Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/sBU7ya6OlWqvlFuJxW5raEcZ3Co.roa
File: sBU7ya6OlWqvlFuJxW5raEcZ3Co.roa (raw, json)
Hash identifier: yya0FvnEsA3vS4pgV6j2AfT4rWEbpB/ISErclhmrE9I=
Subject key identifier: B0:15:3B:C9:AE:8E:95:6A:AF:94:5B:89:C5:6E:6B:68:47:19:DC:2A
Certificate issuer: /CN=641975583b250362c8150f63adb30a0f6a0c6fc3
Certificate serial: 0188E246483C1E77D844F693C44124FFB455
Authority key identifier: 64:19:75:58:3B:25:03:62:C8:15:0F:63:AD:B3:0A:0F:6A:0C:6F:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZBl1WDslA2LIFQ9jrbMKD2oMb8M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/sBU7ya6OlWqvlFuJxW5raEcZ3Co.roa
Signing time: Thu 22 Jun 2023 08:43:56 +0000
ROA not before: Thu 22 Jun 2023 08:43:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61294
IP address blocks: 37.220.142.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:e2:46:48:3c:1e:77:d8:44:f6:93:c4:41:24:ff:b4:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=641975583b250362c8150f63adb30a0f6a0c6fc3
Validity
Not Before: Jun 22 08:43:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b0153bc9ae8e956aaf945b89c56e6b684719dc2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:89:65:85:d4:d5:1c:a4:05:fb:b5:47:68:48:
62:7a:7f:5c:76:e1:c4:21:30:23:3e:3b:76:c1:b6:
e9:40:ee:aa:43:8b:b4:09:5d:97:b1:c4:9b:a1:ea:
79:0c:76:53:77:37:a2:e3:ba:ed:0d:cb:ad:0d:21:
7a:74:f5:7c:ff:31:00:ae:3c:ad:12:ba:90:78:0c:
bc:28:ae:61:c6:d8:11:95:49:f5:a5:91:ce:76:97:
2f:7d:06:c5:24:f3:77:4c:6d:05:b6:8c:fb:17:31:
4a:5f:c0:a4:a7:e8:a4:40:d5:57:7f:46:97:1d:1d:
20:f9:8f:58:c6:45:70:81:ff:2c:33:6f:4b:4b:e2:
f5:34:6e:ff:59:bc:4c:0f:17:f9:67:6e:2e:86:18:
09:55:81:b3:59:cc:b2:ca:3a:da:ec:95:91:f7:3d:
57:ce:bf:33:ed:ec:51:03:56:55:f1:25:a5:58:01:
72:cc:0e:4c:43:e2:71:60:29:df:46:09:ac:51:3f:
d8:06:be:80:d7:34:6e:54:e1:e0:a7:f1:c6:1d:10:
3a:7a:d7:74:3d:be:d1:22:0a:2d:6f:31:1e:7b:2a:
92:31:21:8a:5e:0b:a9:63:d7:82:ff:5d:5c:df:70:
72:4d:62:78:65:7c:73:31:18:2e:9b:b5:33:5b:95:
4d:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:15:3B:C9:AE:8E:95:6A:AF:94:5B:89:C5:6E:6B:68:47:19:DC:2A
X509v3 Authority Key Identifier:
keyid:64:19:75:58:3B:25:03:62:C8:15:0F:63:AD:B3:0A:0F:6A:0C:6F:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZBl1WDslA2LIFQ9jrbMKD2oMb8M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/sBU7ya6OlWqvlFuJxW5raEcZ3Co.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/ZBl1WDslA2LIFQ9jrbMKD2oMb8M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.220.142.0/24
Signature Algorithm: sha256WithRSAEncryption
47:65:73:fd:f7:d7:e0:07:98:8e:1d:b1:b9:1e:c2:a1:6e:67:
3e:2c:73:7b:0b:c6:3e:d1:04:8e:f9:ea:45:ce:95:83:41:6d:
9b:de:0c:08:3a:ee:97:7c:96:12:6a:0e:2f:50:81:f0:38:37:
80:a0:3b:6f:80:08:4e:96:96:d5:4b:52:e6:35:35:36:0e:d5:
dc:6c:e3:06:91:7e:c3:fd:2f:fb:2d:d1:66:5e:e2:00:66:29:
3b:0e:8b:e2:72:25:4f:3b:51:7e:f5:69:59:b3:36:e8:a9:b9:
9f:f1:e2:13:0e:11:75:58:ff:11:84:f8:55:9b:93:ba:72:36:
6d:cb:d5:03:e0:8e:62:4b:42:e9:87:97:0e:a8:ef:5a:3c:ab:
68:f7:a0:42:7b:a9:2d:54:d5:5e:37:76:98:83:eb:2b:36:aa:
3c:6e:38:e7:c7:d4:3b:29:a0:93:77:1f:96:2f:43:82:4c:a4:
89:4d:99:fc:a6:f2:b1:87:8c:9c:cc:ab:ce:64:c5:cb:4b:e1:
2a:ba:16:84:f4:83:d8:62:1c:35:87:80:78:b7:60:ea:05:53:
6e:70:a4:26:d5:cf:cc:33:3a:c9:ba:36:3c:ef:db:c9:07:82:
be:5a:9a:46:0b:42:d8:81:2a:3b:57:33:5c:71:da:0d:da:74:
cf:14:cb:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 15:03:25 2024 by rpki-client on console-ams.rpki-client.org