Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/G6YJcTdDmxRJjbRJyI1HqIlH7uY.roa
File: G6YJcTdDmxRJjbRJyI1HqIlH7uY.roa (raw, json)
Hash identifier: TPVgbwkP5MCmV2zIEUtHlb9Z8i/uDX32mpSfteFVD48=
Subject key identifier: 1B:A6:09:71:37:43:9B:14:49:8D:B4:49:C8:8D:47:A8:89:47:EE:E6
Certificate issuer: /CN=da00e981953061972c896bd6d27738d083aadb0e
Certificate serial: 018C12869F14C4D1C062124AF1DB0DA59F0C
Authority key identifier: DA:00:E9:81:95:30:61:97:2C:89:6B:D6:D2:77:38:D0:83:AA:DB:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2gDpgZUwYZcsiWvW0nc40IOq2w4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/G6YJcTdDmxRJjbRJyI1HqIlH7uY.roa
Signing time: Mon 27 Nov 2023 20:44:21 +0000
ROA not before: Mon 27 Nov 2023 20:44:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205663
IP address blocks: 37.153.132.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:12:86:9f:14:c4:d1:c0:62:12:4a:f1:db:0d:a5:9f:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da00e981953061972c896bd6d27738d083aadb0e
Validity
Not Before: Nov 27 20:44:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1ba6097137439b14498db449c88d47a88947eee6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:81:ae:83:c4:d5:65:7b:ca:a4:54:2c:af:a0:
b8:59:19:41:d8:32:22:25:34:ee:8d:a1:7b:ea:d7:
a7:d7:42:53:67:8b:ee:61:01:28:d9:3b:05:e6:df:
3a:fb:96:6a:25:80:bf:ac:be:87:6c:c2:df:7d:31:
55:82:95:b9:92:49:00:da:c6:a2:56:ef:29:1c:56:
c1:92:45:d6:aa:09:0f:00:4c:bb:50:28:46:3a:99:
cb:f4:c5:1a:99:ea:66:3a:f2:f3:7f:b3:23:32:c2:
a7:4a:9a:7e:0a:a5:12:69:f9:4c:f5:98:6d:60:1b:
30:05:a4:3a:e9:ff:a4:1f:96:ff:4d:ee:a6:ab:07:
9a:b4:d3:e8:9f:fb:f0:32:5a:f0:9c:6e:ad:b1:ab:
31:9f:5e:74:93:4c:14:7d:83:81:65:90:46:ef:66:
bf:02:dc:ab:61:f5:f4:b2:a8:14:a7:3b:b0:c9:ce:
6f:af:7e:58:6a:3f:42:8d:40:d2:a5:31:92:5a:92:
5c:78:3b:3c:a8:7f:bd:a2:98:4d:5f:ba:05:1d:3a:
80:04:aa:67:06:f7:81:53:3b:10:c8:97:31:c2:12:
e5:26:f0:77:21:43:00:2d:c2:19:5c:ca:5b:12:77:
1d:3d:8e:e2:62:ca:f0:e9:06:5f:5b:4e:ce:dc:9f:
54:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:A6:09:71:37:43:9B:14:49:8D:B4:49:C8:8D:47:A8:89:47:EE:E6
X509v3 Authority Key Identifier:
keyid:DA:00:E9:81:95:30:61:97:2C:89:6B:D6:D2:77:38:D0:83:AA:DB:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2gDpgZUwYZcsiWvW0nc40IOq2w4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/G6YJcTdDmxRJjbRJyI1HqIlH7uY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/2gDpgZUwYZcsiWvW0nc40IOq2w4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.153.132.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:8c:f0:bb:e2:fd:79:ac:90:49:24:b1:95:20:04:e7:22:77:
12:a5:7f:6d:14:e4:3e:e5:67:2b:44:0c:c3:71:7c:57:37:9c:
58:2d:52:cc:96:36:c4:8b:bd:bb:25:76:33:61:86:eb:d2:ae:
85:8a:d6:0a:57:91:40:a0:53:a0:34:44:d2:75:3b:75:01:1d:
a4:d4:88:ce:7a:15:89:22:11:60:95:c2:4c:f6:db:04:b8:b1:
bd:a9:8c:91:c8:30:12:d5:59:b0:46:73:55:c7:0c:eb:d5:14:
5c:cd:ab:b2:9a:51:87:c9:28:d3:b3:c2:fb:a4:e1:4b:a3:32:
51:2e:0b:ab:9c:78:84:e6:15:48:4b:a7:90:41:d7:33:eb:66:
2e:91:9b:ca:39:7b:15:95:a3:50:cf:90:11:f8:57:6e:45:7c:
bd:ea:d2:8f:61:f9:30:76:86:8b:86:56:e6:aa:d2:b5:86:ea:
a7:f4:a4:a6:70:03:97:b7:c4:48:00:a2:aa:e8:96:ae:da:95:
88:17:26:6e:7c:c4:fc:a1:53:98:87:52:f0:ff:61:6b:1f:21:
8b:92:3e:6b:6b:86:8c:c6:cd:53:92:56:37:75:28:1a:24:12:
71:27:f3:5c:da:bd:34:a4:ed:49:33:62:23:50:1b:2e:ce:4b:
0b:ab:c3:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 17:26:45 2024 by rpki-client on console-fra.rpki-client.org