Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/i7q3PqEp9urgjvDBRnzXmk1wcrY.roa
File: i7q3PqEp9urgjvDBRnzXmk1wcrY.roa (raw, json)
Hash identifier: bLi/P39yki1sRdo8jDTDoOEMY+hkocQlLXlRHWVIgtE=
Subject key identifier: 8B:BA:B7:3E:A1:29:F6:EA:E0:8E:F0:C1:46:7C:D7:9A:4D:70:72:B6
Certificate issuer: /CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Certificate serial: 018571D7E573A6A5B8DAAD310873F384DE1A
Authority key identifier: 6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/i7q3PqEp9urgjvDBRnzXmk1wcrY.roa
Signing time: Mon 02 Jan 2023 09:37:32 +0000
ROA not before: Mon 02 Jan 2023 09:37:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 400039
IP address blocks: 188.255.129.0/24 maxlen: 24
77.105.6.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:d7:e5:73:a6:a5:b8:da:ad:31:08:73:f3:84:de:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Validity
Not Before: Jan 2 09:37:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8bbab73ea129f6eae08ef0c1467cd79a4d7072b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:ba:65:10:9a:2b:5a:9f:69:d8:17:c1:27:5b:
d6:fc:0e:49:08:7f:1c:a2:9a:5a:63:f1:c9:e8:d9:
77:9c:be:f0:70:0e:61:50:21:4e:24:31:73:31:b6:
47:71:30:82:f0:c7:d7:80:b3:b3:c4:7c:d2:a7:9f:
50:87:47:cf:88:98:48:a9:0b:dd:71:ca:72:f7:4b:
b7:c7:85:e9:a3:d7:dc:f2:78:ec:05:61:19:f4:4f:
2b:00:16:09:e4:2d:83:ca:ea:12:92:51:74:a6:70:
b0:af:5a:4e:dc:4b:17:78:bd:63:ee:29:8a:be:96:
af:b1:41:a7:47:72:93:b7:db:57:b4:ee:05:ed:e9:
0f:2b:40:1e:ad:07:ae:fa:d5:8a:8c:5b:18:5d:d8:
46:cb:de:38:56:e2:a4:d3:c5:bf:a9:ff:01:73:dd:
77:ec:00:1f:58:3a:ba:9b:32:4c:95:ba:12:79:62:
36:79:21:36:85:4e:33:ed:27:56:ea:a7:7a:86:b4:
2e:cd:69:48:4e:1f:65:22:26:83:50:39:20:fc:53:
48:86:ed:da:59:10:8e:4d:9d:3e:a2:d4:4d:8d:20:
90:f8:e5:eb:5f:33:ee:73:a3:c9:12:15:98:c5:ce:
ba:da:20:49:a7:a0:bb:f1:2c:2f:b3:d5:63:a2:a3:
92:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:BA:B7:3E:A1:29:F6:EA:E0:8E:F0:C1:46:7C:D7:9A:4D:70:72:B6
X509v3 Authority Key Identifier:
keyid:6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/i7q3PqEp9urgjvDBRnzXmk1wcrY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.105.6.0/24
188.255.129.0/24
Signature Algorithm: sha256WithRSAEncryption
11:60:66:b0:87:8b:8a:99:70:c0:8b:c4:38:c5:8d:4c:e2:57:
25:70:e1:24:80:3b:99:4b:88:43:92:e7:b1:f8:ae:b3:d1:ca:
3b:23:e2:e9:ef:fe:a9:08:a8:ef:95:a4:a8:c8:a0:eb:05:9a:
31:e2:e5:34:24:fd:c4:32:2c:6c:6e:07:ae:4c:39:76:5d:e3:
4d:35:33:09:5b:a5:7b:0a:c1:d9:e6:b3:76:6f:df:90:8e:75:
8c:d4:29:e7:7d:58:0c:4b:3f:6c:ca:8b:c7:9f:5a:0a:0b:59:
e5:e3:c0:ac:0a:8c:ae:d5:dc:49:c9:09:5e:0a:f5:16:69:ed:
03:ac:91:5f:e0:b0:6e:e1:1c:93:ba:39:82:5b:11:db:2d:8b:
88:58:fc:a4:cc:08:b2:86:bd:6f:91:89:88:23:89:34:8a:e0:
64:35:86:fb:b3:04:09:0c:d2:f5:88:f5:a6:fe:58:a9:9a:a0:
37:d4:19:72:58:1c:a9:d9:2a:9d:e2:72:07:9c:ac:e5:d3:b7:
93:6d:e4:1a:59:8b:96:b5:36:bb:d4:82:2a:01:24:a8:07:83:
d4:07:01:2e:f2:3d:6c:d7:e9:32:3c:f7:36:d2:80:ee:ca:c1:
40:27:3c:6f:45:b1:93:48:d0:ec:41:5c:1a:3c:97:4d:e3:fc:
2a:16:90:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 17:13:57 2024 by rpki-client on console-ams.rpki-client.org