Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/As1vYfGxD1xWmpgSwAA4u1GJ1c4.roa
File: As1vYfGxD1xWmpgSwAA4u1GJ1c4.roa (raw, json)
Hash identifier: uNJ9B1j/I9NcXoccjDvPMZuM0PjNmD/bvYCQRo5KNqY=
Subject key identifier: 02:CD:6F:61:F1:B1:0F:5C:56:9A:98:12:C0:00:38:BB:51:89:D5:CE
Certificate issuer: /CN=279dbfdf4c20bdae8d6118566ece76444e46d171
Certificate serial: 0189451D8D80515D6364ECCFDABCF179F22A
Authority key identifier: 27:9D:BF:DF:4C:20:BD:AE:8D:61:18:56:6E:CE:76:44:4E:46:D1:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/As1vYfGxD1xWmpgSwAA4u1GJ1c4.roa
Signing time: Tue 11 Jul 2023 13:21:51 +0000
ROA not before: Tue 11 Jul 2023 13:21:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8866
IP address blocks: 87.119.104.0/23 maxlen: 23
87.119.100.0/22 maxlen: 22
87.119.127.0/24 maxlen: 24
87.119.64.0/21 maxlen: 21
77.77.164.0/22 maxlen: 22
77.77.167.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:45:1d:8d:80:51:5d:63:64:ec:cf:da:bc:f1:79:f2:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=279dbfdf4c20bdae8d6118566ece76444e46d171
Validity
Not Before: Jul 11 13:21:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=02cd6f61f1b10f5c569a9812c00038bb5189d5ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:c3:b2:ad:af:0b:38:b1:05:a2:5d:22:f0:c2:
5d:23:65:3e:52:52:48:38:5c:bd:84:4a:b0:97:5d:
91:66:ce:8d:cb:3f:3f:63:f7:bf:d4:e9:ea:d0:a5:
a3:e3:d6:6c:47:25:1f:fb:6d:30:9c:8d:e9:a2:91:
75:00:65:49:b4:1c:34:56:7c:59:76:4d:e5:1a:25:
0f:93:5b:9b:36:2d:fd:ba:ba:d0:67:22:6a:ac:9c:
97:28:f5:e3:18:93:39:5b:38:b4:bd:19:bb:45:e2:
25:51:a3:31:d1:a4:67:57:fe:14:ee:d8:c3:b7:f1:
be:d5:23:c7:c1:4c:05:dd:cd:0c:a0:9b:f0:b4:15:
23:d7:f2:ec:45:6f:39:a8:66:42:11:7f:11:4e:39:
cf:f1:c2:b0:c2:61:95:65:95:cf:58:c1:d1:e1:c5:
fa:8b:d5:53:3f:52:90:20:7c:ab:6e:d9:b7:6d:be:
9e:4f:e4:78:54:88:07:01:75:e1:c5:e3:6f:85:0c:
d0:5d:af:25:cb:75:30:4f:32:5b:93:7b:35:23:47:
09:99:3c:d2:ad:9d:5f:ab:3a:8d:c9:25:46:ad:f6:
2a:9f:68:64:db:83:fc:9f:f9:99:db:2b:27:05:32:
75:20:db:53:b7:9d:f5:08:0e:3b:4a:96:0e:da:4b:
a1:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:CD:6F:61:F1:B1:0F:5C:56:9A:98:12:C0:00:38:BB:51:89:D5:CE
X509v3 Authority Key Identifier:
keyid:27:9D:BF:DF:4C:20:BD:AE:8D:61:18:56:6E:CE:76:44:4E:46:D1:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/As1vYfGxD1xWmpgSwAA4u1GJ1c4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/J52_30wgva6NYRhWbs52RE5G0XE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.77.164.0/22
87.119.64.0/21
87.119.100.0-87.119.105.255
87.119.127.0/24
Signature Algorithm: sha256WithRSAEncryption
bc:53:9f:3a:0c:d0:24:1c:28:4f:94:5d:07:39:f8:a1:79:58:
3f:2a:9c:5e:cc:ca:9b:db:d9:d1:aa:32:c7:89:9e:e7:3f:c7:
f3:ff:f5:51:ad:49:23:46:d3:81:39:22:f4:80:cb:c2:08:3a:
a9:12:87:14:d6:b2:6e:cf:6e:9e:ff:aa:eb:55:34:67:4d:9e:
53:21:54:1d:ab:98:f0:c9:88:d7:bc:23:1d:60:aa:e3:7c:5f:
9c:53:d3:db:56:52:84:1b:06:a5:aa:09:11:9f:5a:19:a4:10:
3c:81:c6:5b:ea:c5:e2:a1:1a:80:fe:80:80:dc:64:37:84:a6:
c0:5c:16:6a:94:35:90:09:94:78:13:5b:ff:ba:05:1e:78:e7:
d5:15:d7:2e:39:9f:bc:ee:21:04:b4:a6:5e:20:fb:26:09:c5:
aa:c2:c1:81:fc:3e:82:6e:24:29:42:c1:9c:91:b5:f0:2f:63:
62:66:13:08:1f:34:84:63:d1:23:7c:3a:b9:b2:69:78:b1:c4:
05:2d:73:31:41:b8:e6:49:c7:15:e0:b5:fc:53:3f:c5:5f:51:
b9:32:4c:0d:a1:98:45:bd:a6:ab:ff:ae:53:08:79:38:12:24:
bd:22:af:65:94:84:b5:cc:9f:02:5f:b7:d0:bf:21:c2:cf:ea:
c5:c3:4b:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:12 2024 by rpki-client on console-fra.rpki-client.org