9151c0-3326-4801-9363-c7d19930d66d/1/JOi_x-LyHGyG-7oRCsLwK0LbVEY.roa
File: JOi_x-LyHGyG-7oRCsLwK0LbVEY.roa (raw, json)
Hash identifier: VlUQXSjw1t83qRRYIKfQHViroKSmkBmDo5VbdeSp8W0=
Subject key identifier: 24:E8:BF:C7:E2:F2:1C:6C:86:FB:BA:11:0A:C2:F0:2B:42:DB:54:46
Certificate issuer: /CN=b4e82ba1715d6aeae5b0102725ffe0c834735d7d
Certificate serial: 0185C34F6CA806BF316D58757A98EFE51F30
Authority key identifier: B4:E8:2B:A1:71:5D:6A:EA:E5:B0:10:27:25:FF:E0:C8:34:73:5D:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tOgroXFdaurlsBAnJf_gyDRzXX0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/9151c0-3326-4801-9363-c7d19930d66d/1/JOi_x-LyHGyG-7oRCsLwK0LbVEY.roa
Signing time: Wed 18 Jan 2023 05:17:20 +0000
ROA not before: Wed 18 Jan 2023 05:17:20 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59704
IP address blocks: 37.32.77.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:30:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:c3:4f:6c:a8:06:bf:31:6d:58:75:7a:98:ef:e5:1f:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4e82ba1715d6aeae5b0102725ffe0c834735d7d
Validity
Not Before: Jan 18 05:17:20 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=24e8bfc7e2f21c6c86fbba110ac2f02b42db5446
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:17:72:d9:f8:17:28:c7:5a:6f:03:38:f8:63:
dc:e0:26:c6:d1:f9:1b:b2:e3:aa:d8:dd:db:0a:df:
18:9b:4d:e9:75:05:92:cf:ec:2c:79:5d:b7:df:9b:
23:22:65:37:fc:66:0c:e1:05:1a:ca:b0:82:ae:1e:
57:52:74:5c:62:c3:50:1b:45:f1:e9:f6:af:1f:1f:
a1:6e:01:8f:b2:55:ea:18:a9:6b:c1:30:c0:0f:6a:
d0:04:d3:fa:ed:ed:80:42:5c:f2:4b:26:47:81:3b:
a2:f1:2f:8f:6c:82:51:ae:5c:92:dd:6e:a1:22:bd:
e4:a5:a8:1a:5c:1a:34:f7:99:79:d7:17:1e:99:9c:
83:24:65:50:63:e3:05:3c:ad:09:2d:2b:0e:14:56:
05:4b:66:a2:46:f8:b9:90:bb:04:f6:58:29:d1:f5:
cd:09:5a:0c:47:35:a2:af:df:e4:e5:5a:72:f4:66:
a0:d8:81:bd:65:2f:5d:13:a8:6c:c7:b1:f0:7c:f3:
7c:35:ac:88:db:54:07:0e:68:11:95:ab:ed:c5:df:
3f:b2:18:22:57:d5:a8:0d:a9:ad:34:fc:44:cb:20:
c7:df:ff:a3:78:82:3e:8d:76:44:52:5b:b4:ce:19:
14:7e:69:a2:04:a5:4b:be:12:9d:61:72:4d:70:81:
b6:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:E8:BF:C7:E2:F2:1C:6C:86:FB:BA:11:0A:C2:F0:2B:42:DB:54:46
X509v3 Authority Key Identifier:
keyid:B4:E8:2B:A1:71:5D:6A:EA:E5:B0:10:27:25:FF:E0:C8:34:73:5D:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tOgroXFdaurlsBAnJf_gyDRzXX0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/9151c0-3326-4801-9363-c7d19930d66d/1/JOi_x-LyHGyG-7oRCsLwK0LbVEY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/9151c0-3326-4801-9363-c7d19930d66d/1/tOgroXFdaurlsBAnJf_gyDRzXX0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.32.77.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:3d:c4:48:b6:31:72:c0:00:83:0a:d2:52:46:ce:d4:c6:96:
86:f9:37:4a:54:93:53:1c:ad:26:ad:e4:e5:c2:34:70:84:75:
da:eb:85:a1:2b:6f:1d:19:5f:4c:2c:2e:45:43:8d:94:7e:5f:
b5:f6:db:b5:cb:a1:74:20:8d:ca:7e:16:5b:aa:6e:96:5f:97:
c4:10:43:ae:9d:1c:fe:fa:f6:fe:18:fb:86:f3:98:cc:ad:19:
cb:76:1f:fd:47:db:79:be:71:50:d5:5c:50:44:c5:fa:b2:b8:
7f:36:53:cc:53:e1:cf:a6:56:04:9f:29:11:92:91:b2:92:10:
2b:c6:9e:9f:73:db:00:2e:47:06:31:0f:50:e8:a2:7f:78:4c:
3a:a1:43:f7:21:1b:40:e6:ae:2e:d8:eb:cb:56:ad:31:40:bb:
58:e6:89:97:b9:d3:29:e8:8d:3f:c8:cf:e7:a9:f4:ed:88:60:
cb:3a:55:20:b0:0b:b4:f4:8c:ca:1d:ef:c2:28:06:38:43:ee:
df:7c:30:41:57:4c:b2:5f:04:5e:a5:ff:ff:f7:48:b7:d0:80:
02:00:8a:74:9e:31:eb:5d:99:99:52:7b:da:b5:ec:e4:77:7f:
5d:64:3b:11:2e:05:15:2a:3f:3c:aa:1d:3e:81:48:9c:d7:ff:
8e:61:eb:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:02 2024 by rpki-client on console-ams.rpki-client.org