Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/af2adb-ff69-4b04-a806-46dd1205dcff/1/kMLwVocJNHajxnAxqO7utHOMvrw.roa
File: kMLwVocJNHajxnAxqO7utHOMvrw.roa (raw, json)
Hash identifier: ADPJUnb11dGWqIqud6TnU1h6ZuLjPOwTogxR9QAUxSw=
Subject key identifier: 90:C2:F0:56:87:09:34:76:A3:C6:70:31:A8:EE:EE:B4:73:8C:BE:BC
Certificate issuer: /CN=fc7cfab24f15cd262176af0d1ccd88127dbf6335
Certificate serial: 01856C13787E9D4F6391A4B8EBD6688A9480
Authority key identifier: FC:7C:FA:B2:4F:15:CD:26:21:76:AF:0D:1C:CD:88:12:7D:BF:63:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_Hz6sk8VzSYhdq8NHM2IEn2_YzU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/af2adb-ff69-4b04-a806-46dd1205dcff/1/kMLwVocJNHajxnAxqO7utHOMvrw.roa
Signing time: Sun 01 Jan 2023 06:44:53 +0000
ROA not before: Sun 01 Jan 2023 06:44:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57846
IP address blocks: 37.130.152.0/21 maxlen: 21
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:13:78:7e:9d:4f:63:91:a4:b8:eb:d6:68:8a:94:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fc7cfab24f15cd262176af0d1ccd88127dbf6335
Validity
Not Before: Jan 1 06:44:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=90c2f05687093476a3c67031a8eeeeb4738cbebc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:cd:7e:f9:63:ca:4b:c3:0f:cf:e8:5f:26:8a:
32:fb:69:20:ed:08:e9:3b:01:25:2d:20:ef:7e:1d:
b1:04:c5:57:6f:ad:57:94:dd:b0:ad:66:6e:46:0b:
3a:d2:00:03:bb:b9:aa:af:eb:88:5f:1a:57:c3:b0:
02:4f:18:2f:be:09:31:e7:f1:26:a2:de:7b:02:c6:
0d:39:90:b6:93:06:c1:2d:35:f4:3b:46:9f:a7:4b:
f0:77:19:aa:88:46:e0:35:9d:d8:d0:3a:46:a0:be:
96:17:15:f9:4d:a2:90:61:93:e3:2c:8e:a3:5b:3f:
6d:38:aa:42:c7:80:97:00:10:b4:a2:c6:2b:eb:9f:
af:73:39:c2:f6:43:ea:29:44:17:e1:e1:47:8f:b6:
4f:b6:63:47:a7:34:5e:d7:5b:eb:b0:0c:0c:72:b2:
c8:5f:96:b1:49:f6:70:73:5e:89:3b:06:95:4f:60:
9a:11:e9:95:b2:4e:ab:64:ab:06:6c:a9:ff:87:c0:
da:41:60:90:3f:d9:ba:1b:18:a7:e6:27:25:7f:3b:
be:23:04:8d:49:41:25:a6:d7:af:49:f3:4b:94:d0:
9f:66:fb:3a:ab:c8:8b:8e:6d:8f:f2:5d:1a:6d:0b:
34:4e:4b:bc:bb:82:b6:a2:2e:22:3c:d5:38:82:62:
fd:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:C2:F0:56:87:09:34:76:A3:C6:70:31:A8:EE:EE:B4:73:8C:BE:BC
X509v3 Authority Key Identifier:
keyid:FC:7C:FA:B2:4F:15:CD:26:21:76:AF:0D:1C:CD:88:12:7D:BF:63:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_Hz6sk8VzSYhdq8NHM2IEn2_YzU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/af2adb-ff69-4b04-a806-46dd1205dcff/1/kMLwVocJNHajxnAxqO7utHOMvrw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/af2adb-ff69-4b04-a806-46dd1205dcff/1/_Hz6sk8VzSYhdq8NHM2IEn2_YzU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.130.152.0/21
Signature Algorithm: sha256WithRSAEncryption
54:72:8d:36:5f:c4:95:ec:a7:18:29:c4:23:62:1a:70:cd:c2:
93:c8:6e:1c:cd:53:8a:1d:74:8f:7a:df:f4:a4:43:fc:fa:3c:
8a:8e:36:33:b8:a3:6c:47:e7:ee:5c:e1:76:4b:fe:e8:23:54:
8b:cb:a8:5e:56:e4:6c:7d:64:7d:fd:e7:59:76:6b:c1:8f:b5:
49:47:7a:a9:c2:43:d9:84:33:22:c7:62:f6:d2:06:35:65:04:
73:dd:71:42:6d:51:2b:7a:b0:d3:ae:c1:ad:b5:f7:51:1b:5b:
07:ca:69:e9:c0:8d:96:e4:5a:05:0b:26:26:36:70:8b:f8:ec:
3b:c2:ed:d5:cd:3c:e5:c8:21:47:ef:e5:0a:d8:d0:70:7d:e6:
d6:2a:47:06:89:fd:f9:f7:a2:62:cc:9d:61:22:e7:4d:2f:de:
ee:6f:ba:94:e7:d2:cc:83:11:9f:1b:bb:05:81:22:b5:45:03:
68:8b:18:92:56:03:06:de:03:1a:ad:8b:08:fa:7a:20:08:52:
74:e9:ce:87:d3:45:da:2c:99:0e:31:68:a4:24:57:4b:38:55:
09:72:7c:f8:06:d4:cf:07:fd:c0:b6:7b:4b:d2:21:10:f8:8b:
97:fb:80:68:20:c7:da:52:3c:0c:1b:79:f9:b7:69:22:f9:c2:
bb:e3:f8:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 06:31:51 2024 by rpki-client on console-fra.rpki-client.org