Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/Akpz8o6hAAelq5NS0rHkEAbwYp0.roa
File: Akpz8o6hAAelq5NS0rHkEAbwYp0.roa (raw, json)
Hash identifier: A6cPi2MAxigzC7qS+mnofwafVgbqS67bCbq4oXvSL2o=
Subject key identifier: 02:4A:73:F2:8E:A1:00:07:A5:AB:93:52:D2:B1:E4:10:06:F0:62:9D
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 01856CE677B54984A87EAF177E4BC2C967ED
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/Akpz8o6hAAelq5NS0rHkEAbwYp0.roa
Signing time: Sun 01 Jan 2023 10:35:21 +0000
ROA not before: Sun 01 Jan 2023 10:35:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212561
IP address blocks: 77.85.220.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:e6:77:b5:49:84:a8:7e:af:17:7e:4b:c2:c9:67:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: Jan 1 10:35:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=024a73f28ea10007a5ab9352d2b1e41006f0629d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:08:c7:12:40:17:9e:ca:51:1f:73:ea:8e:3e:
ba:82:35:00:1e:d2:dc:3a:d9:93:2f:a6:74:a6:d4:
f2:64:c0:d3:a0:26:31:d1:ab:78:33:2b:6c:96:5c:
96:21:90:19:be:5f:cc:47:d2:07:be:6c:09:85:87:
25:5f:b7:ab:66:c1:0e:b4:c5:46:5c:6b:8d:a6:e6:
d7:e3:d0:86:f7:e6:68:6a:0e:07:2c:b0:35:37:1d:
e5:f3:f1:45:b4:ab:05:65:65:38:ce:7c:8a:b6:2a:
2b:05:eb:c9:b6:f6:a3:13:fa:ed:ce:8b:25:df:a9:
e7:26:96:9b:20:74:c3:15:e8:8f:a7:64:3e:34:61:
3e:1f:1e:60:af:73:d6:16:01:fd:f9:d5:ce:dd:09:
aa:d1:a7:4a:07:fa:ba:ad:44:a5:74:97:42:29:e7:
f4:95:47:4f:ed:be:95:8d:6a:f1:a0:fb:af:89:7a:
52:0e:04:ad:f2:ab:47:ff:6f:eb:33:7c:af:5d:1b:
f8:b4:c6:db:9f:89:bf:f0:d2:14:27:8c:2d:98:6d:
18:84:31:94:8b:05:d8:80:97:fc:4c:e3:c2:8e:68:
51:23:58:70:50:42:eb:96:4b:b2:41:39:a7:f0:f3:
47:a0:ad:03:b4:86:26:12:64:4d:ba:ae:f4:4d:64:
af:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:4A:73:F2:8E:A1:00:07:A5:AB:93:52:D2:B1:E4:10:06:F0:62:9D
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/Akpz8o6hAAelq5NS0rHkEAbwYp0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.85.220.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:3d:2d:df:55:a9:34:61:44:fd:fc:85:e7:5d:bc:ff:57:5f:
75:50:c4:5a:49:72:30:1b:12:be:01:55:55:2d:c5:d3:3d:72:
6c:cf:17:48:7d:fa:91:46:78:6e:4c:8c:03:af:59:1c:b4:4e:
85:6f:93:2b:1b:9e:22:f1:ee:ab:f0:71:ba:b4:d4:ec:9f:72:
78:a6:8b:d8:ef:fc:88:7a:dd:dc:f0:fc:5f:ca:98:1a:f1:2b:
79:8b:29:b5:bf:a9:2b:4b:64:b2:a4:b5:f3:e1:ac:3b:0a:06:
4d:fb:55:f2:62:25:61:01:dd:a5:b5:4c:df:c4:2c:11:e6:29:
b5:8e:ec:9d:1f:44:34:f4:84:2e:7a:94:33:1b:e4:ca:1f:b7:
fd:9f:ea:4c:c3:2e:ca:df:75:83:2a:b0:de:c3:25:cb:53:76:
3d:48:64:81:80:40:df:49:03:b3:dd:82:92:a0:83:0d:41:b4:
6d:4f:1b:07:7b:2e:64:37:7c:89:83:0c:e3:59:4f:63:1c:8a:
88:17:f5:ec:26:75:33:1e:a6:d9:02:40:ce:01:c4:df:38:46:
b0:e6:89:b1:50:c5:c7:d0:d2:ad:20:80:f7:5e:39:1e:b8:1d:
e2:48:43:65:03:5b:4c:95:0b:22:a6:aa:e7:24:27:de:11:6c:
3c:53:bf:4e
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVs5ne1SYSofq8XfkvCyWftMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg0YjJmNGZhNTE2M2FmOTYxNjhlODhmYmY5Y2I0ZWQxZWQ4
ZmI0YzQwHhcNMjMwMTAxMTAzNTIxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwMjRhNzNmMjhlYTEwMDA3YTVhYjkzNTJkMmIxZTQxMDA2ZjA2MjlkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhgjHEkAXnspRH3Pqjj66gjUAHtLc
OtmTL6Z0ptTyZMDToCYx0at4MytsllyWIZAZvl/MR9IHvmwJhYclX7erZsEOtMVG
XGuNpubX49CG9+Zoag4HLLA1Nx3l8/FFtKsFZWU4znyKtiorBevJtvajE/rtzosl
36nnJpabIHTDFeiPp2Q+NGE+Hx5gr3PWFgH9+dXO3Qmq0adKB/q6rUSldJdCKef0
lUdP7b6VjWrxoPuviXpSDgSt8qtH/2/rM3yvXRv4tMbbn4m/8NIUJ4wtmG0YhDGU
iwXYgJf8TOPCjmhRI1hwUELrlkuyQTmn8PNHoK0DtIYmEmRNuq70TWSv0QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAJKc/KOoQAHpauTUtKx5BAG8GKdMB8GA1UdIwQY
MBaAFISy9PpRY6+WFo6I+/nLTtHtj7TEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaExMMC1sRmpyNVlXam9qNy1jdE8wZTJQdE1RLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC80YWE3ODktODc4Yi00NzJiLWI4NDct
ODcyYmEyZDlmNDRjLzEvQWtwejhvNmhBQWVscTVOUzBySGtFQWJ3WXAwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMC80YWE3ODktODc4Yi00NzJiLWI4NDctODcyYmEyZDlmNDRj
LzEvaExMMC1sRmpyNVlXam9qNy1jdE8wZTJQdE1RLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQATVXcMA0G
CSqGSIb3DQEBCwUAA4IBAQAPPS3fVak0YUT9/IXnXbz/V191UMRaSXIwGxK+AVVV
LcXTPXJszxdIffqRRnhuTIwDr1kctE6Fb5MrG54i8e6r8HG6tNTsn3J4povY7/yI
et3c8Pxfypga8St5iym1v6krS2SypLXz4aw7CgZN+1XyYiVhAd2ltUzfxCwR5im1
juydH0Q09IQuepQzG+TKH7f9n+pMwy7K33WDKrDewyXLU3Y9SGSBgEDfSQOz3YKS
oIMNQbRtTxsHey5kN3yJgwzjWU9jHIqIF/XsJnUzHqbZAkDOAcTfOEaw5omxUMXH
0NKtIID3XjkeuB3iSENlA1tMlQsipqrnJCfeEWw8U79O
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:04 2024 by rpki-client on console-fra.rpki-client.org