Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/vq22dlLiLCXlGTvYw57fKnVt2Do.roa
File: vq22dlLiLCXlGTvYw57fKnVt2Do.roa (raw, json)
Hash identifier: TNyvPwXWUbVJBA8aiqhXLOzDel5u5GQCO2przzx3N2Y=
Subject key identifier: BE:AD:B6:76:52:E2:2C:25:E5:19:3B:D8:C3:9E:DF:2A:75:6D:D8:3A
Certificate issuer: /CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Certificate serial: 01922F25561FE59296EC755DD1D65B26D8E7
Authority key identifier: 4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/vq22dlLiLCXlGTvYw57fKnVt2Do.roa
Signing time: Thu 26 Sep 2024 16:23:48 +0000
ROA not before: Thu 26 Sep 2024 16:23:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215133
IP address blocks: 77.72.81.0/24 maxlen: 24
146.19.93.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 03 Oct 2024 20:56:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:2f:25:56:1f:e5:92:96:ec:75:5d:d1:d6:5b:26:d8:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Validity
Not Before: Sep 26 16:23:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=beadb67652e22c25e5193bd8c39edf2a756dd83a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:95:9a:1c:54:91:db:3f:c7:1b:44:90:73:b2:
75:67:09:ad:fd:74:6d:bb:77:0c:1b:a4:65:3e:90:
ec:8b:15:bf:1c:04:c0:ed:18:6b:eb:a3:db:62:52:
05:79:fb:d5:43:a1:c6:44:bf:76:ce:c0:12:30:c3:
f2:bf:0b:ad:07:52:a8:bd:01:5b:22:3f:a1:b2:65:
4d:0b:57:9f:51:44:8d:11:d7:e4:f8:85:e5:4d:1b:
f1:a2:3e:05:61:1f:2a:f6:5e:eb:b1:9e:f8:85:b3:
db:64:f1:b8:14:ea:9d:a3:dd:42:fe:47:6b:0c:d1:
1a:e7:33:bb:21:76:a0:c7:b3:c1:68:36:24:80:71:
b9:f3:7c:50:fd:69:e6:ee:70:c6:ed:05:96:5c:d4:
87:c6:63:cc:39:8e:fc:23:31:0a:70:88:a2:ec:84:
62:2d:ed:c3:71:ce:75:c8:5d:17:ea:a4:9e:75:72:
f7:99:7e:ed:bc:cf:c1:26:6b:0a:52:b7:90:3c:22:
43:a6:25:f2:77:86:2c:e4:6c:2d:63:c5:d5:61:79:
de:86:a0:46:ae:5b:d8:be:67:d0:6d:8c:32:31:18:
37:b7:72:35:63:a7:09:3d:5f:6a:db:e9:14:bc:29:
5e:75:27:ec:af:9c:03:af:3e:bb:c8:40:ff:99:60:
fd:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:AD:B6:76:52:E2:2C:25:E5:19:3B:D8:C3:9E:DF:2A:75:6D:D8:3A
X509v3 Authority Key Identifier:
keyid:4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/vq22dlLiLCXlGTvYw57fKnVt2Do.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/TxQRLQXp2HYUnSd41I7aqjJNsKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.72.81.0/24
146.19.93.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:3c:6e:6e:34:10:c1:8c:7c:80:62:5b:82:84:db:a1:ec:d9:
a6:a2:be:ca:77:47:24:8d:af:19:5e:f3:3f:16:48:df:b2:2d:
34:0d:01:ec:00:76:d1:73:32:d1:a5:28:e8:2c:f0:06:c6:a4:
06:b6:bb:f2:69:d4:a6:e5:63:79:42:4f:16:92:73:70:84:c0:
69:0e:4f:4e:f7:f3:f3:2f:49:a8:a5:a3:14:60:b7:0f:fe:a9:
88:c8:f6:6d:0f:7a:51:4a:7b:28:28:ba:98:77:1c:1e:39:1b:
98:0f:77:10:24:3d:39:4f:11:60:ea:79:ce:ab:29:ad:9f:5f:
43:38:92:47:c3:2e:66:dc:44:b1:82:07:a1:08:68:0e:8c:bb:
03:c7:48:2a:bd:d7:5d:27:fb:ac:63:28:43:65:41:93:ef:c3:
4c:cf:56:70:02:27:df:9e:72:04:47:c5:ac:96:d7:25:4d:05:
5e:ec:06:e2:94:ad:de:fe:59:4a:a8:8b:bd:67:c4:08:4c:3d:
e3:0e:28:11:45:39:30:64:0f:7f:da:77:5e:be:0b:6b:6a:ed:
1b:aa:05:87:3b:41:b0:fa:0a:31:a2:ec:c2:34:4a:0f:2d:01:
6e:1a:fc:e4:26:e8:1b:24:67:f8:e5:b8:41:00:e6:35:6c:44:
71:53:4c:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:09:16 2025 by rpki-client