Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/c4c861-b327-41f2-820c-4c0a1c33fa8a/1/EHLSUorU2c5x4sT33F_2nQb5pYA.roa
File: EHLSUorU2c5x4sT33F_2nQb5pYA.roa (raw, json)
Hash identifier: FQvGd/eNaKcmolMhzVwFvF0wzRXVHaRyp0pBygHcnJM=
Subject key identifier: 10:72:D2:52:8A:D4:D9:CE:71:E2:C4:F7:DC:5F:F6:9D:06:F9:A5:80
Certificate issuer: /CN=084059a0ca6078a9b75daa66db806ff22c0eaad9
Certificate serial: 01856F4B78D4D3C7EEFA7B641A813A5437F5
Authority key identifier: 08:40:59:A0:CA:60:78:A9:B7:5D:AA:66:DB:80:6F:F2:2C:0E:AA:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CEBZoMpgeKm3Xapm24Bv8iwOqtk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/c4c861-b327-41f2-820c-4c0a1c33fa8a/1/EHLSUorU2c5x4sT33F_2nQb5pYA.roa
Signing time: Sun 01 Jan 2023 21:44:55 +0000
ROA not before: Sun 01 Jan 2023 21:44:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29791
IP address blocks: 185.37.37.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:4b:78:d4:d3:c7:ee:fa:7b:64:1a:81:3a:54:37:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=084059a0ca6078a9b75daa66db806ff22c0eaad9
Validity
Not Before: Jan 1 21:44:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1072d2528ad4d9ce71e2c4f7dc5ff69d06f9a580
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:16:b2:a8:a7:c8:62:8a:91:46:c6:1f:07:f9:
93:4b:fe:22:a8:2e:b9:3f:59:cf:1d:cf:1c:c3:12:
eb:33:fb:bb:9a:15:17:b2:cb:26:a4:ab:2e:73:d9:
93:f5:e8:ce:53:ce:91:08:d8:32:41:60:d7:e6:e1:
da:d4:cf:2e:d4:65:2d:3e:d6:f2:94:cc:59:46:05:
19:f2:00:d5:e2:e2:26:9a:5a:71:03:bf:a9:3a:73:
94:ae:7a:aa:3b:f8:1e:67:74:14:d4:de:77:b8:87:
4a:b0:ab:74:49:71:7c:5b:3d:57:15:ab:24:b5:ca:
82:7a:cd:e2:bf:28:a7:59:e5:e2:fa:a8:eb:cb:87:
53:17:b9:a4:d2:f6:91:04:08:5c:3a:21:3a:b6:44:
72:4b:ca:79:97:fe:a0:60:ea:d7:e7:bd:e1:8a:73:
5f:50:aa:99:dc:88:13:45:73:3f:5d:3d:31:08:75:
37:d3:fd:28:56:63:5f:25:b1:56:33:e7:1d:c6:f9:
82:e6:a6:c1:d1:ae:be:5d:8d:7c:70:b8:2d:c4:dd:
1f:62:41:2d:14:52:53:c5:db:95:43:a5:e1:47:91:
d8:63:21:43:f8:8a:52:c2:76:e2:0b:bd:8b:3c:67:
7a:8b:38:ce:9c:df:6c:60:6f:81:2d:fa:9a:76:18:
43:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:72:D2:52:8A:D4:D9:CE:71:E2:C4:F7:DC:5F:F6:9D:06:F9:A5:80
X509v3 Authority Key Identifier:
keyid:08:40:59:A0:CA:60:78:A9:B7:5D:AA:66:DB:80:6F:F2:2C:0E:AA:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CEBZoMpgeKm3Xapm24Bv8iwOqtk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/c4c861-b327-41f2-820c-4c0a1c33fa8a/1/EHLSUorU2c5x4sT33F_2nQb5pYA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/c4c861-b327-41f2-820c-4c0a1c33fa8a/1/CEBZoMpgeKm3Xapm24Bv8iwOqtk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.37.37.0/24
Signature Algorithm: sha256WithRSAEncryption
89:ed:09:73:21:36:2c:5f:35:5a:7b:47:6d:65:50:8f:36:d1:
d5:b4:9c:40:fd:fa:5c:f3:0f:8a:6c:9f:d7:a5:5a:2e:a0:32:
4b:2f:ae:5d:f6:b9:16:84:24:11:73:c4:66:db:6e:0d:7c:72:
0d:a0:37:4a:18:89:e6:d5:ef:3e:bd:34:78:e2:ee:d2:d5:d8:
10:ff:c3:29:fc:36:53:fe:0b:bc:5f:7b:e8:37:34:a4:ba:34:
46:02:b2:c4:f6:83:09:44:fe:1e:c9:51:25:b3:8c:4f:64:79:
67:6a:d7:61:cc:b9:6a:35:9c:b0:e3:73:6f:ff:b8:ca:31:ca:
ff:50:57:54:b1:bf:21:ff:36:17:85:57:12:c1:9b:3f:14:04:
b3:62:94:02:47:c5:ad:e5:5b:35:55:0c:a4:ae:b2:65:cf:f3:
68:bb:ad:ed:86:91:77:2c:27:49:d0:98:ff:e8:3d:4f:e1:a4:
f7:2b:c0:51:7f:a7:a3:22:08:87:4f:22:5d:dc:e8:9a:04:af:
ed:0b:8b:36:07:8a:e9:cf:76:40:57:1e:fa:29:4b:51:68:7c:
78:c6:bc:55:ce:a1:24:6b:23:6a:e3:12:b1:c2:8a:d8:a8:2e:
79:2b:a0:c0:57:3d:29:df:c8:da:75:82:47:85:4f:31:0a:65:
19:61:16:9d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvS3jU08fu+ntkGoE6VDf1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA4NDA1OWEwY2E2MDc4YTliNzVkYWE2NmRiODA2ZmYyMmMw
ZWFhZDkwHhcNMjMwMTAxMjE0NDU1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMDcyZDI1MjhhZDRkOWNlNzFlMmM0ZjdkYzVmZjY5ZDA2ZjlhNTgwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgBayqKfIYoqRRsYfB/mTS/4iqC65
P1nPHc8cwxLrM/u7mhUXsssmpKsuc9mT9ejOU86RCNgyQWDX5uHa1M8u1GUtPtby
lMxZRgUZ8gDV4uImmlpxA7+pOnOUrnqqO/geZ3QU1N53uIdKsKt0SXF8Wz1XFask
tcqCes3ivyinWeXi+qjry4dTF7mk0vaRBAhcOiE6tkRyS8p5l/6gYOrX573hinNf
UKqZ3IgTRXM/XT0xCHU30/0oVmNfJbFWM+cdxvmC5qbB0a6+XY18cLgtxN0fYkEt
FFJTxduVQ6XhR5HYYyFD+IpSwnbiC72LPGd6izjOnN9sYG+BLfqadhhD1wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBBy0lKK1NnOceLE99xf9p0G+aWAMB8GA1UdIwQY
MBaAFAhAWaDKYHipt12qZtuAb/IsDqrZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ0VCWm9NcGdlS20zWGFwbTI0QnY4aXdPcXRrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC9jNGM4NjEtYjMyNy00MWYyLTgyMGMt
NGMwYTFjMzNmYThhLzEvRUhMU1VvclUyYzV4NHNUMzNGXzJuUWI1cFlBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jOC9jNGM4NjEtYjMyNy00MWYyLTgyMGMtNGMwYTFjMzNmYThh
LzEvQ0VCWm9NcGdlS20zWGFwbTI0QnY4aXdPcXRrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuSUlMA0G
CSqGSIb3DQEBCwUAA4IBAQCJ7QlzITYsXzVae0dtZVCPNtHVtJxA/fpc8w+KbJ/X
pVouoDJLL65d9rkWhCQRc8Rm224NfHINoDdKGInm1e8+vTR44u7S1dgQ/8Mp/DZT
/gu8X3voNzSkujRGArLE9oMJRP4eyVEls4xPZHlnatdhzLlqNZyw43Nv/7jKMcr/
UFdUsb8h/zYXhVcSwZs/FASzYpQCR8Wt5Vs1VQykrrJlz/Nou63thpF3LCdJ0Jj/
6D1P4aT3K8BRf6ejIgiHTyJd3OiaBK/tC4s2B4rpz3ZAVx76KUtRaHx4xrxVzqEk
ayNq4xKxworYqC55K6DAVz0p38jadYJHhU8xCmUZYRad
-----END CERTIFICATE-----
Generated at Tue Jan 2 01:50:35 2024 by rpki-client on console-fra.rpki-client.org