Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/03cce3-e620-4483-b08b-6d8fd330e9aa/1/iwZ5O7bI2VUoHeLX7NssZh30mnY.roa
File: iwZ5O7bI2VUoHeLX7NssZh30mnY.roa (raw, json)
Hash identifier: VcYoikFyrEiL836pl3aRWqWZr3VEWP0QaFntEs9NoFY=
Subject key identifier: 8B:06:79:3B:B6:C8:D9:55:28:1D:E2:D7:EC:DB:2C:66:1D:F4:9A:76
Certificate issuer: /CN=f8f73c5c0f3a106a8ba7dff3e35c816d1078dc71
Certificate serial: 01857271408EB6098F36159AAC956AA1849E
Authority key identifier: F8:F7:3C:5C:0F:3A:10:6A:8B:A7:DF:F3:E3:5C:81:6D:10:78:DC:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-Pc8XA86EGqLp9_z41yBbRB43HE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/03cce3-e620-4483-b08b-6d8fd330e9aa/1/iwZ5O7bI2VUoHeLX7NssZh30mnY.roa
Signing time: Mon 02 Jan 2023 12:25:02 +0000
ROA not before: Mon 02 Jan 2023 12:25:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198621
IP address blocks: 77.234.47.0/24 maxlen: 24
185.51.231.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:71:40:8e:b6:09:8f:36:15:9a:ac:95:6a:a1:84:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8f73c5c0f3a106a8ba7dff3e35c816d1078dc71
Validity
Not Before: Jan 2 12:25:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8b06793bb6c8d955281de2d7ecdb2c661df49a76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:4e:c2:a7:6b:c6:60:9f:b7:91:8e:42:93:d6:
f8:73:af:77:90:43:d1:49:c3:1d:38:64:ec:8c:b9:
88:ed:1e:59:5f:30:99:74:82:c0:97:36:6e:8e:9a:
ba:67:9e:07:2a:a2:f9:91:dd:a3:21:0b:ee:19:6b:
4a:b6:b3:d4:f2:e8:f7:b4:b8:5c:cc:6b:d0:7b:d3:
57:a6:3b:d2:3e:3b:67:6b:4e:b7:78:7c:aa:71:75:
b0:9b:b0:c1:35:73:74:26:6d:0c:77:c9:85:e1:f4:
bb:0d:4c:e5:5f:66:fb:0b:77:58:b8:7b:50:e3:20:
34:45:31:39:7f:01:26:49:39:21:43:64:f0:d8:93:
79:c4:59:55:07:2a:e6:f9:1b:ca:a1:6f:ec:cc:b3:
c0:04:13:13:53:b3:6c:4a:82:5a:cc:0b:62:a8:58:
ca:a4:df:3e:c4:3d:40:1c:0a:23:ac:4f:6e:67:25:
20:7d:cc:9c:82:fe:00:32:a6:4b:17:4c:38:5c:13:
82:2e:ef:8d:19:07:0b:f2:cb:79:17:1f:64:3d:92:
60:36:28:ff:a2:c4:38:dd:93:c3:dc:5b:61:fa:05:
ed:ba:2a:71:fd:28:05:69:15:a6:aa:9e:36:7f:a0:
62:65:95:14:7b:03:ff:29:21:7b:e4:c0:c4:16:91:
db:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:06:79:3B:B6:C8:D9:55:28:1D:E2:D7:EC:DB:2C:66:1D:F4:9A:76
X509v3 Authority Key Identifier:
keyid:F8:F7:3C:5C:0F:3A:10:6A:8B:A7:DF:F3:E3:5C:81:6D:10:78:DC:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-Pc8XA86EGqLp9_z41yBbRB43HE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/03cce3-e620-4483-b08b-6d8fd330e9aa/1/iwZ5O7bI2VUoHeLX7NssZh30mnY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/03cce3-e620-4483-b08b-6d8fd330e9aa/1/1-Pc8XA86EGqLp9_z41yBbRB43HE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.234.47.0/24
185.51.231.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:21:6a:d5:25:ac:35:f9:23:80:d8:a6:7c:75:8a:3e:46:31:
4a:4a:31:0f:e7:7f:e7:d9:5c:f9:fc:0c:4d:62:64:04:d6:75:
7f:73:61:fc:92:d7:0e:e2:8e:dd:2c:39:30:e5:43:5e:e3:49:
23:74:62:e6:67:e8:cf:4e:9f:01:86:8f:4d:1f:3b:72:90:75:
5b:2d:27:6b:24:20:3c:bb:8c:23:84:ca:0f:3e:cd:5b:e7:65:
e3:96:ae:83:d9:c5:55:09:55:86:50:bc:f5:ad:fe:03:ad:f3:
61:46:45:ec:0c:c8:e5:df:7f:cd:88:83:29:7e:f3:fb:2f:25:
2f:43:2c:92:39:c9:dd:58:f3:9a:fc:2a:00:86:18:aa:9f:3d:
81:13:81:1b:19:3f:98:80:c3:a5:c7:9b:55:82:6b:a7:6d:8a:
cb:ea:27:28:14:70:17:99:de:d2:13:dd:b4:73:e3:6e:5a:d7:
42:b9:e9:78:de:10:9c:ed:99:5c:3c:8c:b5:a6:e6:09:33:54:
fe:d9:5b:12:8b:4b:05:93:cb:1a:60:4e:82:1c:33:67:7f:fb:
b3:0b:b7:34:04:a1:11:be:24:7b:7c:51:0a:c7:29:24:6e:f4:
fe:32:d8:8c:b9:ed:61:84:4e:af:3c:a8:6c:ae:61:a3:42:54:
b1:99:2f:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:50:02 2024 by rpki-client on console-fra.rpki-client.org