Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/2604e0-91fa-4fe9-bb28-93a6192b1785/1/iulAk-uTnN1etLvJSbAQqbP0R5k.roa
File: iulAk-uTnN1etLvJSbAQqbP0R5k.roa (raw, json)
Hash identifier: DmjQRcAoy1u/q7N8hqT09ywrnk8VptLYSzaKvJsC52Y=
Subject key identifier: 8A:E9:40:93:EB:93:9C:DD:5E:B4:BB:C9:49:B0:10:A9:B3:F4:47:99
Certificate issuer: /CN=7d43b0ec79951d5d5580133e5329a90f2fee1c5b
Certificate serial: 0187056EE906D4DD7789A0699DD6BB700816
Authority key identifier: 7D:43:B0:EC:79:95:1D:5D:55:80:13:3E:53:29:A9:0F:2F:EE:1C:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fUOw7HmVHV1VgBM-UympDy_uHFs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/2604e0-91fa-4fe9-bb28-93a6192b1785/1/iulAk-uTnN1etLvJSbAQqbP0R5k.roa
Signing time: Tue 21 Mar 2023 18:29:27 +0000
ROA not before: Tue 21 Mar 2023 18:29:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58318
IP address blocks: 37.130.196.0/24 maxlen: 24
37.130.199.0/24 maxlen: 24
37.130.198.0/24 maxlen: 24
37.130.197.0/24 maxlen: 24
2a04:dc0::/48 maxlen: 48
2a04:dc1::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:05:6e:e9:06:d4:dd:77:89:a0:69:9d:d6:bb:70:08:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d43b0ec79951d5d5580133e5329a90f2fee1c5b
Validity
Not Before: Mar 21 18:29:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8ae94093eb939cdd5eb4bbc949b010a9b3f44799
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:d6:de:cd:4c:d7:1b:ea:1e:96:70:67:50:2f:
76:55:41:1a:8d:08:da:65:f8:3f:0c:5b:e5:3f:a3:
d0:1f:c6:ec:f1:d5:80:af:88:33:fc:98:53:e2:a5:
89:7d:a6:c1:27:b8:6e:3e:ad:d9:9d:c3:ca:4f:39:
2f:95:01:37:5c:93:99:45:d0:6e:eb:f5:47:ba:05:
18:4e:77:75:f3:60:cc:4d:9a:a5:c6:fe:d4:85:6c:
88:c0:6e:e1:be:1e:de:c9:b8:90:94:c4:a9:52:28:
dd:63:1e:23:bd:05:4b:25:60:8f:45:8d:09:e0:67:
3e:3a:b6:31:9a:03:ac:07:b0:a1:2f:79:6b:b7:d1:
0d:6c:91:45:23:02:20:64:91:4b:4f:0f:34:98:86:
98:66:dd:b5:de:ad:10:57:a5:67:e7:98:20:77:61:
bd:42:57:8a:36:41:6e:57:4c:20:d8:57:41:dd:f8:
73:1e:ab:a4:d6:28:f3:37:e8:80:55:f4:29:6c:e0:
9c:6f:25:fa:fa:32:e1:04:9b:ed:50:b2:b4:e8:a2:
a1:ab:85:44:0a:10:52:22:04:46:a6:cf:eb:24:d9:
85:4e:e5:22:d3:14:9f:06:8f:51:26:6f:06:1c:01:
32:72:67:11:34:ce:31:93:7c:b3:1f:a6:57:fa:a2:
88:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:E9:40:93:EB:93:9C:DD:5E:B4:BB:C9:49:B0:10:A9:B3:F4:47:99
X509v3 Authority Key Identifier:
keyid:7D:43:B0:EC:79:95:1D:5D:55:80:13:3E:53:29:A9:0F:2F:EE:1C:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fUOw7HmVHV1VgBM-UympDy_uHFs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/2604e0-91fa-4fe9-bb28-93a6192b1785/1/iulAk-uTnN1etLvJSbAQqbP0R5k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/2604e0-91fa-4fe9-bb28-93a6192b1785/1/fUOw7HmVHV1VgBM-UympDy_uHFs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.130.196.0/22
IPv6:
2a04:dc0::/48
2a04:dc1::/48
Signature Algorithm: sha256WithRSAEncryption
b5:57:6a:a2:5f:77:be:c7:9b:8c:22:05:8d:e2:ec:10:10:8c:
f1:41:93:0d:9a:f8:dd:d3:a8:1f:c3:82:22:cc:72:73:9b:36:
cc:b9:16:a8:1b:a4:51:71:f2:24:5a:0c:64:fb:ae:f8:e9:7a:
fa:0a:f6:5e:6e:00:90:ad:17:d3:f6:4c:5a:41:52:6a:ff:7c:
33:bc:77:81:e9:c4:d2:09:d3:90:0e:8d:6b:97:b3:f6:a3:58:
0c:44:1f:c7:be:1a:83:97:c1:45:06:8e:4f:17:5f:4e:8c:20:
8a:ec:bd:df:18:91:51:8a:b9:1a:d0:d3:9e:54:64:b8:81:d5:
89:db:8b:bf:90:43:62:26:df:ef:67:98:ee:ca:d4:61:1a:dd:
57:78:f9:dd:66:b9:e2:69:dc:53:85:9c:81:c2:83:e9:5d:02:
6b:f1:67:eb:cb:72:9f:f1:4d:dc:77:13:39:2d:fd:ea:c3:dc:
17:10:ad:20:c8:e2:8e:99:26:e8:10:a0:ee:aa:ac:43:9b:a7:
e7:12:01:da:fb:b8:b6:ce:f4:bd:6e:86:b1:c4:10:76:ed:6f:
e2:b6:04:d9:04:99:0d:38:f9:af:ee:7f:74:c2:e1:32:e4:f2:
1e:5b:9a:f6:02:34:4a:98:23:27:f5:a1:c8:c4:58:84:e3:0e:
fe:72:20:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:04 2024 by rpki-client on console-ams.rpki-client.org