Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/24e327-7658-463c-8990-b1c9b789aaa9/1/P74O-wRJktWDkiZZqD2tqU1j7NY.roa
File: P74O-wRJktWDkiZZqD2tqU1j7NY.roa (raw, json)
Hash identifier: sJzV2bHhp8Yizg2NWhk/2GuoKJQvEJaD8ntegWOF1MQ=
Subject key identifier: 3F:BE:0E:FB:04:49:92:D5:83:92:26:59:A8:3D:AD:A9:4D:63:EC:D6
Certificate issuer: /CN=c7e8d959f1c9564a33f28fe44ab614b8f62b001b
Certificate serial: 0185719E98A370A9BF29FC25EEEEBB0B3180
Authority key identifier: C7:E8:D9:59:F1:C9:56:4A:33:F2:8F:E4:4A:B6:14:B8:F6:2B:00:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x-jZWfHJVkoz8o_kSrYUuPYrABs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/24e327-7658-463c-8990-b1c9b789aaa9/1/P74O-wRJktWDkiZZqD2tqU1j7NY.roa
Signing time: Mon 02 Jan 2023 08:34:57 +0000
ROA not before: Mon 02 Jan 2023 08:34:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207539
IP address blocks: 37.60.29.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:32:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:9e:98:a3:70:a9:bf:29:fc:25:ee:ee:bb:0b:31:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c7e8d959f1c9564a33f28fe44ab614b8f62b001b
Validity
Not Before: Jan 2 08:34:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3fbe0efb044992d583922659a83dada94d63ecd6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:22:a3:54:23:2a:7e:34:17:7a:d5:50:4c:93:
94:e7:35:c0:e1:46:7d:ca:b4:98:2c:ed:15:8d:06:
af:99:db:76:01:5a:7a:b8:e1:e1:47:bd:75:00:f6:
a9:ee:86:c6:f4:16:f5:58:20:c2:26:da:f8:2b:a4:
9d:ae:27:55:56:00:50:c6:9f:45:77:76:6b:ca:b2:
2e:bd:c1:65:54:c5:9d:60:0b:80:be:c5:3e:d2:56:
59:d7:6c:4e:a8:49:6a:cc:cf:86:94:1a:38:13:5c:
18:d5:17:26:22:24:37:e2:94:19:45:3f:31:34:2c:
d2:08:86:81:0b:b4:1f:6f:91:c2:59:1d:66:88:d4:
99:60:c1:ce:1d:22:c9:79:f7:50:a9:3b:40:e5:a8:
0e:90:1c:ed:1c:1c:8c:ec:cd:9e:b1:01:25:58:ea:
1f:1a:49:4e:3f:9d:dc:71:f3:c3:04:8c:fd:19:2c:
d7:dc:34:62:b6:91:5b:56:3b:fb:b6:6c:0f:ca:0f:
c0:c1:0c:69:fa:d7:90:9d:d3:4a:35:1c:50:a0:4d:
fc:98:3d:ca:bc:e6:e3:f8:71:7b:71:8c:cb:7a:b7:
96:01:47:67:d3:09:80:3f:95:bd:05:59:8b:14:4f:
bf:90:3a:b4:9d:0f:73:2a:76:5d:da:13:46:9f:de:
cf:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:BE:0E:FB:04:49:92:D5:83:92:26:59:A8:3D:AD:A9:4D:63:EC:D6
X509v3 Authority Key Identifier:
keyid:C7:E8:D9:59:F1:C9:56:4A:33:F2:8F:E4:4A:B6:14:B8:F6:2B:00:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x-jZWfHJVkoz8o_kSrYUuPYrABs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/24e327-7658-463c-8990-b1c9b789aaa9/1/P74O-wRJktWDkiZZqD2tqU1j7NY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/24e327-7658-463c-8990-b1c9b789aaa9/1/x-jZWfHJVkoz8o_kSrYUuPYrABs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.60.29.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:91:86:d5:3e:c6:8c:95:e3:79:d5:88:25:03:2d:fc:6e:8d:
fe:64:83:a8:5a:9a:e7:dc:0a:a2:ce:db:6a:6e:8b:7d:36:20:
e3:cd:f3:a8:1b:a4:6e:41:e0:50:65:1a:b8:bc:36:02:2c:9c:
74:e4:c7:63:49:50:79:f2:32:c8:0d:b2:92:ed:23:a7:b5:a8:
3b:9e:2e:5d:83:ed:b9:8c:de:fe:59:b0:13:cc:3d:90:96:60:
49:c7:32:3c:f8:76:c2:1a:bf:00:d5:c5:71:04:11:dc:7a:54:
fd:3e:b4:ba:66:2e:3d:51:8a:54:09:db:61:c8:9b:9a:f5:41:
4c:a8:0c:ae:2a:1c:16:2f:c3:8e:60:b4:d1:75:ee:65:93:a5:
ce:60:c2:1e:4c:c2:4b:b1:8f:86:bf:ac:20:ef:bb:19:85:9c:
ed:e6:98:20:ae:58:89:14:87:7c:4e:6e:af:97:22:7c:1d:e0:
5e:72:52:1e:a3:d1:8a:eb:84:32:29:4c:67:58:00:c6:e2:e0:
07:1e:79:92:2b:f5:7b:f5:7e:93:26:55:3f:66:16:5b:d7:41:
d6:6b:02:9e:96:a4:f6:d0:ec:ca:22:a3:68:08:07:9d:d1:08:
8d:f6:2f:3e:8f:a4:cc:cd:68:40:b6:60:9e:7d:51:39:f8:6f:
62:6a:cf:73
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVxnpijcKm/Kfwl7u67CzGAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM3ZThkOTU5ZjFjOTU2NGEzM2YyOGZlNDRhYjYxNGI4ZjYy
YjAwMWIwHhcNMjMwMTAyMDgzNDU3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzZmJlMGVmYjA0NDk5MmQ1ODM5MjI2NTlhODNkYWRhOTRkNjNlY2Q2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvSKjVCMqfjQXetVQTJOU5zXA4UZ9
yrSYLO0VjQavmdt2AVp6uOHhR711APap7obG9Bb1WCDCJtr4K6SdridVVgBQxp9F
d3ZryrIuvcFlVMWdYAuAvsU+0lZZ12xOqElqzM+GlBo4E1wY1RcmIiQ34pQZRT8x
NCzSCIaBC7Qfb5HCWR1miNSZYMHOHSLJefdQqTtA5agOkBztHByM7M2esQElWOof
GklOP53ccfPDBIz9GSzX3DRitpFbVjv7tmwPyg/AwQxp+teQndNKNRxQoE38mD3K
vObj+HF7cYzLereWAUdn0wmAP5W9BVmLFE+/kDq0nQ9zKnZd2hNGn97PPwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFD++DvsESZLVg5ImWag9ralNY+zWMB8GA1UdIwQY
MBaAFMfo2VnxyVZKM/KP5Eq2FLj2KwAbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveC1qWldmSEpWa296OG9fa1NyWVV1UFlyQUJzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy8yNGUzMjctNzY1OC00NjNjLTg5OTAt
YjFjOWI3ODlhYWE5LzEvUDc0Ty13UkprdFdEa2laWnFEMnRxVTFqN05ZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNy8yNGUzMjctNzY1OC00NjNjLTg5OTAtYjFjOWI3ODlhYWE5
LzEveC1qWldmSEpWa296OG9fa1NyWVV1UFlyQUJzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAJTwdMA0G
CSqGSIb3DQEBCwUAA4IBAQAskYbVPsaMleN51YglAy38bo3+ZIOoWprn3Aqizttq
bot9NiDjzfOoG6RuQeBQZRq4vDYCLJx05MdjSVB58jLIDbKS7SOntag7ni5dg+25
jN7+WbATzD2QlmBJxzI8+HbCGr8A1cVxBBHcelT9PrS6Zi49UYpUCdthyJua9UFM
qAyuKhwWL8OOYLTRde5lk6XOYMIeTMJLsY+Gv6wg77sZhZzt5pggrliJFId8Tm6v
lyJ8HeBeclIeo9GK64QyKUxnWADG4uAHHnmSK/V79X6TJlU/ZhZb10HWawKelqT2
0OzKIqNoCAed0QiN9i8+j6TMzWhAtmCefVE5+G9ias9z
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:47 2024 by rpki-client on console-ams.rpki-client.org