Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/1-9fLUI59LEG9TSlttxp9XQcQboo.roa
File: 1-9fLUI59LEG9TSlttxp9XQcQboo.roa (raw, json)
Hash identifier: tlRMa0PTBUyEsJW/jEND4XPzK7YW6r9VlAZv+g1Zl8s=
Subject key identifier: FB:D7:CB:50:8E:7D:2C:41:BD:4D:29:6D:B7:1A:7D:5D:07:10:6E:8A
Certificate issuer: /CN=a0ef5fbbfca7a93cfee965eeb6bdee6fb43c403e
Certificate serial: 01856D0ACC31C4466A6CF280C083FD1FAC97
Authority key identifier: A0:EF:5F:BB:FC:A7:A9:3C:FE:E9:65:EE:B6:BD:EE:6F:B4:3C:40:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oO9fu_ynqTz-6WXutr3ub7Q8QD4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/1-9fLUI59LEG9TSlttxp9XQcQboo.roa
Signing time: Sun 01 Jan 2023 11:15:02 +0000
ROA not before: Sun 01 Jan 2023 11:15:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12849
IP address blocks: 89.237.64.0/18 maxlen: 24
77.137.128.0/18 maxlen: 24
77.138.0.0/15 maxlen: 24
77.137.192.0/22 maxlen: 24
194.242.160.0/20 maxlen: 24
77.137.0.0/17 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:33:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:0a:cc:31:c4:46:6a:6c:f2:80:c0:83:fd:1f:ac:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0ef5fbbfca7a93cfee965eeb6bdee6fb43c403e
Validity
Not Before: Jan 1 11:15:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fbd7cb508e7d2c41bd4d296db71a7d5d07106e8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:ad:bf:a9:0a:4b:29:b2:d7:7e:7d:22:4b:9c:
a5:a6:89:33:4a:81:a8:d6:af:44:3b:71:93:1e:39:
e4:ce:9a:25:62:ed:f0:2a:47:13:27:fd:ba:15:5b:
aa:fc:69:47:38:13:b6:b6:22:89:84:45:04:11:77:
a3:7a:7e:6c:65:11:dd:07:39:28:13:cb:75:88:e2:
fa:06:55:2c:12:92:8c:64:1b:97:00:e1:c4:01:d7:
d2:d2:0c:82:b7:7a:d8:fb:32:62:61:34:34:58:ee:
f8:e9:07:8e:92:81:ba:c2:24:a6:7b:99:22:ee:8b:
8e:57:30:2e:8a:95:82:47:5d:16:24:20:11:83:0e:
87:6c:87:34:d4:2f:3f:df:1e:41:b1:23:b4:a7:1d:
8b:41:2b:b1:53:e2:90:59:f0:96:86:5d:d9:0c:ee:
01:d6:3f:3c:d3:d7:8d:c3:6f:1e:7d:09:ae:d3:63:
4a:52:a6:ea:3a:f2:73:99:0e:f4:d8:16:fe:70:1f:
74:c1:83:86:cf:53:51:52:d0:c3:f3:68:98:a6:2f:
d2:d7:6d:f6:e4:fc:58:74:df:78:ea:a2:b1:ce:3d:
d5:dc:69:66:db:b0:e5:41:54:4e:08:1c:76:1f:dc:
d9:de:14:e9:37:3d:1e:bd:a2:5d:70:01:da:04:c5:
cc:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:D7:CB:50:8E:7D:2C:41:BD:4D:29:6D:B7:1A:7D:5D:07:10:6E:8A
X509v3 Authority Key Identifier:
keyid:A0:EF:5F:BB:FC:A7:A9:3C:FE:E9:65:EE:B6:BD:EE:6F:B4:3C:40:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oO9fu_ynqTz-6WXutr3ub7Q8QD4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/1-9fLUI59LEG9TSlttxp9XQcQboo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/oO9fu_ynqTz-6WXutr3ub7Q8QD4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.137.0.0-77.137.195.255
77.138.0.0/15
89.237.64.0/18
194.242.160.0/20
Signature Algorithm: sha256WithRSAEncryption
55:23:96:9e:51:dc:79:ba:c6:e3:ba:98:1e:d9:bc:49:cc:29:
35:ea:8e:07:f1:cd:d5:52:4a:56:e7:64:31:84:c3:e6:60:75:
f8:15:c1:8f:6b:a1:82:46:62:ea:41:bd:13:f3:b0:7f:62:df:
f4:77:7e:18:55:4c:83:d1:42:b2:c5:90:9e:73:79:30:96:0c:
d4:91:2a:b6:55:3f:29:fc:b7:da:c1:47:42:cb:ac:36:a2:23:
4d:05:9d:6a:8d:0a:5d:15:95:2d:4c:bc:21:9a:b0:f7:6b:5e:
95:e2:ca:03:93:10:9c:4b:b9:19:04:4f:bc:5d:d4:a3:b3:2d:
c6:fe:8e:c2:86:88:64:ec:b5:1f:ae:5f:6b:48:2a:06:ad:cb:
0f:85:7a:d6:68:b6:da:bc:d3:39:25:cc:53:e9:d4:94:fd:76:
d4:21:c9:f9:1c:1f:f6:d5:af:87:88:34:7e:53:f1:81:97:a0:
7d:3a:25:17:85:89:bc:90:76:67:98:a2:fd:3c:02:e0:17:0f:
80:8f:77:f1:1a:cd:7f:57:0d:89:27:ae:88:2e:46:db:19:c5:
63:2a:d7:eb:f9:ca:7a:5a:cc:bf:f6:f8:be:9f:39:41:4d:da:
df:42:8c:4b:93:74:8c:6c:44:62:09:5f:a8:8b:19:ba:76:6b:
8d:83:89:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:50 2024 by rpki-client on console-ams.rpki-client.org