Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/82e6f5-82f2-45e7-844e-3514841f36ae/1/KgAz6sj7zySXmNgYHS4YRGmeqwU.roa
File: KgAz6sj7zySXmNgYHS4YRGmeqwU.roa (raw, json)
Hash identifier: L/TYa0YtKgMrVbaiNxgCx7kbUc/58e4Fl/bcXodoq5c=
Subject key identifier: 2A:00:33:EA:C8:FB:CF:24:97:98:D8:18:1D:2E:18:44:69:9E:AB:05
Certificate issuer: /CN=95cae2c37c86630e61afdf8903fe174de8b945be
Certificate serial: 01856E26830D6E84DBC7858CD3A19EE1869A
Authority key identifier: 95:CA:E2:C3:7C:86:63:0E:61:AF:DF:89:03:FE:17:4D:E8:B9:45:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lcriw3yGYw5hr9-JA_4XTei5Rb4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/82e6f5-82f2-45e7-844e-3514841f36ae/1/KgAz6sj7zySXmNgYHS4YRGmeqwU.roa
Signing time: Sun 01 Jan 2023 16:24:55 +0000
ROA not before: Sun 01 Jan 2023 16:24:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3320
IP address blocks: 37.46.11.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:30:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:26:83:0d:6e:84:db:c7:85:8c:d3:a1:9e:e1:86:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95cae2c37c86630e61afdf8903fe174de8b945be
Validity
Not Before: Jan 1 16:24:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2a0033eac8fbcf249798d8181d2e1844699eab05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:a8:c7:4c:d3:1e:c8:cd:8e:6f:a3:94:d0:f5:
62:95:0a:29:dc:f5:9d:06:5d:63:1f:f5:c6:1d:7d:
58:6c:b6:2e:91:eb:d2:c9:28:80:a0:7c:c8:1b:be:
3d:74:a4:ff:60:58:f8:14:ec:3a:51:d2:cb:fe:32:
b8:72:c4:1a:4d:55:52:18:6e:b1:3a:46:81:11:4d:
a8:29:61:13:c7:4a:3c:34:85:70:23:b4:e2:76:25:
57:9b:4c:ba:f8:97:e6:b1:02:26:f9:75:3d:af:22:
0a:9d:0d:03:92:db:09:e7:03:7e:c4:ab:01:39:43:
e1:a6:65:de:6d:36:eb:c4:65:1b:09:d6:b8:31:c8:
59:8f:f9:2c:7b:3b:8b:34:26:f5:d0:0b:a0:21:9d:
8b:4c:63:6d:93:8d:4a:e6:b7:9c:eb:48:89:18:1c:
50:58:1e:9a:2b:9c:88:7a:08:b0:dd:56:b2:49:e0:
73:77:0d:7b:fd:a6:03:4d:5e:1a:de:25:f5:4d:86:
35:79:6e:96:76:35:ce:59:77:30:23:45:77:fd:43:
d6:9c:09:1a:54:d5:e6:2d:7d:7e:bf:04:06:c9:e0:
67:bc:9e:c7:cb:c0:c6:4d:63:3f:3f:ea:9c:b1:35:
ff:f8:30:67:f0:00:63:3e:13:bc:1b:9f:f4:60:88:
87:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:00:33:EA:C8:FB:CF:24:97:98:D8:18:1D:2E:18:44:69:9E:AB:05
X509v3 Authority Key Identifier:
keyid:95:CA:E2:C3:7C:86:63:0E:61:AF:DF:89:03:FE:17:4D:E8:B9:45:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lcriw3yGYw5hr9-JA_4XTei5Rb4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/82e6f5-82f2-45e7-844e-3514841f36ae/1/KgAz6sj7zySXmNgYHS4YRGmeqwU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/82e6f5-82f2-45e7-844e-3514841f36ae/1/lcriw3yGYw5hr9-JA_4XTei5Rb4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.46.11.0/24
Signature Algorithm: sha256WithRSAEncryption
10:b0:ef:ac:ee:98:8b:68:23:8d:fa:f2:31:41:94:0b:66:7c:
31:20:69:34:d5:9f:bc:e3:f0:c4:e9:03:70:5a:66:51:5e:39:
c6:01:ea:1f:b0:36:1d:c7:59:e0:9d:f0:d1:90:f1:59:0b:21:
2b:1e:c8:3e:5f:74:c2:03:fc:e7:40:07:8c:f2:dc:6c:df:a6:
ae:04:74:81:6d:41:f0:34:48:15:4b:c8:b3:6d:f9:bd:76:22:
d0:c0:85:45:fb:5d:f7:99:78:0b:d7:8e:21:95:b2:23:92:08:
2c:56:0e:64:85:a2:7b:2d:73:66:3e:72:d9:9e:d9:f6:5b:36:
71:62:f6:a9:e9:5b:ad:22:2c:ef:42:c5:4a:f1:61:a9:41:dd:
4f:62:76:7e:1c:51:03:9d:14:83:be:79:1f:db:2c:28:1f:de:
65:da:1c:b9:51:3d:3c:0f:04:80:f3:e8:50:dd:8f:61:b5:2f:
8d:6c:46:b3:c8:10:b6:ce:79:47:6f:aa:e6:eb:aa:7f:3a:d3:
92:25:83:c5:af:8d:31:03:96:83:95:5b:ec:9f:62:13:c7:dc:
61:65:a2:bd:76:14:99:f0:08:f3:72:5b:b3:72:da:d8:92:04:
6c:66:4a:3b:41:5b:2b:30:40:2e:2a:ad:64:be:3d:45:75:21:
ba:0e:d7:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:08 2024 by rpki-client on console-ams.rpki-client.org