Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/cG9aWKjdp-EbeLOg7pfoepZjqsI.roa
File: cG9aWKjdp-EbeLOg7pfoepZjqsI.roa (raw, json)
Hash identifier: XoAry0uH/mgyNTz0z2LyYd/cgO45nekNJDuzqzzvwUY=
Subject key identifier: 70:6F:5A:58:A8:DD:A7:E1:1B:78:B3:A0:EE:97:E8:7A:96:63:AA:C2
Certificate issuer: /CN=0f6363d428b7915c108825f09706004b8ea3d4b5
Certificate serial: 0191707504436298478AF3E4D29E8FB43DAE
Authority key identifier: 0F:63:63:D4:28:B7:91:5C:10:88:25:F0:97:06:00:4B:8E:A3:D4:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/cG9aWKjdp-EbeLOg7pfoepZjqsI.roa
Signing time: Tue 20 Aug 2024 15:43:22 +0000
ROA not before: Tue 20 Aug 2024 15:43:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 26737
IP address blocks: 37.143.4.0/22 maxlen: 22
Validation: Failed, certificate revoked on Wed 21 Aug 2024 06:31:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:70:75:04:43:62:98:47:8a:f3:e4:d2:9e:8f:b4:3d:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f6363d428b7915c108825f09706004b8ea3d4b5
Validity
Not Before: Aug 20 15:43:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=706f5a58a8dda7e11b78b3a0ee97e87a9663aac2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:f0:5a:84:f1:38:12:47:23:44:fa:b5:50:37:
69:15:f8:76:bd:e1:ea:e8:b6:29:40:25:b4:db:d7:
47:03:5f:a8:b5:3a:9a:79:8d:d1:56:04:f1:ab:d5:
40:c4:85:fe:93:73:55:c1:46:8d:bb:e3:88:7a:5f:
9f:e0:5b:6a:30:79:5d:9c:5a:29:28:97:e1:a6:56:
c1:e4:ae:ee:b9:b6:af:76:8a:10:95:bb:97:70:13:
b7:b3:31:c3:0f:f6:c5:66:a0:11:67:1f:88:0c:58:
7c:4f:6d:b6:78:bc:f7:be:8c:a7:e4:9a:c8:73:0c:
f2:41:7a:0f:e4:66:f5:24:52:35:4e:83:87:fc:a1:
af:4f:83:ee:d2:9c:fb:ef:5e:ef:9b:30:83:c4:03:
8e:3b:d2:5d:ba:f6:44:bf:6c:5f:48:d3:8b:78:89:
38:72:e4:bc:d5:ce:8e:a6:bc:8d:1b:ef:03:40:cd:
a6:12:b6:d4:54:31:c8:d9:b6:b4:e2:13:72:8d:5d:
d1:d1:08:37:5a:c1:97:2e:26:cc:50:8f:3d:2a:a5:
1b:25:1c:be:3a:1b:2c:c9:bd:5f:4a:91:74:91:93:
ec:dc:a1:f1:d7:72:2f:2a:b6:73:49:b7:27:17:e7:
c9:85:a3:ee:1b:9d:8f:c3:a8:f1:bd:25:f9:cb:1d:
2c:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:6F:5A:58:A8:DD:A7:E1:1B:78:B3:A0:EE:97:E8:7A:96:63:AA:C2
X509v3 Authority Key Identifier:
keyid:0F:63:63:D4:28:B7:91:5C:10:88:25:F0:97:06:00:4B:8E:A3:D4:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/cG9aWKjdp-EbeLOg7pfoepZjqsI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.143.4.0/22
Signature Algorithm: sha256WithRSAEncryption
1c:ab:33:c3:62:65:10:15:6a:68:d8:18:5b:50:ec:be:41:4c:
84:30:7c:ef:58:33:84:15:91:02:c2:1d:1b:c1:35:2b:53:2a:
20:46:d3:79:1e:eb:e5:ba:60:91:0b:5a:3d:c8:f1:27:1b:6d:
f1:bb:1a:22:3b:34:8b:cc:7b:c6:eb:14:46:06:df:ba:f0:db:
44:d7:3a:a7:ab:3e:56:c6:5d:85:8f:3f:1e:b8:83:3a:05:e9:
69:d5:9d:9c:40:33:f8:91:38:ac:a3:a2:fa:9b:e9:44:37:44:
9c:53:9a:d4:64:fe:4f:15:b1:e8:39:6e:ed:dc:2a:b4:58:a7:
67:d0:40:88:03:4f:e1:9a:dc:ee:f7:3a:43:84:4d:80:d0:28:
0c:64:01:9b:6f:c7:13:97:1e:2a:d7:7d:b3:3d:1d:7d:3d:88:
07:81:ff:cd:5d:6c:8c:a2:16:e8:90:2b:9c:8a:fa:35:9d:b3:
e1:6f:4a:e4:41:34:7d:6a:30:a0:ec:1e:c9:e5:77:f8:38:9f:
b8:cc:7c:61:8b:73:e4:99:fe:a7:f7:72:7a:2c:a3:55:13:cf:
2d:c1:54:e9:d0:b1:59:b7:0f:28:1e:63:19:ab:ff:2d:07:16:
c9:fb:a0:83:07:a5:66:97:2b:8b:52:ff:4b:6e:09:7d:ae:93:
85:cd:61:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 21 08:03:27 2024 by rpki-client on console-fra.rpki-client.org