Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/r2sRAChX7T8lJELko-9A_A_UOGM.roa
File: r2sRAChX7T8lJELko-9A_A_UOGM.roa (raw, json)
Hash identifier: zL08C1xVg7P5PA1wuE2OGM+L8LQTVZpHoePBZHCq8Ls=
Subject key identifier: AF:6B:11:00:28:57:ED:3F:25:24:42:E4:A3:EF:40:FC:0F:D4:38:63
Certificate issuer: /CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
Certificate serial: 018E09B24251580B296C7470453E4CD2D331
Authority key identifier: D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/r2sRAChX7T8lJELko-9A_A_UOGM.roa
Signing time: Mon 04 Mar 2024 13:41:01 +0000
ROA not before: Mon 04 Mar 2024 13:41:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 46.37.98.0/24 maxlen: 24
46.37.113.0/24 maxlen: 24
46.37.120.0/24 maxlen: 24
46.37.121.0/24 maxlen: 24
46.37.123.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 05 Mar 2024 17:02:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:09:b2:42:51:58:0b:29:6c:74:70:45:3e:4c:d2:d3:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
Validity
Not Before: Mar 4 13:41:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=af6b11002857ed3f252442e4a3ef40fc0fd43863
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:1b:7a:11:a4:4d:53:47:b7:8f:41:01:99:3f:
cf:a7:be:70:ae:2c:87:cf:11:4f:48:ea:d2:d3:89:
68:7f:27:f7:9b:ac:ae:56:33:c7:15:cf:dd:d2:ae:
59:00:d6:90:e0:d6:cb:d4:ae:3f:5e:0e:3a:d0:96:
46:bf:a7:9f:8c:c7:ad:08:fb:7e:0b:1a:5f:5c:92:
d5:53:71:b7:9f:74:2b:df:8d:7b:d9:e6:99:61:fd:
d2:00:42:7c:ce:23:32:d0:6a:63:5a:3b:88:74:e0:
9a:16:61:3a:e2:43:45:9d:81:e6:1d:58:7d:c5:83:
43:4d:b5:2b:f1:ef:16:2b:d9:82:42:3e:29:32:ef:
47:03:f9:ba:f2:42:a6:ac:5d:41:7d:a3:26:f4:55:
d4:16:fe:37:ac:7b:7e:95:aa:1f:e1:83:5b:9d:5a:
3d:04:87:1f:1e:46:0f:ea:a3:db:98:c3:34:ce:5e:
61:00:e2:82:f8:75:98:c2:1c:4a:12:a8:b7:89:c5:
4e:76:0e:19:dd:60:88:c2:d9:1f:9a:6d:f3:45:f1:
42:65:2b:87:c3:7f:3e:d1:cf:d1:0f:22:9f:cc:c1:
5f:a5:51:02:a0:29:42:ec:e3:cc:2a:c2:2b:5a:8c:
8e:33:39:cf:17:c3:e1:ae:a1:e2:47:09:54:64:32:
e1:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:6B:11:00:28:57:ED:3F:25:24:42:E4:A3:EF:40:FC:0F:D4:38:63
X509v3 Authority Key Identifier:
keyid:D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/r2sRAChX7T8lJELko-9A_A_UOGM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/088IhJGKUCOe9wUY7p_ATxquGSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.37.98.0/24
46.37.113.0/24
46.37.120.0/23
46.37.123.0/24
Signature Algorithm: sha256WithRSAEncryption
79:d3:c0:ff:e9:24:71:54:15:8a:65:62:fb:3b:ce:7a:cc:4b:
1b:33:8b:ba:89:c3:10:07:52:f4:d1:e4:90:c8:71:9b:9b:36:
7c:07:0e:8c:da:9e:a4:62:e4:9a:5c:20:9c:02:19:67:00:32:
00:dd:93:83:81:15:ec:db:44:ce:b1:d3:2b:b0:98:1a:f0:93:
96:f7:41:fc:88:45:26:0a:42:29:6a:84:f7:20:07:37:8d:45:
07:26:78:2a:d3:07:9d:ae:e0:06:70:91:eb:48:e5:ef:2b:28:
db:90:18:80:1e:06:66:54:48:fa:0e:b4:94:fe:00:74:09:69:
19:e7:e3:66:7f:d0:50:0a:0f:6a:8a:2c:29:8f:6e:f8:fc:e7:
96:f3:cf:48:c2:57:d3:83:7c:98:00:22:a4:81:53:be:50:ed:
0f:1c:26:d9:06:cf:c9:c8:32:ba:62:ea:0e:e8:23:9f:c8:e2:
6b:f7:69:6d:b6:15:a3:7c:06:48:c1:dc:62:06:a7:89:b2:1c:
77:d1:2f:90:19:91:0a:93:f1:74:6d:d8:24:22:07:e6:06:4a:
76:19:44:6c:96:47:52:25:cf:8c:f9:a6:92:8b:5b:ad:50:8f:
60:aa:c5:b1:cd:22:7e:7f:fe:66:46:79:71:50:2e:48:8f:11:
9d:28:81:42
-----BEGIN CERTIFICATE-----
MIIFDzCCA/egAwIBAgISAY4JskJRWAspbHRwRT5M0tMxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQzY2YwODg0OTE4YTUwMjM5ZWY3MDUxOGVlOWZjMDRmMWFh
ZTE5MjkwHhcNMjQwMzA0MTM0MTAxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhZjZiMTEwMDI4NTdlZDNmMjUyNDQyZTRhM2VmNDBmYzBmZDQzODYzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlht6EaRNU0e3j0EBmT/Pp75wriyH
zxFPSOrS04lofyf3m6yuVjPHFc/d0q5ZANaQ4NbL1K4/Xg460JZGv6efjMetCPt+
CxpfXJLVU3G3n3Qr34172eaZYf3SAEJ8ziMy0GpjWjuIdOCaFmE64kNFnYHmHVh9
xYNDTbUr8e8WK9mCQj4pMu9HA/m68kKmrF1BfaMm9FXUFv43rHt+laof4YNbnVo9
BIcfHkYP6qPbmMM0zl5hAOKC+HWYwhxKEqi3icVOdg4Z3WCIwtkfmm3zRfFCZSuH
w38+0c/RDyKfzMFfpVECoClC7OPMKsIrWoyOMznPF8PhrqHiRwlUZDLhpwIDAQAB
o4ICGzCCAhcwHQYDVR0OBBYEFK9rEQAoV+0/JSRC5KPvQPwP1DhjMB8GA1UdIwQY
MBaAFNPPCISRilAjnvcFGO6fwE8arhkpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMDg4SWhKR0tVQ09lOXdVWTdwX0FUeHF1R1NrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNy9jZGZmMTYtNDU4YS00N2MzLThkZmEt
MjMxNTQ5NDA5NzIwLzEvcjJzUkFDaFg3VDhsSkVMa28tOUFfQV9VT0dNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNy9jZGZmMTYtNDU4YS00N2MzLThkZmEtMjMxNTQ5NDA5NzIw
LzEvMDg4SWhKR0tVQ09lOXdVWTdwX0FUeHF1R1NrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDEGCCsGAQUFBwEHAQH/BCIwIDAeBAIAATAYAwQALiViAwQA
LiVxAwQBLiV4AwQALiV7MA0GCSqGSIb3DQEBCwUAA4IBAQB508D/6SRxVBWKZWL7
O856zEsbM4u6icMQB1L00eSQyHGbmzZ8Bw6M2p6kYuSaXCCcAhlnADIA3ZODgRXs
20TOsdMrsJga8JOW90H8iEUmCkIpaoT3IAc3jUUHJngq0wedruAGcJHrSOXvKyjb
kBiAHgZmVEj6DrSU/gB0CWkZ5+Nmf9BQCg9qiiwpj274/OeW889IwlfTg3yYACKk
gVO+UO0PHCbZBs/JyDK6YuoO6COfyOJr92ltthWjfAZIwdxiBqeJshx30S+QGZEK
k/F0bdgkIgfmBkp2GURslkdSJc+M+aaSi1utUI9gqsWxzSJ+f/5mRnlxUC5IjxGd
KIFC
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:54 2024 by rpki-client on console-fra.rpki-client.org