Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/f01f35-2cca-4e5a-828a-6bffcb7c0f0a/1/j-gV_QPRis7A2OBQ2oitC5n5r2g.roa
File: j-gV_QPRis7A2OBQ2oitC5n5r2g.roa (raw, json)
Hash identifier: hMz1UbgxVrhh2RNDw547pL2taDK13A2EeIsd1Q3MO00=
Subject key identifier: 8F:E8:15:FD:03:D1:8A:CE:C0:D8:E0:50:DA:88:AD:0B:99:F9:AF:68
Certificate issuer: /CN=d504e641e55a48aee0141e2c0d26227102caa6d4
Certificate serial: 01856CCB04B34E8DBB200E9425D4F6324A97
Authority key identifier: D5:04:E6:41:E5:5A:48:AE:E0:14:1E:2C:0D:26:22:71:02:CA:A6:D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1QTmQeVaSK7gFB4sDSYicQLKptQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/f01f35-2cca-4e5a-828a-6bffcb7c0f0a/1/j-gV_QPRis7A2OBQ2oitC5n5r2g.roa
Signing time: Sun 01 Jan 2023 10:05:22 +0000
ROA not before: Sun 01 Jan 2023 10:05:22 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207967
IP address blocks: 77.232.132.0/22 maxlen: 22
77.232.128.0/22 maxlen: 22
77.232.136.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 02 May 2023 11:24:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:cb:04:b3:4e:8d:bb:20:0e:94:25:d4:f6:32:4a:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d504e641e55a48aee0141e2c0d26227102caa6d4
Validity
Not Before: Jan 1 10:05:22 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8fe815fd03d18acec0d8e050da88ad0b99f9af68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:7d:77:1c:a4:95:4b:55:e0:57:cf:12:c4:0a:
d4:76:bc:2d:78:e9:75:57:4a:7e:26:18:27:8c:99:
42:38:67:47:20:05:e2:bc:59:26:7a:29:8b:ba:9f:
c8:08:c5:d5:2d:67:d6:42:e5:be:84:d2:20:52:8b:
35:f5:c3:85:de:38:99:ae:17:ca:ac:09:34:f5:12:
10:09:0b:f0:7f:13:f9:57:86:0b:19:e7:ed:ae:ca:
86:89:1c:67:84:8e:fc:ae:a5:38:2c:e7:5a:fe:e8:
09:b9:1d:0b:78:24:68:bb:38:b4:13:d2:3a:8e:8e:
e9:01:b0:2e:5b:92:4f:20:cd:57:d6:fe:d4:4c:fe:
b0:52:28:fa:a8:d4:eb:49:67:74:bf:23:63:75:10:
5d:c0:e6:4a:e0:d1:1f:15:32:7d:ce:2f:bb:61:6d:
9e:40:d3:9f:bd:11:38:44:96:89:7d:06:fb:fa:71:
00:c0:ad:6b:66:f6:e4:a2:6f:c2:53:26:68:e7:fb:
33:80:ef:60:43:7e:38:31:2b:1a:15:05:08:cd:5b:
6f:99:b7:1d:b3:56:d9:a9:de:3d:a3:e0:dd:6d:a1:
06:35:b5:a7:c1:ee:d6:cd:4f:37:d1:43:4e:df:2e:
85:4a:05:02:03:e0:7a:bf:6e:0b:c6:25:dd:a0:fe:
bc:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:E8:15:FD:03:D1:8A:CE:C0:D8:E0:50:DA:88:AD:0B:99:F9:AF:68
X509v3 Authority Key Identifier:
keyid:D5:04:E6:41:E5:5A:48:AE:E0:14:1E:2C:0D:26:22:71:02:CA:A6:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1QTmQeVaSK7gFB4sDSYicQLKptQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/f01f35-2cca-4e5a-828a-6bffcb7c0f0a/1/j-gV_QPRis7A2OBQ2oitC5n5r2g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/f01f35-2cca-4e5a-828a-6bffcb7c0f0a/1/1QTmQeVaSK7gFB4sDSYicQLKptQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.232.128.0-77.232.139.255
Signature Algorithm: sha256WithRSAEncryption
df:31:f2:e6:e6:fa:b3:23:31:de:ea:f0:fd:eb:11:ed:de:24:
b5:64:21:3b:71:7e:c8:6e:cb:a7:cf:b3:bc:1e:b1:21:39:81:
20:cb:54:50:29:0b:52:81:c0:c6:63:0b:44:19:7d:7f:bd:ef:
7e:75:3f:20:cd:6f:1b:61:95:0c:23:e7:9c:f3:d6:9c:7a:52:
64:4c:d5:a3:75:ca:bd:2e:9e:16:e3:7f:6e:2c:49:08:44:91:
78:47:b5:46:b2:f5:35:90:11:f0:79:48:c9:cb:75:de:ac:a0:
2f:73:8e:48:c0:10:5f:12:7d:fb:a9:e7:c8:7f:15:58:fa:1e:
81:68:c2:a2:9c:38:c4:39:7f:f2:f8:5c:e3:1c:36:b1:50:a4:
e0:73:49:ce:fd:e3:2d:28:d8:3e:11:22:6b:12:35:0d:2e:e6:
28:25:ce:32:fa:02:7f:b7:2b:5a:78:c5:91:6e:14:43:1f:3e:
85:e9:55:56:4d:91:ae:d4:37:f6:53:be:98:93:3b:a7:b1:15:
01:5d:08:c2:b3:6b:6a:3e:e4:f0:55:14:eb:49:0f:af:35:7c:
f9:7d:aa:d2:96:19:14:d6:8d:2f:8f:e5:d7:41:6e:ac:7c:e8:
5a:3b:02:2b:4e:d4:e9:12:4c:97:7f:55:68:38:ff:bc:e7:01:
cd:55:6b:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:24 2024 by rpki-client on console-ams.rpki-client.org