Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/3b7485-8b74-4d50-974a-1b501520532b/1/k0yhc7U9--giBSozHd94wV_rI3I.roa
File: k0yhc7U9--giBSozHd94wV_rI3I.roa (raw, json)
Hash identifier: wVZ+jIwKokpQrj2353GW1Qhw8wJSnh7bxequ8S+LDmo=
Subject key identifier: 93:4C:A1:73:B5:3D:FB:E8:22:05:2A:33:1D:DF:78:C1:5F:EB:23:72
Certificate issuer: /CN=cccdf6516237d425e9ae3817ecb141f481773c12
Certificate serial: 01857014FF2FF410E189706077C7CFBA34A3
Authority key identifier: CC:CD:F6:51:62:37:D4:25:E9:AE:38:17:EC:B1:41:F4:81:77:3C:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zM32UWI31CXprjgX7LFB9IF3PBI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/3b7485-8b74-4d50-974a-1b501520532b/1/k0yhc7U9--giBSozHd94wV_rI3I.roa
Signing time: Mon 02 Jan 2023 01:25:02 +0000
ROA not before: Mon 02 Jan 2023 01:25:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211031
IP address blocks: 37.140.249.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:14:ff:2f:f4:10:e1:89:70:60:77:c7:cf:ba:34:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cccdf6516237d425e9ae3817ecb141f481773c12
Validity
Not Before: Jan 2 01:25:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=934ca173b53dfbe822052a331ddf78c15feb2372
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:9b:c6:2b:b6:97:39:1b:1e:f2:ae:22:a9:fd:
74:0c:e3:d7:61:8c:54:e3:d8:3e:fb:d4:5e:ea:9f:
a9:6d:e0:e1:81:5e:88:e3:25:66:36:8d:e7:79:37:
cb:1e:e5:9f:7d:43:f3:ca:ea:71:30:5e:8d:ea:a2:
dc:1e:36:66:c8:86:f1:c3:dc:40:ce:37:fe:37:5e:
1f:3f:3f:e0:ba:ec:41:66:c8:0c:d9:bf:2b:53:97:
18:63:1e:7f:c9:e1:88:54:ac:2a:f2:57:a6:34:b9:
10:84:22:41:f7:9f:67:26:12:1e:49:ea:a0:de:85:
37:a2:b6:4b:12:ac:64:3a:a6:8f:59:a0:79:83:1d:
41:a7:f6:bb:87:17:12:fb:ed:c7:48:b5:a3:2a:ec:
ea:09:4b:8e:2e:4a:f3:f0:df:9b:4e:6b:17:70:ee:
2a:e9:98:ab:ee:a7:52:a0:07:bc:bd:21:2a:b0:ad:
e9:df:fa:5a:3c:4e:29:57:f9:ce:74:8e:ff:6e:0f:
88:56:01:46:fb:de:47:92:53:71:6a:db:7c:b0:0e:
a3:62:aa:86:c4:f7:0d:cb:07:bc:6e:f6:db:bb:2c:
bc:66:83:e1:8f:ac:76:1e:21:27:ae:ab:2a:7b:64:
e3:37:f1:95:5d:d9:92:11:86:1a:07:d2:5b:26:02:
2c:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:4C:A1:73:B5:3D:FB:E8:22:05:2A:33:1D:DF:78:C1:5F:EB:23:72
X509v3 Authority Key Identifier:
keyid:CC:CD:F6:51:62:37:D4:25:E9:AE:38:17:EC:B1:41:F4:81:77:3C:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zM32UWI31CXprjgX7LFB9IF3PBI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/3b7485-8b74-4d50-974a-1b501520532b/1/k0yhc7U9--giBSozHd94wV_rI3I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/3b7485-8b74-4d50-974a-1b501520532b/1/zM32UWI31CXprjgX7LFB9IF3PBI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.140.249.0/24
Signature Algorithm: sha256WithRSAEncryption
94:59:8c:c5:07:fe:fe:cf:b9:fd:50:30:46:26:52:74:f9:33:
e3:5b:8f:ad:df:aa:10:01:a0:27:23:ea:e1:0c:63:68:70:26:
ee:c6:e3:df:9a:73:6d:32:6f:a0:da:fc:a9:72:1b:09:e9:dc:
aa:2d:b4:4c:d6:62:9c:e8:55:2d:7c:6b:14:7b:82:33:cc:ff:
56:0d:96:d5:c6:6b:ee:31:0a:31:0e:c9:e6:5f:4c:6c:81:ee:
f6:a6:b4:64:03:3f:9a:dc:24:2c:6e:db:83:ee:08:31:43:9d:
84:17:4a:4c:69:28:9d:35:12:ae:13:7d:19:75:af:e7:e4:3e:
4f:da:4f:f1:7b:59:f7:1d:87:23:17:77:f7:97:68:c6:54:34:
73:f5:5b:47:96:ff:82:66:54:0b:ed:fd:54:ef:b5:ca:36:8f:
9c:c2:52:39:2b:82:5d:32:46:bf:b4:f5:a6:73:fa:47:8e:f9:
2b:28:75:c3:4c:ed:1a:d5:f3:2f:4f:35:54:f0:72:01:ca:47:
79:51:d6:88:87:06:ad:6c:04:24:f1:6f:ab:0b:ff:05:e5:f7:
73:ce:87:15:17:1f:85:0c:df:1c:d9:94:65:cc:58:23:35:5c:
71:1a:06:af:68:62:68:28:c2:e2:16:30:68:8a:b9:84:c7:fa:
1c:72:5e:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:09 2024 by rpki-client on console-ams.rpki-client.org