Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/de31a6-aaa3-409d-8d4f-f61554c6c145/1/Iw1byyOu-LRFQH7eC_5YRShBXRo.roa
File: Iw1byyOu-LRFQH7eC_5YRShBXRo.roa (raw, json)
Hash identifier: uHHMdkkXN9GGv7tmV7fXBHUuOziqBftB3LnEe1GnUXY=
Subject key identifier: 23:0D:5B:CB:23:AE:F8:B4:45:40:7E:DE:0B:FE:58:45:28:41:5D:1A
Certificate issuer: /CN=815780532ed29a3f80e7ba414efcb379d9ec97c9
Certificate serial: 0187BD92B6899DFC0978DCD97AAC29C44320
Authority key identifier: 81:57:80:53:2E:D2:9A:3F:80:E7:BA:41:4E:FC:B3:79:D9:EC:97:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gVeAUy7Smj-A57pBTvyzednsl8k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/de31a6-aaa3-409d-8d4f-f61554c6c145/1/Iw1byyOu-LRFQH7eC_5YRShBXRo.roa
Signing time: Wed 26 Apr 2023 12:38:41 +0000
ROA not before: Wed 26 Apr 2023 12:38:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 11158
IP address blocks: 77.247.1.0/24 maxlen: 24
77.247.15.0/24 maxlen: 24
185.71.48.0/24 maxlen: 24
185.71.50.0/24 maxlen: 24
46.235.109.0/24 maxlen: 24
46.235.111.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 18 May 2023 13:27:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:bd:92:b6:89:9d:fc:09:78:dc:d9:7a:ac:29:c4:43:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=815780532ed29a3f80e7ba414efcb379d9ec97c9
Validity
Not Before: Apr 26 12:38:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=230d5bcb23aef8b445407ede0bfe584528415d1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:80:49:f8:0b:31:cf:f8:51:4f:0b:e5:65:35:
5f:4f:e6:8f:2e:6e:7b:bb:62:6d:ad:01:81:b1:65:
e0:29:1e:91:ad:2b:44:fb:37:d4:f8:e1:e2:10:71:
4e:3f:79:5a:bb:bc:a0:04:83:84:92:6b:ef:da:8e:
f6:1b:ba:39:09:b0:28:57:cd:c9:1b:99:2f:41:28:
2d:0a:11:b3:d5:33:e4:b6:38:3c:4e:a3:0b:e5:ce:
ce:c8:53:db:7a:bf:96:01:a1:5d:cb:b3:2f:d5:5e:
f1:6f:38:30:f1:38:f7:ff:86:ed:e3:44:4a:4d:91:
a1:89:18:8e:e8:aa:e8:42:fc:19:41:5e:c7:02:30:
b0:e9:5f:8f:af:be:55:43:8b:57:31:2e:5d:8e:75:
e4:c0:6f:1a:d6:b1:f9:1d:d0:01:66:51:d5:7c:98:
10:37:3e:27:c6:a5:7e:85:9a:02:f1:1a:d6:61:1f:
73:c3:0d:dd:6d:0f:31:74:1f:4f:32:97:5d:a5:03:
5a:43:4d:59:b7:bd:81:bc:db:4b:9f:f0:2e:1e:03:
ce:bd:c2:04:a2:d1:02:89:5a:0b:98:30:7b:f6:ca:
f1:2d:f0:07:fb:c0:ae:43:ec:59:b8:4d:7e:80:19:
c1:5c:d7:0c:28:13:b1:5f:39:e2:1b:d0:53:e1:f5:
90:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:0D:5B:CB:23:AE:F8:B4:45:40:7E:DE:0B:FE:58:45:28:41:5D:1A
X509v3 Authority Key Identifier:
keyid:81:57:80:53:2E:D2:9A:3F:80:E7:BA:41:4E:FC:B3:79:D9:EC:97:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gVeAUy7Smj-A57pBTvyzednsl8k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/de31a6-aaa3-409d-8d4f-f61554c6c145/1/Iw1byyOu-LRFQH7eC_5YRShBXRo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/de31a6-aaa3-409d-8d4f-f61554c6c145/1/gVeAUy7Smj-A57pBTvyzednsl8k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.235.109.0/24
46.235.111.0/24
77.247.1.0/24
77.247.15.0/24
185.71.48.0/24
185.71.50.0/24
Signature Algorithm: sha256WithRSAEncryption
64:71:ee:ee:cb:bd:39:e9:aa:df:1b:e2:79:a6:c4:ac:23:9f:
d4:d7:b7:97:5e:5f:6a:1e:ae:c1:4b:0c:c9:0d:4f:8c:f7:91:
94:53:60:c4:d3:2d:6d:a5:e8:be:34:20:7f:f7:46:7a:76:e0:
71:9b:9d:a8:01:0b:94:6b:37:d7:ec:0c:58:c6:d5:89:73:05:
39:3c:70:99:2c:3f:49:46:58:1e:7a:71:c5:eb:d8:73:f3:3c:
5a:9f:a0:49:94:24:e2:20:c8:92:4f:7c:d7:0c:b6:82:bf:74:
ee:bf:aa:82:30:37:55:fd:0a:49:64:71:29:08:66:9a:67:2f:
6b:9c:12:c3:41:07:03:9a:fb:85:5b:6e:27:da:66:c4:8f:c5:
da:64:b5:c8:dc:07:2d:64:11:09:32:c2:f7:98:df:10:f1:f9:
d4:38:27:43:5d:0e:58:0e:4a:e1:0c:88:c7:55:6c:5a:c6:ce:
16:31:2a:1c:01:00:81:ee:74:5e:48:2a:89:9d:08:9f:1d:8b:
a8:6e:c3:9e:f6:94:13:d1:70:3c:f0:a0:d7:65:a2:80:0d:ed:
fc:15:0c:17:b9:b1:75:20:21:63:4e:bd:8d:cc:d0:6d:70:f8:
dc:4b:3f:e8:e6:06:3e:69:61:f1:ad:a0:38:48:ac:1c:0c:40:
61:ec:77:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:48 2024 by rpki-client on console-fra.rpki-client.org