Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/uX9pLv78mAtKr47GMC5YXpjTswI.roa
File: uX9pLv78mAtKr47GMC5YXpjTswI.roa (raw, json)
Hash identifier: qe/w7EEdemjRmMnTSDRw9+u1HcQnkNtsgY0IT8DGu5o=
Subject key identifier: B9:7F:69:2E:FE:FC:98:0B:4A:AF:8E:C6:30:2E:58:5E:98:D3:B3:02
Certificate issuer: /CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Certificate serial: 0190898FC53F7E2DC6215B42A6008DEABF01
Authority key identifier: 4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/uX9pLv78mAtKr47GMC5YXpjTswI.roa
Signing time: Sat 06 Jul 2024 19:40:19 +0000
ROA not before: Sat 06 Jul 2024 19:40:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215133
IP address blocks: 77.72.81.0/24 maxlen: 24
146.19.93.0/24 maxlen: 24
212.46.37.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 08 Jul 2024 18:24:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:89:8f:c5:3f:7e:2d:c6:21:5b:42:a6:00:8d:ea:bf:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Validity
Not Before: Jul 6 19:40:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b97f692efefc980b4aaf8ec6302e585e98d3b302
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:61:e6:21:ba:c9:31:92:56:6d:94:1d:9b:28:
64:52:04:de:0d:6a:c8:c0:0c:c0:55:77:ba:cb:54:
a5:28:c7:22:40:62:90:f2:6d:df:c4:f2:4a:f5:7b:
79:86:32:ff:36:60:9b:b3:37:17:60:52:5a:ce:58:
52:c3:92:8f:63:df:11:17:0d:15:bc:49:eb:42:e3:
e9:43:dd:ac:93:f4:1c:04:86:75:3a:7a:5c:2d:55:
d4:f4:8d:6b:32:17:fc:c0:7a:9c:78:10:76:7f:56:
a3:dd:1b:04:d7:38:fc:df:5a:d5:bd:82:d0:6e:07:
dc:22:d4:38:70:65:5f:e0:b7:44:bb:4c:29:60:af:
5b:a4:b4:f3:fd:8f:7d:a9:49:4a:f3:13:c4:7c:09:
c9:eb:0d:f0:19:3b:3c:25:81:a4:ce:8c:2a:63:9d:
45:77:c5:04:e3:eb:81:b8:e3:ab:76:6d:0f:38:36:
79:24:9d:6b:67:52:07:71:86:bd:92:6c:50:78:90:
b9:a4:aa:76:26:f9:c9:71:c8:26:f6:ff:36:9a:56:
13:3c:b1:df:92:95:81:88:66:f0:0f:e8:5d:0e:82:
d0:ff:59:5e:ff:3c:d7:ef:a6:f8:ce:c6:83:d9:aa:
c6:9b:7c:b6:6a:0a:ea:02:eb:3a:b4:6b:8d:5d:80:
eb:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:7F:69:2E:FE:FC:98:0B:4A:AF:8E:C6:30:2E:58:5E:98:D3:B3:02
X509v3 Authority Key Identifier:
keyid:4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/uX9pLv78mAtKr47GMC5YXpjTswI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/TxQRLQXp2HYUnSd41I7aqjJNsKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.72.81.0/24
146.19.93.0/24
212.46.37.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:30:c3:da:bf:f1:a7:0d:63:02:cd:1d:7b:1c:5e:e1:e0:17:
5d:c1:00:c1:f0:3c:d1:db:0b:21:62:f5:08:f9:57:c7:69:89:
b0:4b:b2:99:c7:06:5c:3a:31:88:43:81:c7:68:c2:c1:10:e4:
8b:5d:68:e4:04:6e:1a:b8:3a:a9:ae:4f:65:18:05:90:09:8f:
84:14:27:de:3b:d8:e8:81:28:76:7b:48:b7:35:11:22:3a:2d:
9f:d2:c7:a7:4e:51:94:9a:fe:4f:b2:21:ad:d0:92:da:74:33:
1e:d3:4c:04:71:46:a1:91:e5:11:23:8b:85:76:af:b0:cf:f5:
fd:73:a5:60:8a:a2:fe:f9:32:24:56:a9:03:9a:a3:9a:48:de:
61:f3:df:c3:e0:66:86:3e:1a:ca:76:5b:c2:b3:a5:14:d6:ac:
2e:89:c1:d2:32:48:6b:a5:2a:50:5c:7d:d2:70:77:65:8c:cf:
5b:7f:4c:72:c0:b5:49:b3:49:bd:0c:9c:32:7a:a3:38:c9:65:
ca:bc:2a:cc:02:ed:1b:6f:02:4d:bb:1e:10:f0:56:30:c9:7f:
b5:61:70:a2:f7:65:9f:23:68:8b:dc:a1:22:ea:6f:77:36:01:
dc:77:d9:68:1e:2a:7e:91:f3:7f:00:8c:14:f3:49:1f:d4:5b:
08:0d:4d:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 8 19:31:06 2024 by rpki-client on console-fra.rpki-client.org