Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/1Thoz90MgFmC47j5Lh0astJWXRg.roa
File: 1Thoz90MgFmC47j5Lh0astJWXRg.roa (raw, json)
Hash identifier: iVWd59AN1YT3aLd8Unxv2dUVA4XkubavKxwy39M+Ups=
Subject key identifier: D5:38:68:CF:DD:0C:80:59:82:E3:B8:F9:2E:1D:1A:B2:D2:56:5D:18
Certificate issuer: /CN=279dbfdf4c20bdae8d6118566ece76444e46d171
Certificate serial: 0185E8A4D19931B45D3F87AE670A5DE48533
Authority key identifier: 27:9D:BF:DF:4C:20:BD:AE:8D:61:18:56:6E:CE:76:44:4E:46:D1:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/1Thoz90MgFmC47j5Lh0astJWXRg.roa
Signing time: Wed 25 Jan 2023 11:16:33 +0000
ROA not before: Wed 25 Jan 2023 11:16:33 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47874
IP address blocks: 77.77.163.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:e8:a4:d1:99:31:b4:5d:3f:87:ae:67:0a:5d:e4:85:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=279dbfdf4c20bdae8d6118566ece76444e46d171
Validity
Not Before: Jan 25 11:16:33 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d53868cfdd0c805982e3b8f92e1d1ab2d2565d18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:ca:18:1a:33:fc:3a:0f:a5:01:05:31:68:c1:
29:b5:e3:4d:93:1f:aa:4c:ec:d4:c4:cf:e3:c8:c6:
0f:ea:34:a4:51:6e:dd:47:ec:e1:9f:61:67:ec:a3:
07:0a:b4:74:dc:e0:e7:62:a6:79:90:99:1b:fe:91:
8c:f7:9e:bb:6a:74:c7:a9:c7:01:39:37:ed:71:49:
ef:45:d7:d9:b8:e7:e6:4e:b6:e2:5e:74:1a:8c:b0:
51:06:ee:12:a7:0e:97:9e:f3:87:25:56:f5:25:a0:
c6:3e:b9:c3:e6:11:5f:52:80:11:a4:5e:cd:21:e7:
2a:93:26:eb:df:ef:53:19:74:3a:08:90:8e:ac:73:
73:87:ec:7f:51:7f:ae:d6:67:0c:3b:2f:46:ab:e9:
1b:97:44:09:db:4b:5f:f3:71:72:95:0c:03:cb:a2:
97:f6:bb:50:49:4e:02:f9:6c:05:dc:43:5d:e1:d9:
ab:ca:bc:ac:6d:f7:08:e5:d2:e4:54:a2:fe:94:26:
b6:69:55:97:5d:6b:1b:2b:f2:e8:51:6e:63:29:7b:
51:db:29:e4:35:c7:aa:5a:07:ee:be:0b:00:ab:b0:
38:d7:cf:7f:29:31:c3:73:fb:8e:f2:ab:b8:fe:6b:
bc:f0:c9:2c:5b:b9:1e:c6:4e:41:a7:c2:0e:71:2d:
5f:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:38:68:CF:DD:0C:80:59:82:E3:B8:F9:2E:1D:1A:B2:D2:56:5D:18
X509v3 Authority Key Identifier:
keyid:27:9D:BF:DF:4C:20:BD:AE:8D:61:18:56:6E:CE:76:44:4E:46:D1:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/1Thoz90MgFmC47j5Lh0astJWXRg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/J52_30wgva6NYRhWbs52RE5G0XE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.77.163.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:f6:d8:24:a9:27:cf:82:59:93:2f:87:ba:81:23:4b:be:b6:
51:01:bc:16:3b:57:7a:29:a5:c9:8e:c0:eb:2d:6c:63:28:90:
9c:c1:c8:2e:cb:aa:10:7b:7b:11:b5:8e:a7:7e:27:2c:24:b3:
33:c3:a2:f4:e1:99:6d:95:d6:50:32:7a:a7:17:cd:ff:08:81:
86:ed:c2:04:9d:ab:2a:fe:7e:46:17:9a:08:cc:4e:9c:15:a3:
40:cb:f9:7b:be:5a:2b:a3:15:2b:2c:53:67:17:44:d6:b4:cb:
90:c7:53:b5:82:33:e2:94:a8:91:f6:a6:60:ea:67:d0:70:02:
1c:f4:e3:39:fe:43:78:b7:99:4b:cb:e2:24:49:7d:cd:04:7b:
12:5e:28:19:0b:00:36:2d:7a:74:0e:ac:54:8d:e9:f8:6f:f2:
8a:fd:6c:38:ba:47:3d:ab:83:62:53:d6:52:82:00:fa:00:12:
95:a2:0a:99:38:9b:bc:7d:c2:b3:40:e9:ab:17:83:18:eb:f5:
67:38:63:8d:19:66:c9:e0:8a:ab:2a:a9:b9:18:65:c2:dc:d3:
d4:5d:bf:dd:ab:30:34:9e:09:41:9c:a9:85:75:eb:3e:eb:c3:
55:06:07:0d:62:fd:3d:b0:6f:2e:93:74:20:9b:19:99:60:83:
bf:ca:ff:f6
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYXopNGZMbRdP4euZwpd5IUzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI3OWRiZmRmNGMyMGJkYWU4ZDYxMTg1NjZlY2U3NjQ0NGU0
NmQxNzEwHhcNMjMwMTI1MTExNjMzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkNTM4NjhjZmRkMGM4MDU5ODJlM2I4ZjkyZTFkMWFiMmQyNTY1ZDE4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAosoYGjP8Og+lAQUxaMEpteNNkx+q
TOzUxM/jyMYP6jSkUW7dR+zhn2Fn7KMHCrR03ODnYqZ5kJkb/pGM9567anTHqccB
OTftcUnvRdfZuOfmTrbiXnQajLBRBu4Spw6XnvOHJVb1JaDGPrnD5hFfUoARpF7N
Iecqkybr3+9TGXQ6CJCOrHNzh+x/UX+u1mcMOy9Gq+kbl0QJ20tf83FylQwDy6KX
9rtQSU4C+WwF3ENd4dmryrysbfcI5dLkVKL+lCa2aVWXXWsbK/LoUW5jKXtR2ynk
NceqWgfuvgsAq7A4189/KTHDc/uO8qu4/mu88MksW7kexk5Bp8IOcS1fxQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNU4aM/dDIBZguO4+S4dGrLSVl0YMB8GA1UdIwQY
MBaAFCedv99MIL2ujWEYVm7OdkRORtFxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSjUyXzMwd2d2YTZOWVJoV2JzNTJSRTVHMFhFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS85ZDU0YTUtMDEzNS00YjE4LTk2MWEt
MGNmMTA5M2Q0NTQ4LzEvMVRob3o5ME1nRm1DNDdqNUxoMGFzdEpXWFJnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNS85ZDU0YTUtMDEzNS00YjE4LTk2MWEtMGNmMTA5M2Q0NTQ4
LzEvSjUyXzMwd2d2YTZOWVJoV2JzNTJSRTVHMFhFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQATU2jMA0G
CSqGSIb3DQEBCwUAA4IBAQCr9tgkqSfPglmTL4e6gSNLvrZRAbwWO1d6KaXJjsDr
LWxjKJCcwcguy6oQe3sRtY6nficsJLMzw6L04ZltldZQMnqnF83/CIGG7cIEnasq
/n5GF5oIzE6cFaNAy/l7vloroxUrLFNnF0TWtMuQx1O1gjPilKiR9qZg6mfQcAIc
9OM5/kN4t5lLy+IkSX3NBHsSXigZCwA2LXp0DqxUjen4b/KK/Ww4ukc9q4NiU9ZS
ggD6ABKVogqZOJu8fcKzQOmrF4MY6/VnOGONGWbJ4IqrKqm5GGXC3NPUXb/dqzA0
nglBnKmFdes+68NVBgcNYv09sG8uk3QgmxmZYIO/yv/2
-----END CERTIFICATE-----
Generated at Tue Jan 2 04:22:23 2024 by rpki-client on console-fra.rpki-client.org