Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/c8f02b-0abc-41fe-bc54-ac800c6d976f/1/vw1rkAq4YuAJLH8GY6uYRRbs_9w.roa
File: vw1rkAq4YuAJLH8GY6uYRRbs_9w.roa (raw, json)
Hash identifier: X6luseUnr4l0wsVwj9pf+Zrg+sE4tKAhaFq8ccOdozk=
Subject key identifier: BF:0D:6B:90:0A:B8:62:E0:09:2C:7F:06:63:AB:98:45:16:EC:FF:DC
Certificate issuer: /CN=2ac78fd517a75f77f3f4fd229ac5e6732560c6e1
Certificate serial: 0185735610FB72F714BEFD1D830B2B2B3689
Authority key identifier: 2A:C7:8F:D5:17:A7:5F:77:F3:F4:FD:22:9A:C5:E6:73:25:60:C6:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KseP1RenX3fz9P0imsXmcyVgxuE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/c8f02b-0abc-41fe-bc54-ac800c6d976f/1/vw1rkAq4YuAJLH8GY6uYRRbs_9w.roa
Signing time: Mon 02 Jan 2023 16:34:58 +0000
ROA not before: Mon 02 Jan 2023 16:34:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21427
IP address blocks: 37.235.77.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:29:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:56:10:fb:72:f7:14:be:fd:1d:83:0b:2b:2b:36:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac78fd517a75f77f3f4fd229ac5e6732560c6e1
Validity
Not Before: Jan 2 16:34:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bf0d6b900ab862e0092c7f0663ab984516ecffdc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:23:9a:cc:be:4a:f9:e2:37:10:74:43:bd:09:
b1:e0:00:36:d8:08:9d:4c:f0:e4:44:77:bd:48:92:
dc:7d:b5:70:e7:7a:bf:f5:77:d4:84:14:0f:f5:b1:
98:2a:67:4e:b5:8d:7f:a1:a2:61:4e:dd:e7:53:78:
0f:bb:4e:20:f1:21:1d:71:42:49:d4:6f:c1:21:b6:
13:6f:17:03:c2:ae:3b:14:45:e7:5a:52:46:50:a1:
13:b8:64:49:44:78:aa:45:ef:5a:14:70:d9:d1:27:
01:31:ad:3e:ba:c1:14:7d:3f:85:a9:3c:ff:1a:6c:
23:c8:52:0a:c4:d1:21:9f:d4:f1:b5:23:5f:72:d8:
e2:70:5a:6a:b2:d8:d0:05:c6:67:8b:11:b4:c1:32:
15:06:4c:a6:9e:6c:fb:16:d0:b5:62:31:e1:3b:f3:
ba:a9:bc:4d:f0:fc:7b:4e:0d:b8:47:19:38:c3:7f:
c2:43:2a:a1:b2:e4:50:d5:2f:98:27:62:d3:50:30:
7b:bc:60:72:03:f2:6b:2d:a1:bc:0e:5c:29:28:2b:
b6:04:5f:16:26:31:1a:0d:f2:63:24:7d:a8:7a:72:
32:3a:ee:04:70:8c:47:6e:1d:d8:e4:69:6f:3c:ec:
66:22:f9:d4:45:3b:76:3a:98:82:b3:fe:c2:3b:f3:
38:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:0D:6B:90:0A:B8:62:E0:09:2C:7F:06:63:AB:98:45:16:EC:FF:DC
X509v3 Authority Key Identifier:
keyid:2A:C7:8F:D5:17:A7:5F:77:F3:F4:FD:22:9A:C5:E6:73:25:60:C6:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KseP1RenX3fz9P0imsXmcyVgxuE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/c8f02b-0abc-41fe-bc54-ac800c6d976f/1/vw1rkAq4YuAJLH8GY6uYRRbs_9w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/c8f02b-0abc-41fe-bc54-ac800c6d976f/1/KseP1RenX3fz9P0imsXmcyVgxuE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.235.77.0/24
Signature Algorithm: sha256WithRSAEncryption
18:c6:d7:e5:8a:f6:ff:11:c2:f7:a0:4e:c5:22:47:8e:9a:c7:
d3:a5:37:26:9e:fe:9e:9c:1c:ce:98:21:11:15:c9:ef:a5:ea:
0c:19:0f:b4:f7:ba:5c:9a:66:c0:7b:bf:2b:2a:8b:3f:6c:78:
d0:c7:9d:4e:c2:56:51:35:4c:07:05:e1:d3:18:4e:3d:c7:54:
17:6a:31:a5:24:01:fc:1e:32:95:29:08:d2:aa:91:54:bd:85:
63:92:92:2d:bd:d3:91:1e:e8:bb:df:fa:d5:7b:54:63:90:cd:
f1:12:de:4e:6e:10:91:69:f3:57:27:ff:29:6e:3b:d2:e7:73:
e1:05:3c:f6:ba:e4:85:0e:60:ff:82:64:78:e2:bb:ec:fc:14:
ad:2d:f8:3a:72:45:84:b2:e9:e6:e2:b7:a0:f2:40:ce:bc:5f:
7c:77:d0:ba:9c:7a:f6:42:10:76:02:6f:88:b9:e5:3e:60:10:
87:c0:a5:62:ab:f4:74:2a:ca:95:ae:01:2f:8a:aa:19:f0:de:
e7:ba:5a:ab:d3:35:24:c6:77:fb:46:7b:34:30:38:fc:42:f9:
29:f1:44:71:80:f0:6b:ee:16:7b:1d:94:d2:67:f6:54:76:dc:
3f:9d:b0:42:38:b6:da:33:52:73:8b:06:da:42:14:f4:9b:5c:
66:d1:a7:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:15 2024 by rpki-client on console-ams.rpki-client.org