Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/d7bf0f-691a-4cec-b5ce-7603e5dd5707/1/odgJIo6pEyptEwOYzXWgI1BkyHg.roa
File: odgJIo6pEyptEwOYzXWgI1BkyHg.roa (raw, json)
Hash identifier: EDLOF02G5KEekj/zpQ1mlQcqn7tDzgTcWRh+IcQ/Hm8=
Subject key identifier: A1:D8:09:22:8E:A9:13:2A:6D:13:03:98:CD:75:A0:23:50:64:C8:78
Certificate issuer: /CN=22ff5bcf739b0732fb1bcdb717ec717f6f1cb0e2
Certificate serial: 01856FD4FBF35C2851AC2D5E7A4399325333
Authority key identifier: 22:FF:5B:CF:73:9B:07:32:FB:1B:CD:B7:17:EC:71:7F:6F:1C:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Iv9bz3ObBzL7G823F-xxf28csOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/d7bf0f-691a-4cec-b5ce-7603e5dd5707/1/odgJIo6pEyptEwOYzXWgI1BkyHg.roa
Signing time: Mon 02 Jan 2023 00:15:07 +0000
ROA not before: Mon 02 Jan 2023 00:15:07 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48260
IP address blocks: 185.77.198.0/24 maxlen: 24
185.77.199.0/24 maxlen: 24
185.77.197.0/24 maxlen: 24
2a03:1980:d400::/40 maxlen: 40
2a03:1980:d200::/40 maxlen: 40
2a03:1980::/40 maxlen: 40
2a03:1981::/32 maxlen: 32
2a03:1980:d4ff::/48 maxlen: 48
2a03:1980:d1ff::/48 maxlen: 48
2a03:1980:d0ff::/48 maxlen: 48
2a03:1984::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:d4:fb:f3:5c:28:51:ac:2d:5e:7a:43:99:32:53:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22ff5bcf739b0732fb1bcdb717ec717f6f1cb0e2
Validity
Not Before: Jan 2 00:15:07 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a1d809228ea9132a6d130398cd75a0235064c878
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:0f:02:e3:93:f2:91:8a:4d:ec:08:e4:c3:35:
87:3e:f1:db:78:28:3b:ca:95:2d:c5:fc:0c:54:37:
5e:2f:f7:97:20:08:3d:b2:61:29:7d:bb:43:02:8a:
d2:2d:03:47:76:5a:60:2c:88:a3:7c:f7:ae:30:c7:
b5:eb:32:8b:3a:72:39:ed:8f:ac:5f:d2:eb:f5:1e:
9a:05:fd:31:54:dd:1c:0a:81:21:b3:7e:dc:11:56:
7f:c8:52:75:32:35:88:0e:aa:96:b8:2c:86:0d:6b:
96:a2:9c:f6:b9:9b:a1:f0:00:df:0d:7d:10:b4:1c:
03:24:43:1c:c7:f9:cb:dc:23:54:98:de:d8:e9:6d:
e7:ac:28:06:95:73:92:bc:13:40:d2:83:8e:4a:29:
85:d2:3f:6c:e3:95:19:2c:19:ae:7f:f3:7e:d5:80:
87:76:ee:7c:db:dd:24:df:78:e0:38:ed:ed:74:f6:
7f:0e:15:f9:2e:5c:21:58:30:5a:a9:e3:e9:d6:3f:
9e:66:4c:64:c3:03:87:2d:72:3a:e9:1e:59:1d:95:
6b:97:c0:48:78:ec:ff:20:e6:41:69:65:4b:ea:04:
74:8d:c1:57:d6:fd:d1:92:a4:cc:f0:a5:fe:67:ba:
4c:6a:48:93:20:2d:13:cc:c9:59:ab:7b:70:ee:4b:
d0:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:D8:09:22:8E:A9:13:2A:6D:13:03:98:CD:75:A0:23:50:64:C8:78
X509v3 Authority Key Identifier:
keyid:22:FF:5B:CF:73:9B:07:32:FB:1B:CD:B7:17:EC:71:7F:6F:1C:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Iv9bz3ObBzL7G823F-xxf28csOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/d7bf0f-691a-4cec-b5ce-7603e5dd5707/1/odgJIo6pEyptEwOYzXWgI1BkyHg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/d7bf0f-691a-4cec-b5ce-7603e5dd5707/1/Iv9bz3ObBzL7G823F-xxf28csOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.77.197.0-185.77.199.255
IPv6:
2a03:1980::/40
2a03:1980:d0ff::/48
2a03:1980:d1ff::-2a03:1980:d2ff:ffff:ffff:ffff:ffff:ffff
2a03:1980:d400::/40
2a03:1981::/32
2a03:1984::/32
Signature Algorithm: sha256WithRSAEncryption
2c:c7:8e:31:69:d1:70:d2:3a:25:fa:be:50:8c:1f:6a:4f:65:
52:cb:17:eb:7f:26:ba:d0:60:07:a1:91:44:63:63:38:82:d6:
1b:11:11:4f:fa:f3:8f:b9:6e:e4:38:86:0b:93:bb:84:9f:06:
55:57:9a:f6:d4:df:83:a7:55:27:fb:e4:b4:bd:10:10:14:ab:
4f:ee:97:f6:97:60:49:8d:50:36:f5:7b:0b:e5:8c:48:f6:f6:
1c:df:ed:c5:e5:2a:99:44:8e:9a:b1:cb:b9:84:8e:4e:e3:04:
fd:5f:56:97:f4:1a:2c:eb:b4:b2:a4:d4:91:6f:82:48:9d:e2:
49:cb:ea:1d:42:2a:f7:c7:95:44:d1:73:a5:72:b2:2a:67:e6:
a2:ff:f5:b4:cc:f6:44:ee:13:e8:ea:5d:21:a1:fe:ae:a6:27:
53:4f:f4:de:b7:c5:dc:6e:a4:e0:e7:1d:9b:e8:ea:02:51:38:
10:39:d0:46:39:8d:64:fb:0f:31:bc:13:ed:b8:c3:f5:57:f4:
c5:c3:e3:ba:2c:58:0e:9a:fe:b4:3c:03:14:65:eb:84:e9:af:
da:75:eb:db:a5:24:77:51:0f:45:0f:a5:7c:fe:db:56:6b:39:
83:a2:0b:a3:fc:bd:89:77:36:18:ab:c7:d0:ca:bf:da:53:a6:
57:c6:e6:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 17:13:53 2024 by rpki-client on console-ams.rpki-client.org