Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/0f3757-f0ed-4e7e-9329-b03df996e481/1/jeEFFWj8tX8-JsqzAJKN76mywjo.roa
File: jeEFFWj8tX8-JsqzAJKN76mywjo.roa (raw, json)
Hash identifier: QV2wbgOaM5IDAXqJMPWVHYmLRzwtO3eyzqWwHhL98X4=
Subject key identifier: 8D:E1:05:15:68:FC:B5:7F:3E:26:CA:B3:00:92:8D:EF:A9:B2:C2:3A
Certificate issuer: /CN=0db67c5c7fa7fe2492eec37cf427642b71d425b0
Certificate serial: 018AFBE93072D12B4DCA34B6979F5983FC98
Authority key identifier: 0D:B6:7C:5C:7F:A7:FE:24:92:EE:C3:7C:F4:27:64:2B:71:D4:25:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DbZ8XH-n_iSS7sN89CdkK3HUJbA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/0f3757-f0ed-4e7e-9329-b03df996e481/1/jeEFFWj8tX8-JsqzAJKN76mywjo.roa
Signing time: Wed 04 Oct 2023 18:17:57 +0000
ROA not before: Wed 04 Oct 2023 18:17:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216255
IP address blocks: 37.72.132.0/24 maxlen: 32
Validation: Failed, certificate revoked on Sat 28 Oct 2023 17:47:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:fb:e9:30:72:d1:2b:4d:ca:34:b6:97:9f:59:83:fc:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0db67c5c7fa7fe2492eec37cf427642b71d425b0
Validity
Not Before: Oct 4 18:17:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8de1051568fcb57f3e26cab300928defa9b2c23a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:55:c2:35:25:eb:f8:ec:6f:7f:30:e4:c3:c5:
87:c9:8a:db:fb:c6:cd:50:01:e0:59:a2:fc:69:5f:
df:92:8b:cb:ac:e5:75:4a:8a:c7:27:9c:a2:18:57:
05:6b:43:fd:87:4d:27:45:f6:d3:75:6d:91:fc:b8:
83:23:69:84:49:cb:7f:81:a4:62:f2:3f:b7:45:09:
4b:31:fd:44:bd:f5:c1:47:15:2b:9f:26:77:6e:71:
4c:33:69:00:18:bc:bb:a0:61:21:72:15:fe:01:9f:
62:e6:cd:6c:77:8a:da:ea:50:1f:2f:68:40:19:93:
5f:e2:7b:a3:2b:aa:98:9d:d6:ca:1d:a3:e7:15:5d:
d4:fe:dd:8f:7c:be:d1:70:71:5c:cf:df:06:3c:dc:
ec:af:35:c8:ce:c9:cd:56:c3:14:37:9e:8f:21:5d:
94:88:d7:3b:5f:c2:19:bd:91:6f:c8:0e:aa:08:85:
65:38:58:fa:f5:6b:7e:64:18:fc:8e:ef:35:76:ee:
98:3e:33:29:40:c1:6f:c3:2e:9a:ca:e6:5c:af:11:
7f:07:47:4a:58:02:f5:9f:6d:60:0c:41:21:c5:17:
26:18:31:1c:12:d6:d5:e6:27:a8:00:52:40:cb:af:
2c:4c:66:75:30:3f:15:60:67:64:72:aa:bf:44:8f:
ca:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:E1:05:15:68:FC:B5:7F:3E:26:CA:B3:00:92:8D:EF:A9:B2:C2:3A
X509v3 Authority Key Identifier:
keyid:0D:B6:7C:5C:7F:A7:FE:24:92:EE:C3:7C:F4:27:64:2B:71:D4:25:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DbZ8XH-n_iSS7sN89CdkK3HUJbA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/0f3757-f0ed-4e7e-9329-b03df996e481/1/jeEFFWj8tX8-JsqzAJKN76mywjo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/0f3757-f0ed-4e7e-9329-b03df996e481/1/DbZ8XH-n_iSS7sN89CdkK3HUJbA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.72.132.0/24
Signature Algorithm: sha256WithRSAEncryption
33:5b:e0:d1:3e:44:e6:17:0b:52:d7:e9:ba:4c:dd:e3:6b:7c:
d4:e1:94:41:9e:e5:60:2b:5b:68:29:c4:05:d5:c4:9b:e7:1d:
fc:b8:33:92:94:37:f9:70:45:b3:e0:bb:e4:ad:fd:d5:ae:b4:
a0:b0:8e:03:a2:0c:62:f7:2b:e7:79:ab:3f:6d:e4:1f:db:dd:
15:30:f6:0a:ff:85:a8:b6:0f:26:86:d0:19:ca:12:fa:93:33:
59:ed:83:5c:b6:bb:21:48:65:a3:07:d8:76:f0:96:9a:1c:f5:
ec:43:5b:1d:b0:78:60:37:81:14:c9:99:7f:37:df:81:ad:7b:
39:87:43:8c:7e:90:5c:e0:5b:94:21:49:25:6d:92:d7:33:f7:
36:05:f8:df:93:16:a2:17:9a:41:48:9c:24:ee:71:6a:63:b6:
2c:c3:49:0b:69:60:ee:66:8a:68:f8:ff:86:c1:e3:49:24:55:
04:17:75:a8:ce:76:4a:7a:85:52:72:2d:9a:b3:ef:a5:24:66:
e9:ac:70:0a:d1:2b:c2:df:79:78:2f:b0:df:36:ce:f3:38:29:
f8:26:29:21:db:5b:1f:f9:df:35:04:42:b3:1c:68:c3:7f:0f:
20:a7:2b:84:85:b8:9e:b4:fe:e5:73:a8:09:05:c1:d3:47:28:
1f:dd:40:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:57 2024 by rpki-client on console-fra.rpki-client.org