Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/MQ0TZrWiN4SdlWe5Jw6O3piECF0.roa
File: MQ0TZrWiN4SdlWe5Jw6O3piECF0.roa (raw, json)
Hash identifier: H19DBBSJ0H2aPz2tCNAMEOUkC0/gu55G/1FTojgfBlY=
Subject key identifier: 31:0D:13:66:B5:A2:37:84:9D:95:67:B9:27:0E:8E:DE:98:84:08:5D
Certificate issuer: /CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
Certificate serial: 01856D0ADF37730C761D97511F6AC66FA8F1
Authority key identifier: D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/MQ0TZrWiN4SdlWe5Jw6O3piECF0.roa
Signing time: Sun 01 Jan 2023 11:15:07 +0000
ROA not before: Sun 01 Jan 2023 11:15:07 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60721
IP address blocks: 46.37.114.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:0a:df:37:73:0c:76:1d:97:51:1f:6a:c6:6f:a8:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
Validity
Not Before: Jan 1 11:15:07 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=310d1366b5a237849d9567b9270e8ede9884085d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:32:42:bf:ec:da:91:4c:b3:c0:10:bc:c6:6e:
88:5f:1d:37:f4:b3:cc:58:ae:2b:76:43:e0:71:b5:
da:86:71:05:b4:8f:df:ee:6f:ca:40:0e:09:98:59:
99:10:d6:58:f5:9b:b6:1a:a4:0b:ae:53:8e:e7:d5:
2c:eb:cc:b2:73:9e:2e:3f:b1:95:a4:91:8e:af:f7:
ad:d2:2e:46:8d:e1:e8:89:b7:d7:d6:2b:39:5c:8d:
de:eb:5e:3f:db:af:2c:43:e3:b5:e4:21:7e:13:08:
f1:0e:54:bc:8a:73:60:b8:8e:84:11:53:d8:63:95:
5e:a8:6e:82:c1:d2:25:6f:e3:61:f5:b7:3b:d3:09:
97:cc:19:12:3a:cd:0e:92:3e:c9:9d:1a:da:ff:63:
6c:63:72:bb:5a:22:32:a3:2e:3a:1a:ae:06:fd:45:
c3:82:79:39:fc:c2:1c:00:37:8b:e4:e3:42:c0:9a:
00:78:42:ad:71:32:3e:b2:90:66:fd:35:ef:c7:1b:
f9:63:dc:c6:11:3a:9c:25:28:dd:58:d2:66:2d:7d:
25:1e:b4:ab:c1:65:7b:b7:12:13:56:1e:81:de:51:
09:78:86:45:bf:83:2a:47:db:fb:6a:18:57:91:fa:
eb:df:01:90:54:5e:95:cf:a5:5a:3d:e4:99:ad:7a:
30:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:0D:13:66:B5:A2:37:84:9D:95:67:B9:27:0E:8E:DE:98:84:08:5D
X509v3 Authority Key Identifier:
keyid:D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/MQ0TZrWiN4SdlWe5Jw6O3piECF0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/088IhJGKUCOe9wUY7p_ATxquGSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.37.114.0/24
Signature Algorithm: sha256WithRSAEncryption
26:d1:46:53:17:4a:5a:28:f4:33:69:86:07:2e:37:56:77:fc:
a5:57:1f:6d:40:07:43:86:03:23:e3:02:f9:1b:d9:c0:54:fd:
6e:5c:63:73:78:74:a3:a2:4f:d8:5b:c6:ee:08:8f:51:ee:bc:
aa:17:53:02:5f:90:9a:de:a4:e0:3b:4e:c0:2e:0f:3b:28:67:
50:9a:d3:2d:1e:25:4c:76:ab:94:87:1e:1c:88:8e:63:16:fd:
34:3d:02:5e:a9:02:5d:32:a5:77:09:fe:4a:cf:a1:02:d3:e2:
72:6c:aa:ba:af:3d:a5:50:e5:9c:d5:02:20:51:1d:58:61:89:
bb:f5:ae:3a:40:43:39:90:56:70:7e:68:47:0a:14:0d:b5:4d:
26:b6:ff:e2:b9:e3:79:92:91:48:9b:4e:b4:ae:4b:b9:f8:63:
9f:da:8e:4d:dc:ad:af:79:9e:2b:03:d6:21:bf:ce:4f:5d:f8:
29:3f:10:00:ba:10:ee:cd:e3:e6:2b:d6:4c:34:ee:ca:1f:fa:
38:09:90:25:f1:ab:e7:10:f2:d3:02:f9:a1:fd:d5:84:f8:45:
3c:36:c1:4d:8f:c3:df:6f:06:a1:d5:42:89:ba:8f:60:37:26:
ff:4e:e8:da:66:11:f1:97:df:84:8e:d5:ab:9c:9c:cc:25:e9:
52:03:f3:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:34 2023 by rpki-client on console-ams.rpki-client.org