Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/de956f-e55b-437e-85d9-686f836cbcad/1/RtD1jzJMJastoxcJvHw8ko02s-g.roa
File: RtD1jzJMJastoxcJvHw8ko02s-g.roa (raw, json)
Hash identifier: 8TK9Tdbjhk7AXxaT6d3hG2cy3OSOHpz6zV5p5ZOFH30=
Subject key identifier: 46:D0:F5:8F:32:4C:25:AB:2D:A3:17:09:BC:7C:3C:92:8D:36:B3:E8
Certificate issuer: /CN=37b8221099486a3b133e0139e34b934264cdd700
Certificate serial: 0185728C986006C01EBB53E509132E85F72F
Authority key identifier: 37:B8:22:10:99:48:6A:3B:13:3E:01:39:E3:4B:93:42:64:CD:D7:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N7giEJlIajsTPgE540uTQmTN1wA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/de956f-e55b-437e-85d9-686f836cbcad/1/RtD1jzJMJastoxcJvHw8ko02s-g.roa
Signing time: Mon 02 Jan 2023 12:54:54 +0000
ROA not before: Mon 02 Jan 2023 12:54:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203541
IP address blocks: 37.61.184.0/21 maxlen: 21
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:8c:98:60:06:c0:1e:bb:53:e5:09:13:2e:85:f7:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37b8221099486a3b133e0139e34b934264cdd700
Validity
Not Before: Jan 2 12:54:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=46d0f58f324c25ab2da31709bc7c3c928d36b3e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:85:da:3c:45:90:37:ed:f5:0a:e0:6f:4b:b3:
c2:b0:33:89:0c:33:dd:10:19:55:5a:c8:69:ea:86:
ff:5a:d6:b7:f7:b6:4a:93:60:c9:6d:ba:9e:ad:0b:
f2:1b:2a:b7:9b:77:38:35:42:2c:65:db:7d:34:5a:
84:79:8e:99:0d:5c:b0:76:37:78:b1:5a:a2:3d:12:
a7:00:92:c7:15:07:7d:1e:5a:61:62:31:10:2c:3a:
ee:6b:7c:b6:92:b9:e7:95:b0:12:13:44:d9:7c:7a:
75:ba:98:37:a5:d2:bf:14:5a:e3:b9:85:3f:db:16:
f0:e6:89:d1:31:05:2d:01:66:ee:74:ec:8a:a9:00:
c6:75:0b:fd:e2:b9:55:fc:b8:d1:8d:93:4b:b3:26:
fc:73:a4:a1:1d:a4:69:47:07:70:fd:c0:c9:aa:00:
fe:42:65:48:af:4f:11:86:03:45:43:4d:6b:ea:79:
df:a1:40:8c:0a:43:17:c3:73:0b:14:47:54:d0:51:
95:1f:b2:2d:d5:4f:01:fe:11:1e:31:73:30:08:b9:
3a:98:8f:c0:57:c0:e9:02:82:84:43:66:6d:19:4a:
d3:f4:b5:74:71:10:66:9d:8b:8f:57:e3:24:14:07:
f1:1f:98:9b:46:a2:19:9f:b5:f0:1e:fc:24:58:1f:
7f:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:D0:F5:8F:32:4C:25:AB:2D:A3:17:09:BC:7C:3C:92:8D:36:B3:E8
X509v3 Authority Key Identifier:
keyid:37:B8:22:10:99:48:6A:3B:13:3E:01:39:E3:4B:93:42:64:CD:D7:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N7giEJlIajsTPgE540uTQmTN1wA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/de956f-e55b-437e-85d9-686f836cbcad/1/RtD1jzJMJastoxcJvHw8ko02s-g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/de956f-e55b-437e-85d9-686f836cbcad/1/N7giEJlIajsTPgE540uTQmTN1wA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.61.184.0/21
Signature Algorithm: sha256WithRSAEncryption
a9:7d:b1:77:65:54:97:7c:b4:67:03:14:ee:20:71:ff:d8:1d:
6f:38:32:83:bb:8f:0f:03:f8:a4:86:20:d0:d1:23:fc:54:f7:
54:c7:06:62:58:0b:7a:75:cb:c7:55:c3:c3:3e:62:ad:89:63:
f2:88:49:4e:dc:95:a3:8b:c9:ba:76:35:7c:37:ad:6f:70:c2:
99:df:78:c2:2b:10:66:50:c1:ce:7c:65:99:65:38:08:9b:13:
7e:6f:c0:c6:48:c6:9a:9c:ee:6d:1c:96:f0:3e:46:ef:83:e5:
bd:36:5d:6d:40:db:06:24:b0:f4:77:7f:9e:e3:c9:fd:d9:97:
72:d5:a3:5a:d2:ac:7b:fb:73:2c:98:dc:92:cc:3a:70:d9:5f:
df:23:7d:59:9a:db:c8:6c:9f:dd:45:dd:d9:e0:90:3b:fa:08:
5f:0f:7c:77:9d:a3:60:10:e6:d3:73:fc:42:1c:5d:3e:95:93:
49:22:eb:52:60:b5:59:54:60:09:c5:1b:05:f5:01:4c:56:c0:
c3:7b:3d:fb:12:8f:c8:32:3f:22:61:48:54:75:9e:40:a6:84:
c7:fa:4b:e3:52:63:e7:81:03:9f:9a:e2:40:b8:4a:f2:e7:da:
22:59:e2:be:83:8d:d8:76:10:5e:e4:e6:10:48:b8:f1:28:89:
a6:4b:80:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:03 2023 by rpki-client on console-fra.rpki-client.org