Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/58e655-e713-45d2-958a-1822867e1596/1/24jthlz3QJlTTCV5ZAqPsZMFQfg.roa
File: 24jthlz3QJlTTCV5ZAqPsZMFQfg.roa (raw, json)
Hash identifier: qitRYYROwPxUzif/QOcR8mimzA8o7eMLKravVUSTeHU=
Subject key identifier: DB:88:ED:86:5C:F7:40:99:53:4C:25:79:64:0A:8F:B1:93:05:41:F8
Certificate issuer: /CN=dc4e453affe895b6452b84027437c5c00fd37067
Certificate serial: 0188914FE64289EB7CE008CB0A15D59014DA
Authority key identifier: DC:4E:45:3A:FF:E8:95:B6:45:2B:84:02:74:37:C5:C0:0F:D3:70:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3E5FOv_olbZFK4QCdDfFwA_TcGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/58e655-e713-45d2-958a-1822867e1596/1/24jthlz3QJlTTCV5ZAqPsZMFQfg.roa
Signing time: Tue 06 Jun 2023 15:25:12 +0000
ROA not before: Tue 06 Jun 2023 15:25:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29286
IP address blocks: 37.46.18.0/24 maxlen: 24
37.46.18.0/23 maxlen: 23
37.46.19.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:91:4f:e6:42:89:eb:7c:e0:08:cb:0a:15:d5:90:14:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc4e453affe895b6452b84027437c5c00fd37067
Validity
Not Before: Jun 6 15:25:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=db88ed865cf74099534c2579640a8fb1930541f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:61:d8:31:12:31:f3:74:be:f2:ad:1e:ef:0b:
59:b9:d2:1b:2f:f7:aa:bc:e8:01:b1:f2:4b:52:88:
66:4d:db:f2:cc:15:0b:08:f0:54:d8:c6:b1:28:c8:
f0:65:71:29:60:56:60:da:df:f9:b6:f2:a4:31:1f:
ce:11:67:cc:2f:ad:79:f5:2e:a5:4b:4b:87:7e:7e:
e8:a4:9f:30:6a:20:5c:cd:21:c2:cc:ea:44:2e:c5:
af:9d:03:bb:90:7f:cd:36:38:a4:09:64:22:87:7d:
77:c3:ce:68:53:f9:49:88:60:9c:d4:1d:16:72:04:
1e:30:88:5e:87:24:b3:bb:06:df:54:d7:24:29:ae:
18:dc:ee:a9:51:40:df:d0:94:7c:89:87:ee:b1:98:
ae:f7:83:b1:c9:6b:05:24:ec:8c:79:6e:6b:1f:76:
4d:a3:30:4c:17:35:91:3b:29:d2:d3:89:93:83:0a:
6b:69:28:fa:78:c3:df:27:3b:64:ca:5e:58:5a:40:
27:56:b9:ff:cb:85:5d:57:60:d3:4f:b3:70:1b:83:
36:9c:7e:89:0a:63:da:0b:dc:a3:4a:f8:16:f2:04:
65:b6:a5:85:67:01:80:50:cb:0d:84:8a:d6:4a:fc:
d9:67:b0:b3:9d:f5:ef:48:52:db:f0:1d:0a:f6:ac:
7a:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:88:ED:86:5C:F7:40:99:53:4C:25:79:64:0A:8F:B1:93:05:41:F8
X509v3 Authority Key Identifier:
keyid:DC:4E:45:3A:FF:E8:95:B6:45:2B:84:02:74:37:C5:C0:0F:D3:70:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3E5FOv_olbZFK4QCdDfFwA_TcGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/58e655-e713-45d2-958a-1822867e1596/1/24jthlz3QJlTTCV5ZAqPsZMFQfg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/58e655-e713-45d2-958a-1822867e1596/1/3E5FOv_olbZFK4QCdDfFwA_TcGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.46.18.0/23
Signature Algorithm: sha256WithRSAEncryption
33:4d:90:13:60:5c:1b:00:88:57:67:3c:60:d4:27:b2:a1:f4:
9f:44:04:a9:23:8b:30:81:4b:b5:b0:79:32:b5:8d:2f:1f:f4:
71:2a:fe:d7:5f:bc:31:56:68:46:10:29:c9:14:08:e9:53:72:
48:2b:9f:5c:e2:12:75:44:ea:b0:d3:e2:c9:f8:fc:1d:00:d4:
bc:1c:b3:89:5b:84:de:95:d4:a1:09:5a:fc:a5:ff:54:34:49:
72:1a:99:ae:35:52:46:82:49:98:12:35:28:e3:94:82:c2:80:
69:98:ed:2e:46:d4:a4:d8:3b:70:48:9c:e3:d8:ee:d5:9b:27:
48:30:e0:5d:df:67:6d:17:54:c1:c6:f9:df:10:6d:6e:d2:b9:
c4:b3:e1:f6:b0:9b:8c:3e:a1:89:9c:c9:be:58:59:3f:bc:4d:
b1:4f:40:77:37:fc:43:0e:04:b3:3d:ae:f1:b6:db:05:05:02:
21:df:91:16:02:92:dd:42:bf:2e:32:80:c9:6f:8c:43:e1:76:
d8:62:0b:0b:35:62:8a:d1:e2:a9:41:2c:df:de:94:92:7b:31:
d6:d1:a2:28:06:18:c4:94:fb:0a:fe:90:e0:8d:22:e9:fd:9e:
2a:a0:1e:33:c5:1d:cf:87:46:3b:34:da:44:9e:0a:b2:cf:77:
2c:93:43:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 14:37:35 2024 by rpki-client on console-fra.rpki-client.org