Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/60fc0d-0eb9-424c-a630-9a5c73bffa23/1/3biueaTU5KxnoORCtVuVa9l7MIk.roa
File: 3biueaTU5KxnoORCtVuVa9l7MIk.roa (raw, json)
Hash identifier: 9KGL8nHcXe9HC4ok/pvb0iknCuZ0AtUI7eOShox2K4U=
Subject key identifier: DD:B8:AE:79:A4:D4:E4:AC:67:A0:E4:42:B5:5B:95:6B:D9:7B:30:89
Certificate issuer: /CN=8a31f8bea33b0056446e3321eede3a170fbd7c1f
Certificate serial: 018571FA0C8BBD565140267EBDA0C2376D66
Authority key identifier: 8A:31:F8:BE:A3:3B:00:56:44:6E:33:21:EE:DE:3A:17:0F:BD:7C:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ijH4vqM7AFZEbjMh7t46Fw-9fB8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/60fc0d-0eb9-424c-a630-9a5c73bffa23/1/3biueaTU5KxnoORCtVuVa9l7MIk.roa
Signing time: Mon 02 Jan 2023 10:14:50 +0000
ROA not before: Mon 02 Jan 2023 10:14:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201047
IP address blocks: 37.18.185.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:fa:0c:8b:bd:56:51:40:26:7e:bd:a0:c2:37:6d:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a31f8bea33b0056446e3321eede3a170fbd7c1f
Validity
Not Before: Jan 2 10:14:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ddb8ae79a4d4e4ac67a0e442b55b956bd97b3089
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:6f:8f:5e:73:74:72:e8:7c:a0:62:41:6d:af:
a7:65:eb:da:15:60:b5:ec:85:3f:b2:b5:d4:4b:94:
ab:38:6c:65:ec:cf:e8:56:4b:1a:fb:55:93:e0:1e:
03:d1:97:ea:b8:3e:67:fb:e1:d7:54:f7:06:9e:c3:
b1:e3:cf:d5:a1:48:4e:68:d7:f4:94:b3:9d:c8:9d:
1b:83:ec:22:2d:75:93:4c:6e:5a:9e:be:57:09:11:
ca:17:54:e1:a9:3d:24:74:42:40:f8:30:28:39:38:
fa:3f:59:db:8b:00:ef:83:92:de:a2:94:e4:62:cc:
de:3c:e9:99:27:f3:78:03:58:ad:4e:1a:bc:c3:db:
5d:3b:e9:02:d0:44:43:f0:4a:94:60:10:31:b3:79:
af:0e:f2:90:23:31:c4:ca:1f:dd:52:68:76:b4:91:
97:0e:94:c6:75:15:d4:4b:c1:c1:12:b0:16:ef:df:
5b:79:e6:34:ab:55:4b:aa:4b:46:a6:b4:e8:b9:7b:
45:95:23:d3:70:58:8e:77:59:0f:2d:0b:58:bf:55:
cd:78:60:2d:31:cb:5e:e6:39:64:dd:2b:9d:0e:37:
f6:4f:6e:ef:77:03:34:c7:43:79:63:6b:a2:50:08:
a9:e8:32:3b:c3:f8:13:2e:f3:37:36:4c:5b:e0:5d:
e3:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:B8:AE:79:A4:D4:E4:AC:67:A0:E4:42:B5:5B:95:6B:D9:7B:30:89
X509v3 Authority Key Identifier:
keyid:8A:31:F8:BE:A3:3B:00:56:44:6E:33:21:EE:DE:3A:17:0F:BD:7C:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ijH4vqM7AFZEbjMh7t46Fw-9fB8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/60fc0d-0eb9-424c-a630-9a5c73bffa23/1/3biueaTU5KxnoORCtVuVa9l7MIk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/60fc0d-0eb9-424c-a630-9a5c73bffa23/1/ijH4vqM7AFZEbjMh7t46Fw-9fB8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.18.185.0/24
Signature Algorithm: sha256WithRSAEncryption
12:76:a3:9a:81:ba:01:8e:8c:e0:b7:36:54:b6:4b:9c:9a:b0:
4c:26:41:ed:e2:25:89:70:e2:d9:1b:6c:a4:96:65:67:13:62:
7a:1b:6a:cc:e1:f0:ce:9d:b5:93:8a:27:ec:2f:e5:b0:cd:a0:
81:99:6c:b0:93:db:f6:03:4b:36:3c:6c:c9:90:40:13:68:70:
67:2e:0b:ea:a8:e3:3c:88:3e:bb:eb:18:b5:9a:56:85:64:c3:
b1:4c:ed:cf:96:6c:b5:29:85:a3:15:5a:42:b8:38:42:83:18:
6f:b9:01:f0:9b:42:61:aa:ec:2c:be:bb:5c:e6:5c:fd:74:4b:
f9:ca:6d:e6:f4:ea:39:ec:44:69:b9:18:a0:d7:c6:4c:cf:f4:
67:7d:4f:75:e9:c0:74:9f:26:d1:f1:a9:dd:c2:73:52:c1:8b:
3a:38:03:14:e9:67:42:ed:36:f0:34:52:a6:fc:a5:8d:76:1f:
49:a6:a5:78:c8:57:c7:b8:35:92:98:59:00:8e:24:d1:07:08:
00:c8:a1:0f:14:03:ef:d5:9c:51:93:6b:7e:7d:3a:61:44:28:
a3:54:bd:dd:be:97:71:b9:e8:56:ed:01:64:fd:51:31:49:42:
ba:98:89:f9:a7:fe:68:9f:aa:81:d6:47:79:ab:c6:7e:95:18:
6d:3c:30:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:06 2024 by rpki-client on console-fra.rpki-client.org