Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/hFqNObKRLv7MbPCVAHzEHIJC2zM.roa
File: hFqNObKRLv7MbPCVAHzEHIJC2zM.roa (raw, json)
Hash identifier: FE8jor2j4d2pPiLAQYNF6BrE8nO5KuUHlXhdIDVTpd8=
Subject key identifier: 84:5A:8D:39:B2:91:2E:FE:CC:6C:F0:95:00:7C:C4:1C:82:42:DB:33
Certificate issuer: /CN=fd37cc8f16b3c6cbd3346aa3ed61771f3e83ac97
Certificate serial: 01856C813C0478B4B4DDC914B1A3AEAC2244
Authority key identifier: FD:37:CC:8F:16:B3:C6:CB:D3:34:6A:A3:ED:61:77:1F:3E:83:AC:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_TfMjxazxsvTNGqj7WF3Hz6DrJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/hFqNObKRLv7MbPCVAHzEHIJC2zM.roa
Signing time: Sun 01 Jan 2023 08:44:46 +0000
ROA not before: Sun 01 Jan 2023 08:44:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202848
IP address blocks: 185.137.38.0/24 maxlen: 24
185.137.37.0/24 maxlen: 24
185.137.39.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:30:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:81:3c:04:78:b4:b4:dd:c9:14:b1:a3:ae:ac:22:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd37cc8f16b3c6cbd3346aa3ed61771f3e83ac97
Validity
Not Before: Jan 1 08:44:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=845a8d39b2912efecc6cf095007cc41c8242db33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:7c:2a:e7:dc:fd:ea:9e:88:d5:1c:81:28:d1:
27:db:69:0e:1b:0c:b0:e4:22:2c:52:89:68:90:53:
e2:8c:e8:13:09:93:cd:7b:2f:74:16:37:85:c1:b7:
61:51:b4:96:46:23:31:47:5d:be:77:5b:23:a5:6b:
11:ee:d7:68:67:b6:f9:0c:9d:f9:7a:1f:dc:7d:29:
e8:5e:75:2f:d8:e7:38:ef:e0:39:10:e0:24:de:bb:
c8:ec:59:1d:47:10:f4:7e:e7:e0:d7:6b:8d:49:7f:
ab:5e:55:bc:fc:de:82:6d:e2:61:3d:f5:69:22:ef:
e8:e2:99:7e:51:50:dd:00:37:42:b9:7c:cf:09:4b:
8b:1e:6e:e6:83:32:ee:8d:6a:72:64:35:e5:b2:fc:
78:09:2f:97:92:23:f8:53:95:33:41:e3:c8:42:d8:
c0:ef:58:a8:64:f4:cf:15:96:b4:0c:6f:c0:6e:ce:
5f:bb:5c:9b:ae:2e:a3:1d:53:84:a8:cf:a5:51:f6:
59:f1:a2:4f:fa:9d:a7:a2:bd:c8:e2:87:51:42:f0:
a4:53:f8:23:0b:e9:64:ba:00:1d:d0:3b:af:47:9d:
e7:36:01:b4:99:af:47:dc:14:fa:f7:6b:3a:c7:4f:
66:0c:88:cf:2c:9d:93:ba:7c:d3:d7:70:ac:ae:42:
93:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:5A:8D:39:B2:91:2E:FE:CC:6C:F0:95:00:7C:C4:1C:82:42:DB:33
X509v3 Authority Key Identifier:
keyid:FD:37:CC:8F:16:B3:C6:CB:D3:34:6A:A3:ED:61:77:1F:3E:83:AC:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_TfMjxazxsvTNGqj7WF3Hz6DrJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/hFqNObKRLv7MbPCVAHzEHIJC2zM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/_TfMjxazxsvTNGqj7WF3Hz6DrJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.137.37.0-185.137.39.255
Signature Algorithm: sha256WithRSAEncryption
a0:a5:c8:22:fb:5e:41:dc:c7:c3:42:e5:40:ff:66:98:52:39:
75:a5:32:1c:18:d9:d0:d6:ee:51:9e:34:42:e8:f3:36:30:06:
ce:4e:1c:a6:69:b9:78:1a:ad:24:0f:74:5f:cb:33:2a:d8:a0:
ea:57:48:45:d2:6f:84:31:6e:e8:4d:97:06:c9:d1:b5:20:6b:
3b:08:24:02:d3:26:27:03:5d:9d:c3:04:7d:c7:fb:d0:df:ed:
85:59:86:cc:91:bb:0b:9d:e9:ef:77:4b:a4:f5:41:81:16:ba:
95:fe:a5:bb:64:1b:81:3f:00:34:ba:6c:06:b1:fa:29:97:7a:
50:cc:1e:83:91:8f:ea:93:65:ee:dc:47:a3:50:73:a5:d4:e4:
a6:99:c7:28:7b:11:05:c6:d8:5b:7c:90:dd:d5:3e:7b:68:ed:
dc:a7:58:2f:59:a1:e1:a2:49:3f:dc:54:41:e1:31:12:2c:a7:
b1:46:5f:35:f8:8e:a2:bc:2d:de:bb:4f:43:6a:a2:e8:2a:02:
6f:0b:58:69:4d:dd:33:1c:44:90:7c:3c:30:5c:36:14:9b:a1:
dc:13:f1:02:47:84:c6:78:62:35:06:ef:b5:f9:8a:0b:d5:b8:
d6:ff:b4:c6:03:77:75:1a:c1:fb:70:92:e5:6f:1c:6d:53:fd:
72:56:3e:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:32 2024 by rpki-client on console-ams.rpki-client.org