Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/DToDrYMKtHeX7M4mrSmBxw8P_EM.roa
File: DToDrYMKtHeX7M4mrSmBxw8P_EM.roa (raw, json)
Hash identifier: 2uD4pkbm3XvvndIgZ3ROVABD9ZcKCRWg2tJD7NXTAgs=
Subject key identifier: 0D:3A:03:AD:83:0A:B4:77:97:EC:CE:26:AD:29:81:C7:0F:0F:FC:43
Certificate issuer: /CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Certificate serial: 018BCCE1450DF49B6E51ABBB35D81A629DEB
Authority key identifier: B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/DToDrYMKtHeX7M4mrSmBxw8P_EM.roa
Signing time: Tue 14 Nov 2023 08:09:57 +0000
ROA not before: Tue 14 Nov 2023 08:09:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42503
IP address blocks: 77.65.204.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:cc:e1:45:0d:f4:9b:6e:51:ab:bb:35:d8:1a:62:9d:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Validity
Not Before: Nov 14 08:09:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0d3a03ad830ab47797ecce26ad2981c70f0ffc43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:5a:c6:a4:c8:b7:e6:ee:d6:66:4f:06:48:e8:
4c:86:18:c4:79:db:0f:2f:37:91:35:b2:3c:34:15:
a7:df:94:76:92:92:12:95:0d:d8:54:81:86:23:42:
6f:8b:0a:68:27:47:1d:47:29:b5:f1:03:90:f8:44:
4a:de:f0:3b:60:68:62:96:e4:af:25:a9:c8:ee:15:
74:2e:28:95:a0:f3:1d:70:93:ea:9f:ee:cc:ff:e3:
15:c6:9a:30:a2:24:7f:85:27:25:d6:88:c8:9e:d1:
85:2a:92:b3:0f:24:6a:93:35:2a:d7:69:87:ae:10:
20:fd:1e:4a:c8:3d:dd:74:64:e5:64:70:ab:4f:0a:
aa:01:fc:32:87:d6:07:89:b8:3c:78:b3:ff:94:ea:
83:8c:3f:8a:ed:be:74:00:08:2d:1c:da:5b:6e:ca:
90:22:65:1e:ce:3c:94:e3:be:05:3e:8b:3e:b8:b7:
e4:a5:d5:3e:15:7a:60:ae:8b:5e:fa:8a:15:a5:0e:
d3:33:3c:c9:9e:82:47:5b:0f:b3:49:ae:2c:e0:c4:
da:2b:cd:2e:b9:19:8b:ef:7d:b4:2d:4a:b5:0d:74:
89:ce:b4:4d:5b:68:8b:a8:8f:22:35:8d:03:44:70:
92:b5:f5:f6:3a:de:70:14:db:38:00:ee:24:80:b6:
76:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:3A:03:AD:83:0A:B4:77:97:EC:CE:26:AD:29:81:C7:0F:0F:FC:43
X509v3 Authority Key Identifier:
keyid:B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/DToDrYMKtHeX7M4mrSmBxw8P_EM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/uZVEmZdyeKdVcLNAP006oAsbNug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.65.204.0/24
Signature Algorithm: sha256WithRSAEncryption
08:47:54:0a:27:04:97:73:c8:6a:b9:5f:90:61:02:df:22:d5:
d0:5e:19:b2:68:78:95:f6:7f:0a:da:db:8e:99:6e:b4:5f:27:
8c:c7:fb:0a:87:04:26:19:f3:a8:de:40:ad:52:94:5e:14:44:
69:b3:63:2f:b5:d3:03:8a:2f:81:31:a1:5f:c3:c6:11:3c:53:
97:28:ec:29:6c:ab:60:36:ab:f7:dd:e2:b2:19:42:bc:24:76:
e2:4c:85:46:c2:de:2a:96:88:fc:2d:c7:73:77:ea:fb:fa:81:
e1:4a:0d:e8:f1:fc:27:69:e1:bc:52:dc:55:6b:ab:a0:7d:cd:
22:62:42:5d:9e:7d:b6:ab:bb:44:d3:3f:35:71:2c:ad:2a:05:
c6:ef:4b:a5:14:3b:1c:91:d1:5e:04:69:20:61:87:49:9d:b8:
e8:2f:81:9b:13:ed:c4:f9:07:6d:69:6b:0d:6c:6f:ae:62:79:
cb:24:05:f2:32:2a:f7:4c:79:00:34:a8:dc:dd:93:9c:5e:2c:
54:cc:71:a0:90:74:6d:5b:ac:60:d2:2e:a8:2d:91:38:83:74:
8d:8f:00:23:7d:7e:73:0c:11:ae:8b:b4:e4:85:d3:8a:91:09:
b2:ce:30:bc:1f:c3:47:a8:e7:82:9a:8f:6e:94:78:6c:11:35:
20:43:19:8a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYvM4UUN9JtuUau7NdgaYp3rMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI5OTU0NDk5OTc3Mjc4YTc1NTcwYjM0MDNmNGQzYWEwMGIx
YjM2ZTgwHhcNMjMxMTE0MDgwOTU3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwZDNhMDNhZDgzMGFiNDc3OTdlY2NlMjZhZDI5ODFjNzBmMGZmYzQzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjFrGpMi35u7WZk8GSOhMhhjEedsP
LzeRNbI8NBWn35R2kpISlQ3YVIGGI0JviwpoJ0cdRym18QOQ+ERK3vA7YGhiluSv
JanI7hV0LiiVoPMdcJPqn+7M/+MVxpowoiR/hScl1ojIntGFKpKzDyRqkzUq12mH
rhAg/R5KyD3ddGTlZHCrTwqqAfwyh9YHibg8eLP/lOqDjD+K7b50AAgtHNpbbsqQ
ImUezjyU474FPos+uLfkpdU+FXpgrote+ooVpQ7TMzzJnoJHWw+zSa4s4MTaK80u
uRmL7320LUq1DXSJzrRNW2iLqI8iNY0DRHCStfX2Ot5wFNs4AO4kgLZ2XQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFA06A62DCrR3l+zOJq0pgccPD/xDMB8GA1UdIwQY
MBaAFLmVRJmXcninVXCzQD9NOqALGzboMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdVpWRW1aZHllS2RWY0xOQVAwMDZvQXNiTnVnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ny83ODg4MDMtYmUxMi00MzNmLWE4ZDAt
MDI0YjE2NTVjMjQ3LzEvRFRvRHJZTUt0SGVYN000bXJTbUJ4dzhQX0VNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Ny83ODg4MDMtYmUxMi00MzNmLWE4ZDAtMDI0YjE2NTVjMjQ3
LzEvdVpWRW1aZHllS2RWY0xOQVAwMDZvQXNiTnVnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQATUHMMA0G
CSqGSIb3DQEBCwUAA4IBAQAIR1QKJwSXc8hquV+QYQLfItXQXhmyaHiV9n8K2tuO
mW60XyeMx/sKhwQmGfOo3kCtUpReFERps2MvtdMDii+BMaFfw8YRPFOXKOwpbKtg
Nqv33eKyGUK8JHbiTIVGwt4qloj8Lcdzd+r7+oHhSg3o8fwnaeG8UtxVa6ugfc0i
YkJdnn22q7tE0z81cSytKgXG70ulFDsckdFeBGkgYYdJnbjoL4GbE+3E+QdtaWsN
bG+uYnnLJAXyMir3THkANKjc3ZOcXixUzHGgkHRtW6xg0i6oLZE4g3SNjwAjfX5z
DBGui7TkhdOKkQmyzjC8H8NHqOeCmo9ulHhsETUgQxmK
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:47 2024 by rpki-client on console-fra.rpki-client.org