Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/278952-9353-4afd-a00d-f7e7bb014db8/1/Az28kCThKSETLB8ky8anrl2p-c8.roa
File: Az28kCThKSETLB8ky8anrl2p-c8.roa (raw, json)
Hash identifier: rOUOR8JDMU+vdOME3UNvvG2paGMEuGj1W5As7ID8VIQ=
Subject key identifier: 03:3D:BC:90:24:E1:29:21:13:2C:1F:24:CB:C6:A7:AE:5D:A9:F9:CF
Certificate issuer: /CN=c41091d34703c03ef8f8d29cbbdcd98c3e706f84
Certificate serial: 018570D512E7C77DBC2C67A82C5DEB4B5424
Authority key identifier: C4:10:91:D3:47:03:C0:3E:F8:F8:D2:9C:BB:DC:D9:8C:3E:70:6F:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xBCR00cDwD74-NKcu9zZjD5wb4Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/278952-9353-4afd-a00d-f7e7bb014db8/1/Az28kCThKSETLB8ky8anrl2p-c8.roa
Signing time: Mon 02 Jan 2023 04:54:50 +0000
ROA not before: Mon 02 Jan 2023 04:54:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49121
IP address blocks: 37.77.145.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:d5:12:e7:c7:7d:bc:2c:67:a8:2c:5d:eb:4b:54:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c41091d34703c03ef8f8d29cbbdcd98c3e706f84
Validity
Not Before: Jan 2 04:54:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=033dbc9024e12921132c1f24cbc6a7ae5da9f9cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:ef:0b:63:ec:37:03:27:b2:dd:87:50:86:0e:
e6:55:2e:e6:17:c8:a9:9c:04:38:20:eb:42:7d:fe:
80:58:09:d5:71:5d:9d:59:87:7a:f0:2f:62:8d:1e:
95:7e:e5:fb:f1:c9:dc:fb:66:39:fe:51:01:16:a4:
15:e2:cb:f1:95:ac:b2:99:ca:87:de:03:2d:52:dd:
9d:37:37:8d:6b:2e:4c:20:c5:5c:a8:ad:21:1e:58:
0b:a7:59:5b:93:3f:3b:4a:2d:e3:ad:e4:1d:9a:c4:
9e:24:ab:c0:fb:ad:6a:53:01:a0:3e:88:a0:6c:21:
b2:5c:df:7e:6a:3d:e3:4a:11:16:fd:57:6b:7a:d8:
04:e6:6d:c8:46:64:f3:4c:93:22:9a:98:2d:eb:72:
69:c0:40:5c:10:0f:22:65:af:ec:9e:15:66:ad:cc:
d2:b7:02:a4:9c:cf:bd:bd:40:26:d7:ea:48:2e:90:
81:1e:c1:6b:75:65:c7:49:c6:2e:e0:68:37:44:1a:
58:a8:8a:07:17:33:04:8d:61:f5:ac:31:25:c1:54:
5b:fe:d7:31:59:20:db:bc:ec:63:54:f6:ac:a7:ab:
e6:8e:0c:8e:f1:7d:23:6e:44:db:57:4f:b6:49:4e:
97:b0:a4:68:7d:d5:47:a1:96:58:0a:f5:12:52:bd:
b2:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:3D:BC:90:24:E1:29:21:13:2C:1F:24:CB:C6:A7:AE:5D:A9:F9:CF
X509v3 Authority Key Identifier:
keyid:C4:10:91:D3:47:03:C0:3E:F8:F8:D2:9C:BB:DC:D9:8C:3E:70:6F:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xBCR00cDwD74-NKcu9zZjD5wb4Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/278952-9353-4afd-a00d-f7e7bb014db8/1/Az28kCThKSETLB8ky8anrl2p-c8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/278952-9353-4afd-a00d-f7e7bb014db8/1/xBCR00cDwD74-NKcu9zZjD5wb4Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.77.145.0/24
Signature Algorithm: sha256WithRSAEncryption
79:b8:4a:a9:0b:2b:9e:b8:77:e6:a5:42:c6:93:94:4f:94:0f:
34:43:95:66:03:94:a5:a7:06:51:ba:7d:1a:ea:87:96:16:ab:
f0:2e:eb:bf:27:2f:52:ed:2b:f4:68:01:66:e5:0b:6b:7f:e8:
2e:12:d2:9f:d5:80:b6:b9:7d:ce:3f:4d:21:4b:67:e8:cd:17:
f7:2e:3c:21:8a:50:b5:b0:92:79:d0:c7:37:bf:2a:9f:1a:c5:
87:44:b3:ac:4a:37:8e:90:93:ca:e5:04:4e:ac:b7:cf:d5:5e:
0f:8a:de:a1:91:8a:45:30:b5:e2:fe:fe:fa:96:63:0d:53:c8:
d5:88:09:a0:b7:19:11:5a:67:57:ce:ad:2e:df:26:bb:b6:06:
21:a5:99:84:43:4b:b6:7b:8b:8b:8a:e2:d8:72:c4:0c:c0:09:
e9:cb:3e:47:7b:d5:6e:2b:6c:c9:5a:0c:a4:5c:67:4f:3e:6b:
3f:bd:75:e1:b7:87:ca:38:43:53:7d:63:78:1e:5a:e7:ef:80:
a7:45:cc:fb:12:1a:3e:0c:2d:41:4b:2b:5a:51:bd:ca:32:c9:
d8:cb:e5:ca:08:36:db:c7:7e:29:76:d8:06:fb:11:14:83:a5:
3f:9d:e5:04:30:33:e7:67:cb:b7:0e:10:4b:c5:2c:cf:26:18:
5c:74:38:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:01 2024 by rpki-client on console-fra.rpki-client.org