Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/0wf1DIXjLIgPLmMVJ71TYk-ovJ8.roa
File: 0wf1DIXjLIgPLmMVJ71TYk-ovJ8.roa (raw, json)
Hash identifier: c1+wUZ6LJ1beDktv6sHmmuIs0Zpr/an65MDClYA3oxE=
Subject key identifier: D3:07:F5:0C:85:E3:2C:88:0F:2E:63:15:27:BD:53:62:4F:A8:BC:9F
Certificate issuer: /CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
Certificate serial: 01856D0ADD4A02480AA68FB42775C21F4371
Authority key identifier: D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/0wf1DIXjLIgPLmMVJ71TYk-ovJ8.roa
Signing time: Sun 01 Jan 2023 11:15:06 +0000
ROA not before: Sun 01 Jan 2023 11:15:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29538
IP address blocks: 46.37.108.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:0a:dd:4a:02:48:0a:a6:8f:b4:27:75:c2:1f:43:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
Validity
Not Before: Jan 1 11:15:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d307f50c85e32c880f2e631527bd53624fa8bc9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:0b:71:b0:7f:c1:f4:3f:3c:71:32:88:7d:0d:
e0:a9:80:93:be:4e:75:9f:86:e4:97:6d:93:8c:01:
c7:2f:38:7f:18:2f:91:5b:66:28:55:29:c3:a0:2f:
b0:4d:68:c7:36:0b:59:21:01:a8:6b:3d:54:b9:d0:
d4:c1:ef:89:11:62:df:13:e4:0d:5e:7b:c8:73:a0:
38:bd:1a:f8:cf:86:a5:09:04:15:a7:15:09:1a:30:
26:ec:97:51:8f:56:ca:cb:9a:81:0e:66:8e:f6:51:
82:c0:a1:f7:84:62:31:d9:92:b2:fb:9d:b8:e1:04:
2d:31:20:a0:1e:a2:f5:af:66:47:6c:73:90:e1:aa:
06:ba:8f:7e:7c:92:01:ea:73:b9:7e:b2:db:7c:dd:
1d:33:7d:a7:4e:74:8e:69:40:d2:31:27:5e:3f:16:
d3:3a:95:72:77:87:78:39:e1:f7:a6:24:1a:5a:4a:
37:85:67:86:bf:89:f1:b2:42:89:3f:ff:b3:46:1a:
1e:a2:da:02:27:eb:73:5b:3e:eb:dc:7b:11:58:45:
b1:07:01:4a:60:85:2e:a5:20:e0:2c:fa:11:12:9b:
ee:61:c4:7f:4d:ce:5f:4a:3b:34:56:4e:ff:a9:9d:
d5:8b:2d:28:3e:25:2f:d1:6c:c6:3f:a6:a2:2d:72:
8f:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:07:F5:0C:85:E3:2C:88:0F:2E:63:15:27:BD:53:62:4F:A8:BC:9F
X509v3 Authority Key Identifier:
keyid:D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/0wf1DIXjLIgPLmMVJ71TYk-ovJ8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/088IhJGKUCOe9wUY7p_ATxquGSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.37.108.0/24
Signature Algorithm: sha256WithRSAEncryption
26:9c:3c:48:92:c7:40:c1:86:30:f5:92:0e:43:8d:c6:0c:11:
9e:96:c5:02:5e:cc:f6:29:da:7f:a1:b1:e8:93:4a:c4:b1:4a:
27:87:39:65:bd:91:88:e1:b0:cf:a9:ef:69:5e:9b:38:be:f5:
63:69:23:94:1f:6c:d7:50:3a:6c:f3:76:fe:fc:db:c8:be:1e:
12:ce:22:96:1c:2e:47:49:37:a1:21:42:2d:81:f7:30:fb:a6:
f9:87:33:7f:96:47:29:95:ec:a5:4b:da:82:d9:ff:38:fa:4a:
50:d7:41:1e:da:f1:3a:fc:4d:32:89:d5:55:5b:a9:09:bd:7d:
4b:38:72:db:39:06:b2:c0:47:6c:c4:08:84:85:fe:d9:fb:42:
9c:e0:10:1e:46:c5:61:94:20:16:58:6c:07:ed:64:dc:69:54:
83:26:b0:83:79:c8:1b:b8:24:a7:f0:de:10:55:03:9b:04:f3:
2e:e8:b9:3e:a7:08:30:60:ab:89:2f:0b:d8:9b:09:86:e4:a3:
53:89:c0:35:d2:c1:1f:bd:ff:1d:ff:cc:f7:06:1d:ec:ea:0d:
a0:23:37:9e:d9:58:57:99:28:4a:de:ba:ae:cb:05:f5:77:5d:
ef:73:7d:3d:da:f6:9a:15:7a:a4:99:cf:cb:e6:8e:e0:dc:3a:
54:42:cb:7a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVtCt1KAkgKpo+0J3XCH0NxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQzY2YwODg0OTE4YTUwMjM5ZWY3MDUxOGVlOWZjMDRmMWFh
ZTE5MjkwHhcNMjMwMTAxMTExNTA2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkMzA3ZjUwYzg1ZTMyYzg4MGYyZTYzMTUyN2JkNTM2MjRmYThiYzlmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAogtxsH/B9D88cTKIfQ3gqYCTvk51
n4bkl22TjAHHLzh/GC+RW2YoVSnDoC+wTWjHNgtZIQGoaz1UudDUwe+JEWLfE+QN
XnvIc6A4vRr4z4alCQQVpxUJGjAm7JdRj1bKy5qBDmaO9lGCwKH3hGIx2ZKy+524
4QQtMSCgHqL1r2ZHbHOQ4aoGuo9+fJIB6nO5frLbfN0dM32nTnSOaUDSMSdePxbT
OpVyd4d4OeH3piQaWko3hWeGv4nxskKJP/+zRhoeotoCJ+tzWz7r3HsRWEWxBwFK
YIUupSDgLPoREpvuYcR/Tc5fSjs0Vk7/qZ3Viy0oPiUv0WzGP6aiLXKPIQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNMH9QyF4yyIDy5jFSe9U2JPqLyfMB8GA1UdIwQY
MBaAFNPPCISRilAjnvcFGO6fwE8arhkpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMDg4SWhKR0tVQ09lOXdVWTdwX0FUeHF1R1NrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNy9jZGZmMTYtNDU4YS00N2MzLThkZmEt
MjMxNTQ5NDA5NzIwLzEvMHdmMURJWGpMSWdQTG1NVko3MVRZay1vdko4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNy9jZGZmMTYtNDU4YS00N2MzLThkZmEtMjMxNTQ5NDA5NzIw
LzEvMDg4SWhKR0tVQ09lOXdVWTdwX0FUeHF1R1NrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALiVsMA0G
CSqGSIb3DQEBCwUAA4IBAQAmnDxIksdAwYYw9ZIOQ43GDBGelsUCXsz2Kdp/obHo
k0rEsUonhzllvZGI4bDPqe9pXps4vvVjaSOUH2zXUDps83b+/NvIvh4SziKWHC5H
STehIUItgfcw+6b5hzN/lkcpleylS9qC2f84+kpQ10Ee2vE6/E0yidVVW6kJvX1L
OHLbOQaywEdsxAiEhf7Z+0Kc4BAeRsVhlCAWWGwH7WTcaVSDJrCDecgbuCSn8N4Q
VQObBPMu6Lk+pwgwYKuJLwvYmwmG5KNTicA10sEfvf8d/8z3Bh3s6g2gIzee2VhX
mShK3rquywX1d13vc3092vaaFXqkmc/L5o7g3DpUQst6
-----END CERTIFICATE-----
Generated at Tue Dec 19 10:42:54 2023 by rpki-client on console-ams.rpki-client.org