Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/0f3757-f0ed-4e7e-9329-b03df996e481/1/WTjcKQs5ZtKwjiRtBRbz9HVTHsY.roa
File: WTjcKQs5ZtKwjiRtBRbz9HVTHsY.roa (raw, json)
Hash identifier: 2BxMBdTVIdWvME/fGMY7Ym78tAU86n7tbVGkHXtn8HE=
Subject key identifier: 59:38:DC:29:0B:39:66:D2:B0:8E:24:6D:05:16:F3:F4:75:53:1E:C6
Certificate issuer: /CN=0db67c5c7fa7fe2492eec37cf427642b71d425b0
Certificate serial: 018D039433B435BB3B91C9E8CE04E6126534
Authority key identifier: 0D:B6:7C:5C:7F:A7:FE:24:92:EE:C3:7C:F4:27:64:2B:71:D4:25:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DbZ8XH-n_iSS7sN89CdkK3HUJbA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/0f3757-f0ed-4e7e-9329-b03df996e481/1/WTjcKQs5ZtKwjiRtBRbz9HVTHsY.roa
Signing time: Sat 13 Jan 2024 16:07:40 +0000
ROA not before: Sat 13 Jan 2024 16:07:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216255
IP address blocks: 37.72.132.0/24 maxlen: 32
Validation: Failed, certificate revoked on Sun 05 May 2024 21:35:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:03:94:33:b4:35:bb:3b:91:c9:e8:ce:04:e6:12:65:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0db67c5c7fa7fe2492eec37cf427642b71d425b0
Validity
Not Before: Jan 13 16:07:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5938dc290b3966d2b08e246d0516f3f475531ec6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:42:26:73:b2:0f:57:e8:6a:34:27:fa:af:cb:
e9:ee:ea:5c:b2:b4:69:fe:e8:fd:01:3c:05:be:0c:
1f:16:37:d1:96:f8:19:2e:bb:4d:95:ba:1a:6a:3f:
50:cc:34:85:87:42:02:13:e2:7d:fd:f2:37:04:79:
0d:43:4b:a2:e0:b6:70:b3:aa:19:f2:15:7e:eb:00:
c1:47:b7:5d:8b:d6:2b:ab:65:a5:16:3f:35:70:62:
80:d3:a2:bc:f0:56:84:42:c2:38:04:61:8c:48:6b:
d4:12:d6:4a:f4:dd:37:be:11:9f:72:05:01:b1:29:
8d:00:0b:07:a7:fd:72:fc:ce:18:7d:ca:7f:48:c4:
27:01:94:f8:e2:7f:1e:be:19:37:96:fa:5c:17:2d:
50:cb:76:31:04:12:d9:2c:a7:b1:cc:af:20:ca:ff:
c4:bc:28:74:bb:30:49:64:c9:d9:f1:03:5d:78:af:
1b:07:08:17:6f:46:ac:31:24:07:d5:bb:5d:66:0a:
29:e7:33:26:c7:c4:df:01:c4:e9:40:8f:4e:29:70:
7d:8d:c1:1d:3e:49:f5:3e:43:ac:32:fe:0d:29:6c:
84:42:1f:d1:e9:c1:ac:45:2f:ca:5c:40:d9:04:ae:
59:48:24:bc:59:1f:12:c0:80:c2:fc:6e:28:b8:cd:
da:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:38:DC:29:0B:39:66:D2:B0:8E:24:6D:05:16:F3:F4:75:53:1E:C6
X509v3 Authority Key Identifier:
keyid:0D:B6:7C:5C:7F:A7:FE:24:92:EE:C3:7C:F4:27:64:2B:71:D4:25:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DbZ8XH-n_iSS7sN89CdkK3HUJbA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/0f3757-f0ed-4e7e-9329-b03df996e481/1/WTjcKQs5ZtKwjiRtBRbz9HVTHsY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/0f3757-f0ed-4e7e-9329-b03df996e481/1/DbZ8XH-n_iSS7sN89CdkK3HUJbA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.72.132.0/24
Signature Algorithm: sha256WithRSAEncryption
ca:53:0e:78:0b:fb:e9:1a:bc:56:8a:71:f9:59:9f:ad:fc:f3:
4e:77:ad:05:6f:4d:67:8b:30:bf:4f:20:8e:0b:36:a4:9d:64:
dd:aa:49:80:8c:d3:0c:3c:2a:a2:31:9f:7d:c3:78:aa:9a:fd:
2b:b1:3c:68:ab:4b:b5:79:cf:0e:79:7c:ea:a1:de:54:fc:f1:
40:f2:bc:90:73:1d:20:14:a0:04:5f:bb:9b:17:43:1f:54:c8:
4e:6c:81:a7:ed:44:35:5e:b4:13:86:ee:c8:c1:f1:50:4a:3f:
e3:95:07:a3:8e:a3:02:b8:25:26:4d:41:ae:72:47:0b:28:4f:
89:95:de:68:09:91:34:1d:e4:2d:b0:73:93:63:54:43:59:cf:
eb:65:92:74:ef:75:8c:aa:64:e3:43:1b:16:0e:06:b7:0c:22:
67:8c:78:a8:a9:48:00:0b:73:bb:22:d9:b7:cd:b3:c5:11:e2:
3a:e0:fd:a5:7f:ec:b0:5d:52:f9:a0:fb:57:5c:2f:8e:6e:93:
fc:d1:7b:52:a9:e5:4e:ea:ba:2e:cf:c6:62:4d:35:80:e2:86:
cf:5b:77:45:d9:a4:d3:ff:83:bb:9a:4f:ba:3a:e0:11:cf:f2:
77:7a:4c:d4:b7:7d:a3:e6:19:6a:0f:55:b7:50:21:e5:f9:71:
1b:cd:19:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:57 2024 by rpki-client on console-fra.rpki-client.org