Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/ARL7UiTc7YNbhbhBTnRsPsjcP3A.roa
File: ARL7UiTc7YNbhbhBTnRsPsjcP3A.roa (raw, json)
Hash identifier: u1ulY8htuBb67t+DvRpSFaOUOQ1QfJmv33Km28eqZEY=
Subject key identifier: 01:12:FB:52:24:DC:ED:83:5B:85:B8:41:4E:74:6C:3E:C8:DC:3F:70
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 0188AF2E5390F5776959A2E73886A1B98AA2
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/ARL7UiTc7YNbhbhBTnRsPsjcP3A.roa
Signing time: Mon 12 Jun 2023 10:37:08 +0000
ROA not before: Mon 12 Jun 2023 10:37:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43260
IP address blocks: 77.83.39.0/24 maxlen: 24
85.209.120.0/23 maxlen: 24
45.94.171.0/24 maxlen: 24
45.138.183.0/24 maxlen: 24
77.83.38.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 13 Jun 2023 12:09:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:af:2e:53:90:f5:77:69:59:a2:e7:38:86:a1:b9:8a:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: Jun 12 10:37:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0112fb5224dced835b85b8414e746c3ec8dc3f70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:55:72:7f:d1:7b:dd:44:1a:50:8f:99:d7:bf:
20:8e:06:34:01:50:60:87:e3:cc:3e:ad:72:83:d2:
13:3e:c3:00:6d:63:c8:b3:84:fe:2b:2f:76:a8:63:
6d:ad:12:cd:02:77:d4:4d:02:cf:93:91:16:9f:c9:
3c:09:30:68:40:1f:98:c5:e0:d7:87:91:84:59:6e:
a2:58:32:9c:b5:39:b9:df:f7:e5:19:ca:ff:55:7c:
f9:af:3a:cd:93:10:1d:a2:7d:41:f7:ca:16:bd:7f:
dd:85:36:ef:5d:d7:2f:96:13:76:88:06:5d:37:ad:
4c:8b:f6:ab:52:20:b5:7f:df:70:29:a5:5c:cd:d5:
fa:1c:86:d3:8f:9c:36:a2:a4:1f:b3:58:e6:9c:a8:
dc:c9:88:2a:af:3c:00:26:b9:9d:3f:25:b5:f5:33:
90:23:76:c9:df:69:61:14:a0:5d:5c:82:90:d3:81:
cd:36:e8:15:2a:40:75:19:ba:62:47:4f:79:14:8e:
7e:c4:2e:ed:ac:c2:05:37:e0:04:e0:48:2f:17:77:
11:57:03:64:db:7d:be:da:6a:63:f6:d3:65:0b:db:
3b:e9:22:ba:fc:47:42:b3:f2:b5:6e:0f:ca:b8:de:
0b:fc:f9:7b:e2:ba:ce:c9:bc:ca:ea:98:42:78:3c:
f0:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:12:FB:52:24:DC:ED:83:5B:85:B8:41:4E:74:6C:3E:C8:DC:3F:70
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/ARL7UiTc7YNbhbhBTnRsPsjcP3A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.94.171.0/24
45.138.183.0/24
77.83.38.0/23
85.209.120.0/23
Signature Algorithm: sha256WithRSAEncryption
41:73:7c:17:93:0a:56:f8:21:73:c6:b8:4f:73:5f:3b:83:69:
1d:9e:03:15:f9:df:35:d3:23:e6:fd:0e:d0:99:49:67:b4:f9:
fd:fe:65:0d:e8:c1:4c:88:c2:bf:df:8f:be:29:c5:90:73:01:
98:43:db:0e:f8:74:e3:04:af:e9:37:c5:87:a4:f7:79:bb:6a:
80:6d:0f:a1:0c:bc:96:71:5c:0d:b1:78:72:b3:80:6b:35:d0:
d0:80:d0:4b:cb:cb:b4:27:fb:d6:59:a8:42:47:2f:0a:22:6b:
52:8d:b5:12:23:15:56:e7:e7:81:1d:39:b6:8a:cb:d8:cf:34:
60:ab:a1:0b:bc:a0:f3:4c:a3:17:e2:1a:a1:3f:30:ae:21:5c:
71:83:31:80:c6:71:ea:ed:0c:e5:7b:64:87:12:89:16:09:b9:
11:7e:c6:ea:9a:b7:18:1c:83:77:68:1f:d6:5e:30:82:65:70:
6b:a7:95:ec:12:bb:55:06:c4:de:d8:15:f8:21:cc:ef:68:95:
10:32:c4:be:2c:70:c9:39:4d:a6:05:f8:ab:30:7a:f8:d7:7b:
09:94:94:5e:8f:97:60:95:da:8b:84:a1:c0:23:30:4a:72:df:
4a:e5:b3:19:ed:6e:11:ee:06:4d:af:15:f3:9b:0a:07:71:d1:
c7:74:ad:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:31 2024 by rpki-client on console-fra.rpki-client.org