Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/46431e-4951-4e1a-9195-68a4551f68a8/1/YhI8eiPaU3JEEtNiBVUodQgM-Dw.roa
File: YhI8eiPaU3JEEtNiBVUodQgM-Dw.roa (raw, json)
Hash identifier: lV3PxO0oXEllvihwLyq9yqwzJnd1cMRsadZykn2QIHk=
Subject key identifier: 62:12:3C:7A:23:DA:53:72:44:12:D3:62:05:55:28:75:08:0C:F8:3C
Certificate issuer: /CN=ebf36087c3fcecfb006f518d7811b255ea57c90d
Certificate serial: 0185701EE4FBC9C5C60D3F392BC388A3A17C
Authority key identifier: EB:F3:60:87:C3:FC:EC:FB:00:6F:51:8D:78:11:B2:55:EA:57:C9:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6_Ngh8P87PsAb1GNeBGyVepXyQ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/46431e-4951-4e1a-9195-68a4551f68a8/1/YhI8eiPaU3JEEtNiBVUodQgM-Dw.roa
Signing time: Mon 02 Jan 2023 01:35:50 +0000
ROA not before: Mon 02 Jan 2023 01:35:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203712
IP address blocks: 37.18.132.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:1e:e4:fb:c9:c5:c6:0d:3f:39:2b:c3:88:a3:a1:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ebf36087c3fcecfb006f518d7811b255ea57c90d
Validity
Not Before: Jan 2 01:35:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=62123c7a23da53724412d36205552875080cf83c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:35:1f:0b:cf:a3:e7:92:cb:04:21:11:e6:f1:
74:db:3d:40:4d:15:36:50:cc:1a:bc:a8:d6:26:20:
fd:2d:00:fb:12:9e:83:92:ea:94:01:98:b0:f3:bc:
ce:d4:78:97:a7:c4:3c:e7:68:9b:99:84:3b:a2:94:
4f:cd:5b:ad:6b:45:a3:f9:cf:ce:70:fa:7c:14:c2:
59:fe:f0:8a:df:81:67:75:2e:26:76:96:2e:1d:7b:
73:cc:91:e8:7a:c6:7a:c1:3e:49:60:7b:4a:61:00:
f9:3e:af:7e:82:ae:5f:5d:3c:9c:6c:8f:60:75:1d:
64:d5:fb:6d:84:cb:97:29:a0:f2:7e:37:f4:92:fd:
ea:a3:d1:61:e6:e2:00:b3:94:25:c8:9e:0a:bd:0e:
c9:f0:b5:61:16:87:b2:c1:a8:e0:d5:80:e0:69:42:
a5:a3:7a:4c:75:d0:42:3f:7b:93:2c:2f:32:0c:3d:
30:ff:72:24:96:01:f2:d2:50:48:21:94:cb:ed:76:
af:fb:c6:dd:b1:2e:57:22:99:b9:8c:e6:c1:33:f7:
98:f9:31:63:24:3e:92:6b:f2:ec:87:8f:71:ea:9a:
04:22:3e:9e:44:5f:80:30:86:b3:14:99:49:a5:5e:
b3:08:5b:10:99:b1:02:35:0b:10:6e:b3:39:ab:19:
69:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:12:3C:7A:23:DA:53:72:44:12:D3:62:05:55:28:75:08:0C:F8:3C
X509v3 Authority Key Identifier:
keyid:EB:F3:60:87:C3:FC:EC:FB:00:6F:51:8D:78:11:B2:55:EA:57:C9:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6_Ngh8P87PsAb1GNeBGyVepXyQ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/46431e-4951-4e1a-9195-68a4551f68a8/1/YhI8eiPaU3JEEtNiBVUodQgM-Dw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/46431e-4951-4e1a-9195-68a4551f68a8/1/6_Ngh8P87PsAb1GNeBGyVepXyQ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.18.132.0/22
Signature Algorithm: sha256WithRSAEncryption
21:86:5a:74:8b:7a:93:be:9d:86:12:69:b5:d3:3d:a0:12:e4:
bc:7d:26:c7:9d:55:c2:a8:d3:98:06:e3:1d:7b:28:85:4b:1f:
4c:41:79:a5:12:8a:dc:52:66:df:81:20:0e:8a:49:80:2c:b3:
0d:ab:4f:b6:27:f2:45:0f:b7:aa:88:fd:b1:51:34:d6:a8:fc:
10:7d:a7:b9:75:58:03:40:7b:d3:52:3c:3f:7f:a0:89:50:b9:
d4:e5:7e:ac:62:f1:0c:3b:56:9b:67:0a:3c:a6:73:31:f7:75:
98:b9:a5:e5:21:75:eb:e5:2b:db:c0:1d:38:de:60:9a:65:79:
be:6d:97:72:44:06:82:66:e8:ef:59:33:4e:b0:90:b7:d7:d2:
f6:81:bb:15:fb:de:5d:b1:7f:b2:05:a3:23:ee:3c:44:b9:eb:
04:61:de:2d:05:74:70:6a:e0:be:48:c7:a4:fe:0e:15:cb:de:
d0:97:7d:3c:ae:d9:89:fc:da:51:4e:83:81:2b:73:ea:6c:44:
6e:f6:a5:ff:50:20:76:87:0a:ef:5b:0d:7a:70:1d:00:80:71:
56:b8:a0:df:e1:24:f2:22:29:b1:95:d7:93:7f:08:92:bb:78:
99:2c:5d:cd:12:b1:e3:84:cb:6e:76:92:c9:84:05:05:4e:b5:
b3:49:22:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 18:21:54 2024 by rpki-client on console-ams.rpki-client.org