Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/5b3d6d-e6f1-47ad-b52b-9d943671a8a3/1/9pdjmqj35pyclE_dZKlTVSHA8Oc.roa
File: 9pdjmqj35pyclE_dZKlTVSHA8Oc.roa (raw, json)
Hash identifier: MmqA9aQmoHiDxv0bqxmXXA80QJa45H0cYYTMaglaHxw=
Subject key identifier: F6:97:63:9A:A8:F7:E6:9C:9C:94:4F:DD:64:A9:53:55:21:C0:F0:E7
Certificate issuer: /CN=a0a154441df9623eeb5a196138d21bef5824b441
Certificate serial: 018570707DEBB9434337530FAFA974C0D15A
Authority key identifier: A0:A1:54:44:1D:F9:62:3E:EB:5A:19:61:38:D2:1B:EF:58:24:B4:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oKFURB35Yj7rWhlhONIb71gktEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/5b3d6d-e6f1-47ad-b52b-9d943671a8a3/1/9pdjmqj35pyclE_dZKlTVSHA8Oc.roa
Signing time: Mon 02 Jan 2023 03:04:58 +0000
ROA not before: Mon 02 Jan 2023 03:04:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 24641
IP address blocks: 77.240.176.0/20 maxlen: 24
85.132.144.0/20 maxlen: 24
81.19.0.0/20 maxlen: 20
95.129.96.0/21 maxlen: 21
2a02:e98::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 20 Sep 2023 12:37:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:70:7d:eb:b9:43:43:37:53:0f:af:a9:74:c0:d1:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0a154441df9623eeb5a196138d21bef5824b441
Validity
Not Before: Jan 2 03:04:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f697639aa8f7e69c9c944fdd64a9535521c0f0e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:9a:13:a4:d1:6c:71:97:1d:24:76:43:21:5e:
e4:4e:26:aa:37:c6:16:a6:ee:96:00:aa:ee:03:1f:
94:96:36:c8:14:28:40:79:87:bb:12:e2:54:ce:dc:
9d:9a:41:6d:73:4a:9a:73:4a:3c:05:2a:52:45:bb:
6b:ab:ec:ba:6c:01:f3:57:19:02:df:07:f0:be:0b:
61:fa:c0:6b:20:6d:1f:38:c1:1e:9d:e5:a3:1f:79:
c3:f8:68:1d:53:19:46:30:bd:e2:8e:62:aa:73:5c:
f0:b3:e9:2a:07:75:c0:dd:d3:17:3d:bf:b5:14:7e:
7e:1f:9b:b6:90:47:fe:0b:ae:3a:ab:bf:63:a0:ca:
13:57:1d:bc:49:6a:96:b1:e5:dc:cc:a4:f1:89:c5:
76:a2:98:f0:e0:bf:4a:89:29:b4:01:26:e2:ae:8a:
57:b9:d0:99:9a:df:63:c1:df:9c:57:c8:e9:38:b0:
06:ec:12:ba:af:26:83:2c:c0:33:3c:81:1a:94:ab:
2d:0e:ff:1b:3a:f6:f1:85:ff:8f:33:c8:a6:c5:a7:
13:e9:74:4e:7a:2d:d8:0b:b1:71:03:b0:1e:74:ae:
a8:90:b2:4c:e3:db:d8:d1:78:1c:1a:36:aa:f6:06:
f4:8a:bd:46:c9:57:5f:34:fd:bb:b0:58:46:3c:fe:
38:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:97:63:9A:A8:F7:E6:9C:9C:94:4F:DD:64:A9:53:55:21:C0:F0:E7
X509v3 Authority Key Identifier:
keyid:A0:A1:54:44:1D:F9:62:3E:EB:5A:19:61:38:D2:1B:EF:58:24:B4:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oKFURB35Yj7rWhlhONIb71gktEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/5b3d6d-e6f1-47ad-b52b-9d943671a8a3/1/9pdjmqj35pyclE_dZKlTVSHA8Oc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/5b3d6d-e6f1-47ad-b52b-9d943671a8a3/1/oKFURB35Yj7rWhlhONIb71gktEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.240.176.0/20
81.19.0.0/20
85.132.144.0/20
95.129.96.0/21
IPv6:
2a02:e98::/32
Signature Algorithm: sha256WithRSAEncryption
14:05:7d:72:28:8f:3e:36:9d:79:2d:02:d0:2c:f1:f8:f7:f3:
a2:00:95:62:be:d4:d2:24:17:7f:ff:85:72:b9:f5:6f:d6:b9:
df:54:ac:b5:0c:13:d1:34:b0:c6:96:cd:54:6d:60:f4:98:9b:
67:1b:68:b9:bb:5b:72:d4:0b:d2:92:61:56:ca:10:f8:5f:60:
84:fc:ef:8f:15:97:ad:3e:d6:21:25:ef:29:0b:e7:bd:4f:dd:
6a:44:4f:6f:d3:38:3d:dd:09:14:9a:68:29:d4:12:c3:2d:72:
69:ae:cf:b7:92:4e:1c:4a:d4:d1:10:37:0a:b3:ef:23:9f:c7:
0f:39:81:bb:d4:b4:f2:57:5f:2f:2a:97:ce:1c:62:e9:b0:20:
95:56:f1:59:67:fe:dd:77:12:52:04:bf:49:58:62:03:45:1d:
25:d6:79:39:bc:97:b6:16:dc:a5:03:f1:d4:c6:ad:8b:be:bd:
ea:d7:6b:9e:8c:22:0b:89:9f:d6:fc:d0:97:18:e8:bc:0d:3d:
0c:64:a6:f7:ca:43:f8:2d:a5:9c:5b:a7:50:90:f8:2f:10:36:
5e:f0:57:9c:ff:e0:2a:c1:46:aa:b1:60:2f:19:3d:ca:df:fa:
ac:4c:eb:06:e0:57:47:e8:8d:81:4c:da:40:bd:c1:ca:05:6d:
95:e5:de:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:57 2024 by rpki-client on console-fra.rpki-client.org