Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/7a5b44-6b18-42d3-a8d5-dc6554fd1235/1/6mNkAsgVIjAGkC6_St25qvZwrsc.roa
File: 6mNkAsgVIjAGkC6_St25qvZwrsc.roa (raw, json)
Hash identifier: YHGLoFXDNYpHDuoNqm83NSpuV352HeyNzk/LP3n88Gw=
Subject key identifier: EA:63:64:02:C8:15:22:30:06:90:2E:BF:4A:DD:B9:AA:F6:70:AE:C7
Certificate issuer: /CN=5b52634a2eb03f8565b5e33dc2b9f49041f7cfb0
Certificate serial: 01856F42BE37E554A018286A2BCC85F43F7C
Authority key identifier: 5B:52:63:4A:2E:B0:3F:85:65:B5:E3:3D:C2:B9:F4:90:41:F7:CF:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W1JjSi6wP4VlteM9wrn0kEH3z7A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/7a5b44-6b18-42d3-a8d5-dc6554fd1235/1/6mNkAsgVIjAGkC6_St25qvZwrsc.roa
Signing time: Sun 01 Jan 2023 21:35:23 +0000
ROA not before: Sun 01 Jan 2023 21:35:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58224
IP address blocks: 37.156.12.0/22 maxlen: 32
77.238.108.0/22 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:34:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:42:be:37:e5:54:a0:18:28:6a:2b:cc:85:f4:3f:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b52634a2eb03f8565b5e33dc2b9f49041f7cfb0
Validity
Not Before: Jan 1 21:35:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ea636402c815223006902ebf4addb9aaf670aec7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:5f:aa:48:d4:49:97:cf:fb:5d:fb:22:d8:64:
71:32:31:09:f6:8b:49:69:f7:d7:40:ac:63:70:5b:
7d:2a:b4:0b:b5:73:79:cd:ee:c1:3d:b1:b0:5f:71:
e8:bf:5a:dc:ca:6e:ff:b2:3a:9a:6c:a8:b7:c3:ba:
db:52:b4:05:03:77:cd:dc:2b:ab:4d:a1:4d:06:0c:
18:2f:36:66:7c:7e:cd:c2:ac:01:d1:b5:e3:29:55:
bf:66:2b:f5:24:ad:10:13:aa:77:c2:a0:b5:3d:2e:
f1:cb:cc:ee:d2:93:98:c8:bd:d9:e1:27:73:6b:d4:
b6:18:4d:a1:1b:a6:1f:75:9b:6c:9c:1a:35:60:8a:
96:92:2b:5f:dd:b4:fb:54:c1:04:00:de:38:13:82:
3f:09:bc:58:d7:de:fd:48:7a:e3:33:71:cb:78:02:
20:c6:58:21:31:bf:ec:06:b0:a0:86:6f:8d:1a:74:
8b:0a:93:c8:29:6a:02:8e:40:ad:05:66:a9:a7:2f:
39:17:50:22:d3:a4:f4:88:65:a4:69:92:d1:4e:b6:
99:83:8a:9f:c9:05:68:7c:56:03:a8:c1:5c:c1:00:
6b:2e:50:55:09:4e:69:90:a0:19:9d:c1:ca:55:e2:
db:d8:28:f7:5b:ab:1e:5b:d4:54:ae:b3:aa:48:60:
38:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:63:64:02:C8:15:22:30:06:90:2E:BF:4A:DD:B9:AA:F6:70:AE:C7
X509v3 Authority Key Identifier:
keyid:5B:52:63:4A:2E:B0:3F:85:65:B5:E3:3D:C2:B9:F4:90:41:F7:CF:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W1JjSi6wP4VlteM9wrn0kEH3z7A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/7a5b44-6b18-42d3-a8d5-dc6554fd1235/1/6mNkAsgVIjAGkC6_St25qvZwrsc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/7a5b44-6b18-42d3-a8d5-dc6554fd1235/1/W1JjSi6wP4VlteM9wrn0kEH3z7A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.156.12.0/22
77.238.108.0/22
Signature Algorithm: sha256WithRSAEncryption
d0:93:2a:6a:a8:c9:52:2c:36:76:20:0a:46:45:c3:13:aa:b0:
25:fa:47:65:0a:4a:34:ae:e6:f5:21:5e:eb:02:96:68:04:09:
7d:56:ac:ac:52:da:1a:36:75:24:da:f8:97:17:e4:ef:a0:6b:
9b:e9:ba:b7:e7:4a:78:66:8b:0a:77:dc:34:6b:de:8c:da:8e:
b5:60:26:26:a2:85:0c:a9:86:bf:bd:b3:99:fb:69:79:35:a5:
68:ff:d6:24:62:d7:02:5a:db:6c:3f:9a:b2:3b:48:ab:a8:cd:
b4:69:26:98:61:65:74:40:20:a6:87:c5:90:f7:d0:10:4b:e2:
e0:c2:4f:f5:ed:65:10:bb:90:ea:22:6e:e2:e7:22:e3:32:e0:
ee:81:3b:5e:8e:97:e9:32:d2:03:ac:95:ac:36:61:82:73:c8:
10:24:54:a1:ee:fc:f0:74:90:47:6d:70:d3:9d:26:f2:02:dd:
30:02:bc:9f:1f:99:2b:47:f4:29:c0:a7:32:7b:2f:a7:e7:4a:
74:8a:ea:78:11:b4:46:fb:92:20:a9:ee:92:fe:4d:e8:2b:1d:
bf:03:9c:d8:8b:39:21:dd:6b:71:71:ea:0b:02:ec:2b:21:24:
d3:32:ed:ab:de:ee:d8:21:2c:28:a4:f4:2f:eb:d0:2c:40:22:
65:a2:6d:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:07 2024 by rpki-client on console-fra.rpki-client.org