Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/2604e0-91fa-4fe9-bb28-93a6192b1785/1/OAIUP-EWJ3TafW4wPcCh9basA8Y.roa
File: OAIUP-EWJ3TafW4wPcCh9basA8Y.roa (raw, json)
Hash identifier: kKHnzlLxD3ULFt8RWMDmgeTPzvKOZ/6SuohrOkIHOr4=
Subject key identifier: 38:02:14:3F:E1:16:27:74:DA:7D:6E:30:3D:C0:A1:F5:B6:AC:03:C6
Certificate issuer: /CN=7d43b0ec79951d5d5580133e5329a90f2fee1c5b
Certificate serial: 0185723A2758760CD91F6831B0F67AED717C
Authority key identifier: 7D:43:B0:EC:79:95:1D:5D:55:80:13:3E:53:29:A9:0F:2F:EE:1C:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fUOw7HmVHV1VgBM-UympDy_uHFs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/2604e0-91fa-4fe9-bb28-93a6192b1785/1/OAIUP-EWJ3TafW4wPcCh9basA8Y.roa
Signing time: Mon 02 Jan 2023 11:24:51 +0000
ROA not before: Mon 02 Jan 2023 11:24:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199386
IP address blocks: 37.130.198.0/24 maxlen: 24
37.130.199.0/24 maxlen: 24
37.130.196.0/24 maxlen: 24
37.130.197.0/24 maxlen: 24
2a04:dc0::/48 maxlen: 48
2a04:dc1::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 27 Mar 2023 18:08:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:3a:27:58:76:0c:d9:1f:68:31:b0:f6:7a:ed:71:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d43b0ec79951d5d5580133e5329a90f2fee1c5b
Validity
Not Before: Jan 2 11:24:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3802143fe1162774da7d6e303dc0a1f5b6ac03c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:fd:08:22:c7:9e:32:13:d5:6f:8a:28:cb:46:
2e:e7:e3:aa:bc:c6:3f:ac:51:ea:7a:90:df:31:47:
06:91:04:23:1e:a9:9d:7d:61:f4:57:9e:5e:bf:c2:
1a:cc:a0:57:56:0d:5c:51:93:16:93:88:5e:d5:35:
f5:0d:b9:fb:04:22:25:a1:67:0e:0b:67:cc:f1:7a:
9e:bf:cd:93:b2:c5:cf:23:09:a4:bf:eb:36:b0:0d:
17:4b:0b:e6:77:95:01:57:7a:a9:0f:1e:f7:b3:37:
b4:36:e3:05:ae:53:9f:8c:ab:ed:4d:c9:2f:fe:98:
62:04:b2:63:3b:80:1b:d6:2b:d1:4e:dd:2b:fc:06:
3d:38:56:82:cc:81:48:c1:af:66:b3:b6:e1:12:a4:
c6:16:16:25:83:30:78:b8:6a:07:ac:d2:57:4e:e9:
31:6d:22:57:dc:bc:87:e6:b5:65:b9:9b:ec:0f:b8:
c2:10:d7:3d:61:d7:89:94:e4:8c:47:b4:99:cb:13:
27:4a:d9:1b:1e:62:b6:f0:95:93:81:52:48:16:b4:
8a:86:fc:ae:53:61:7f:9e:7a:a5:7b:01:2d:61:cc:
a8:c1:c0:36:1e:65:01:0a:13:f2:75:1a:70:07:aa:
44:73:8e:44:3e:1c:66:8f:bd:fe:e0:34:32:2d:9a:
00:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:02:14:3F:E1:16:27:74:DA:7D:6E:30:3D:C0:A1:F5:B6:AC:03:C6
X509v3 Authority Key Identifier:
keyid:7D:43:B0:EC:79:95:1D:5D:55:80:13:3E:53:29:A9:0F:2F:EE:1C:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fUOw7HmVHV1VgBM-UympDy_uHFs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/2604e0-91fa-4fe9-bb28-93a6192b1785/1/OAIUP-EWJ3TafW4wPcCh9basA8Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/2604e0-91fa-4fe9-bb28-93a6192b1785/1/fUOw7HmVHV1VgBM-UympDy_uHFs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.130.196.0/22
IPv6:
2a04:dc0::/48
2a04:dc1::/48
Signature Algorithm: sha256WithRSAEncryption
8d:d7:69:b5:bb:ef:fd:fc:9f:c5:89:d7:b3:23:04:36:8e:23:
33:5c:f6:73:df:f2:04:f5:de:e8:28:6b:1b:76:16:6b:1a:de:
0c:cb:71:4b:cc:3a:61:64:e6:98:cf:58:78:a7:79:e9:b6:ff:
bb:3b:66:bc:f6:a4:40:22:1b:d1:3e:e6:80:f1:20:61:b6:10:
49:d3:5e:25:78:89:bf:54:ca:36:b7:4a:c9:1c:12:1e:2f:6b:
1a:29:9c:e4:0d:35:8d:a1:ef:1f:05:d6:6a:5e:06:a9:64:7e:
79:5b:08:38:cc:60:81:eb:eb:c2:4b:7e:51:b7:94:82:bb:74:
93:c5:79:75:4d:63:68:6d:52:d8:38:81:ef:65:62:80:3a:9b:
ed:c5:05:5a:82:dd:cc:b5:31:51:d6:56:64:7e:53:d4:26:f4:
0f:c7:cd:31:32:79:67:6f:bc:2d:ea:65:7f:aa:1b:61:04:f4:
76:ff:2b:d4:78:58:b4:b0:d5:42:38:b5:0e:a7:0a:c1:dd:00:
3f:e9:43:bd:39:4f:ff:eb:f5:c8:c2:f5:af:d9:f6:27:8d:36:
42:fe:ad:84:60:d9:3e:f2:70:8f:6e:c1:59:4b:02:16:b3:0e:
e6:fc:ce:2a:dc:8f:8e:12:dd:29:c6:de:8a:94:26:43:c0:a6:
d5:6d:97:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:04 2024 by rpki-client on console-ams.rpki-client.org