Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/UIVNYLSD3pHk6G9fqd7LKRrnT5Q.roa
File: UIVNYLSD3pHk6G9fqd7LKRrnT5Q.roa (raw, json)
Hash identifier: ogb+apAB4wn+6bJakiP+rf8YKGEbbeCozMdU9i/EQ9w=
Subject key identifier: 50:85:4D:60:B4:83:DE:91:E4:E8:6F:5F:A9:DE:CB:29:1A:E7:4F:94
Certificate issuer: /CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Certificate serial: 018CC56E0C1DD3E4FD7E26B66C50985E034D
Authority key identifier: 6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/UIVNYLSD3pHk6G9fqd7LKRrnT5Q.roa
Signing time: Mon 01 Jan 2024 14:29:32 +0000
ROA not before: Mon 01 Jan 2024 14:29:32 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7029
IP address blocks: 77.105.22.0/24 maxlen: 24
178.219.14.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 17 Mar 2024 14:01:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:0c:1d:d3:e4:fd:7e:26:b6:6c:50:98:5e:03:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Validity
Not Before: Jan 1 14:29:32 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=50854d60b483de91e4e86f5fa9decb291ae74f94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:d8:28:5c:71:69:f7:4b:45:0d:f9:ce:95:56:
45:53:3b:c6:48:2d:1a:4f:6e:3c:59:47:e3:4b:5f:
5e:10:16:a5:2d:4c:4c:51:73:a2:ed:c1:e0:6a:6c:
8b:b1:d8:3b:3f:0b:ee:5a:98:7c:9a:78:d0:29:e3:
98:12:5d:d8:3c:17:73:c2:d6:e6:32:d0:73:77:f8:
20:1f:30:8e:01:18:a8:03:82:90:34:ea:ef:ed:cd:
24:d2:3e:71:fe:ca:b0:67:36:a5:44:2f:04:0f:cb:
a2:28:6f:20:ae:2e:4b:b2:57:69:43:67:7c:06:1c:
a7:b7:b7:2d:58:4b:33:40:f6:63:c0:65:19:0f:56:
e8:09:f0:1d:ad:1a:3c:d1:d3:e6:32:f6:9e:ee:f9:
d7:60:75:f8:eb:b0:6a:3b:bf:d9:3a:61:62:81:3d:
7e:ff:33:94:12:6b:92:7e:6b:ee:2f:1f:6a:32:a3:
5d:f7:b3:2a:5a:db:89:ad:a7:56:e3:ba:39:cc:ea:
a6:4b:a7:83:93:7d:b9:24:6a:82:fa:ba:12:fa:48:
76:99:c9:3c:1c:f1:11:dc:65:60:b2:b4:bb:24:11:
23:da:9f:bf:b7:15:e7:0c:ab:c1:3b:39:66:7a:9f:
22:8b:f3:99:78:55:c2:96:0c:bd:4a:aa:34:c9:05:
0f:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:85:4D:60:B4:83:DE:91:E4:E8:6F:5F:A9:DE:CB:29:1A:E7:4F:94
X509v3 Authority Key Identifier:
keyid:6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/UIVNYLSD3pHk6G9fqd7LKRrnT5Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.105.22.0/24
178.219.14.0/24
Signature Algorithm: sha256WithRSAEncryption
80:82:03:17:0f:18:79:71:0f:99:bf:cc:cb:2b:03:84:40:e7:
e2:1a:97:ac:a2:34:4a:b3:a7:2a:a1:78:d3:94:e9:a3:e5:c0:
a7:e6:f5:10:fa:23:93:52:20:cf:96:f4:c5:45:c3:c3:6b:e0:
19:60:4b:1c:77:a2:7a:97:65:c9:79:c6:89:99:50:89:b1:b7:
ca:37:85:9a:d6:95:9e:ba:04:61:78:a3:e7:de:db:98:11:d7:
56:b8:aa:6c:9c:c0:6d:bb:b4:6a:c7:c9:ac:f3:d3:ff:86:16:
90:42:64:9a:c8:bb:4a:8a:ba:42:f1:e8:46:2f:c1:74:54:8c:
0b:6a:b2:06:ed:fe:a6:dd:8a:aa:f8:5f:9b:07:aa:bf:d7:86:
c1:f7:62:06:fd:02:85:bb:de:9d:dd:6b:74:1f:db:cc:69:00:
ed:d3:b8:99:c2:08:20:6a:df:d1:ea:ca:7d:b4:ea:a2:be:ae:
07:e5:76:4e:20:d1:ec:4f:04:6b:b6:88:9f:23:a8:d6:47:a5:
cc:6c:7b:77:01:1f:43:2e:22:4a:1d:17:72:50:3a:9a:ca:6d:
e4:6c:a2:55:ba:a0:82:ce:ca:3d:dc:1f:00:a2:29:b3:60:b5:
37:19:b1:9f:d4:15:40:b5:1f:28:26:2b:77:d0:05:fd:86:a7:
1b:bb:83:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 17 15:56:51 2024 by rpki-client on console-ams.rpki-client.org