Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/dbd951-259b-4759-a519-9c5e1deb2c33/1/Y1VPbDMP9H0euEwLi4GlkkMao54.roa
File: Y1VPbDMP9H0euEwLi4GlkkMao54.roa (raw, json)
Hash identifier: FyncSuxI77USD5mOwj/GaFv2vVFDuKvvhqPizw+tzRA=
Subject key identifier: 63:55:4F:6C:33:0F:F4:7D:1E:B8:4C:0B:8B:81:A5:92:43:1A:A3:9E
Certificate issuer: /CN=2400b20606314858a7b3f2a975e8e9d919ec753a
Certificate serial: 01856F8B86AED0F5602A2072945A196D790C
Authority key identifier: 24:00:B2:06:06:31:48:58:A7:B3:F2:A9:75:E8:E9:D9:19:EC:75:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JACyBgYxSFins_Kpdejp2RnsdTo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/dbd951-259b-4759-a519-9c5e1deb2c33/1/Y1VPbDMP9H0euEwLi4GlkkMao54.roa
Signing time: Sun 01 Jan 2023 22:54:53 +0000
ROA not before: Sun 01 Jan 2023 22:54:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43578
IP address blocks: 185.74.81.0/24 maxlen: 24
185.74.80.0/24 maxlen: 24
77.246.186.96/27 maxlen: 27
77.246.190.160/27 maxlen: 27
77.246.187.0/24 maxlen: 24
77.246.188.0/24 maxlen: 24
77.246.190.0/24 maxlen: 24
77.246.191.0/24 maxlen: 24
77.246.182.128/29 maxlen: 29
77.246.178.0/24 maxlen: 24
77.246.179.0/24 maxlen: 24
77.246.176.0/24 maxlen: 24
77.246.177.0/24 maxlen: 24
77.246.182.0/24 maxlen: 24
77.246.180.0/24 maxlen: 24
77.246.181.0/24 maxlen: 24
77.246.185.0/24 maxlen: 24
77.246.186.0/24 maxlen: 24
77.246.183.0/24 maxlen: 24
2a05:4700:101::/48 maxlen: 48
2a05:4700:100::/48 maxlen: 48
2a05:4700:200::/48 maxlen: 48
2a05:4700:50::/48 maxlen: 48
2a05:4700:b::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:8b:86:ae:d0:f5:60:2a:20:72:94:5a:19:6d:79:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2400b20606314858a7b3f2a975e8e9d919ec753a
Validity
Not Before: Jan 1 22:54:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=63554f6c330ff47d1eb84c0b8b81a592431aa39e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:00:05:78:eb:15:4d:ca:97:1c:21:4d:ec:27:
fc:4b:31:df:f2:4a:35:86:05:d9:21:62:ff:22:f3:
fb:f1:cd:74:00:b2:25:b5:ec:0b:0f:02:70:84:45:
bf:1c:b8:44:ae:08:6f:b9:6e:57:c3:9e:41:93:c9:
82:3d:2a:d3:2a:50:68:96:23:ca:d2:13:3a:7c:1f:
22:d9:8b:7b:b6:3a:cd:69:03:25:07:df:e0:92:b9:
22:68:02:e5:fa:ef:32:9b:03:01:42:bc:f5:7d:af:
0e:e1:46:91:22:28:4b:92:d7:30:ba:14:9b:d5:36:
78:a1:88:1b:15:27:4a:13:d0:63:75:6b:a9:35:e5:
a0:b7:a3:51:f4:eb:82:33:f4:bb:d9:c9:fb:18:3e:
f3:b2:de:63:1d:fd:a7:7c:55:50:e8:51:97:b5:fb:
87:e2:aa:b5:1f:27:7e:f2:15:00:1b:eb:72:ff:6d:
10:61:03:65:fa:63:db:96:e4:af:93:b9:d2:2b:e9:
4d:da:c2:76:05:af:fd:b3:d5:1c:5b:53:22:4e:c6:
40:33:9a:75:e1:4b:6c:20:4a:77:56:6e:6f:60:30:
ca:49:4b:b0:89:15:70:96:34:fd:2b:7c:e9:83:b1:
90:cf:f6:4d:f3:b5:67:d5:49:88:ae:b6:70:4e:2a:
28:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:55:4F:6C:33:0F:F4:7D:1E:B8:4C:0B:8B:81:A5:92:43:1A:A3:9E
X509v3 Authority Key Identifier:
keyid:24:00:B2:06:06:31:48:58:A7:B3:F2:A9:75:E8:E9:D9:19:EC:75:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JACyBgYxSFins_Kpdejp2RnsdTo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/dbd951-259b-4759-a519-9c5e1deb2c33/1/Y1VPbDMP9H0euEwLi4GlkkMao54.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/dbd951-259b-4759-a519-9c5e1deb2c33/1/JACyBgYxSFins_Kpdejp2RnsdTo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.246.176.0/21
77.246.185.0-77.246.188.255
77.246.190.0/23
185.74.80.0/23
IPv6:
2a05:4700:b::/48
2a05:4700:50::/48
2a05:4700:100::/47
2a05:4700:200::/48
Signature Algorithm: sha256WithRSAEncryption
cf:93:a9:73:ba:2a:9a:d2:d5:fe:7d:89:f3:9d:27:e3:71:56:
9e:12:49:29:59:b6:cc:4f:dd:f4:e0:d3:19:25:10:4f:2d:d9:
50:18:bd:d4:1b:ae:4d:bd:8c:3f:63:19:c8:2d:37:e3:2a:1b:
11:98:c7:a1:50:6e:87:85:cc:1b:15:e2:46:01:0a:e7:2b:b3:
52:91:4e:b4:da:40:64:36:18:7a:b6:c2:20:ef:b1:1d:95:23:
ea:32:1e:8e:84:44:1e:50:30:c6:5c:34:3b:49:8d:44:4e:2e:
fb:33:fa:b0:9c:ff:2b:d4:23:9d:91:c5:95:d4:0f:1c:41:52:
2b:5d:a6:e6:e9:3e:2d:7b:02:61:89:64:14:16:21:06:16:aa:
bf:78:59:38:65:1e:23:23:0e:2d:e3:bc:a4:49:10:22:7b:74:
d5:1c:51:2a:f8:36:bb:0c:9a:ba:52:fa:74:73:03:f6:87:2a:
de:bd:c5:41:7c:96:60:8a:c5:4b:31:bd:b4:45:17:36:10:b8:
18:01:75:87:20:cc:c9:72:59:16:11:7b:d0:c8:86:1a:c5:d6:
ec:97:d8:a6:ba:be:60:46:7b:12:b7:36:d0:c4:f2:16:cc:fb:
dd:d9:31:b8:47:47:92:e8:63:a8:8b:96:c2:3a:86:31:09:e0:
5d:b4:54:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:38 2024 by rpki-client on console-ams.rpki-client.org