Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/46a38c-5d73-42b4-afeb-de80791a1386/1/JGgfgf2fKE1lzGFidpW76RmbKng.roa
File: JGgfgf2fKE1lzGFidpW76RmbKng.roa (raw, json)
Hash identifier: 6tDhBouTvHjvp3l2LXzNb5EPspANX4znf9Iaw0QSlPY=
Subject key identifier: 24:68:1F:81:FD:9F:28:4D:65:CC:61:62:76:95:BB:E9:19:9B:2A:78
Certificate issuer: /CN=1e54b80723921cdd51da53325f12b3dbc6782664
Certificate serial: 019108401C71F70FF44E74E231AEB9DEBE1C
Authority key identifier: 1E:54:B8:07:23:92:1C:DD:51:DA:53:32:5F:12:B3:DB:C6:78:26:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HlS4ByOSHN1R2lMyXxKz28Z4JmQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/46a38c-5d73-42b4-afeb-de80791a1386/1/JGgfgf2fKE1lzGFidpW76RmbKng.roa
Signing time: Wed 31 Jul 2024 10:05:04 +0000
ROA not before: Wed 31 Jul 2024 10:05:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202247
IP address blocks: 77.73.33.0/24 maxlen: 24
93.95.25.0/24 maxlen: 24
2a05:9480::/29 maxlen: 29
Validation: Failed, certificate revoked on Wed 01 Jan 2025 13:47:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:08:40:1c:71:f7:0f:f4:4e:74:e2:31:ae:b9:de:be:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e54b80723921cdd51da53325f12b3dbc6782664
Validity
Not Before: Jul 31 10:05:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=24681f81fd9f284d65cc61627695bbe9199b2a78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:d7:48:09:94:84:b6:dc:de:08:ad:27:31:e4:
b7:49:e6:59:f0:1c:0d:b2:c7:03:63:5d:f8:3c:19:
e2:35:d5:48:74:76:ce:cb:af:c6:7d:67:f3:6c:e7:
b5:05:fe:c1:f2:13:17:4e:12:7b:53:b9:90:42:42:
96:3d:e3:1f:3b:4f:f5:da:cc:04:dc:14:83:50:fd:
e8:2d:27:c3:7d:13:b6:9a:a3:c6:52:b3:3f:01:a0:
28:8b:ee:95:d8:22:e6:08:45:67:f6:7c:d7:d5:7b:
e6:81:80:14:ef:fa:fa:d8:cf:d5:32:55:ef:5d:4d:
2c:94:69:5b:02:0f:5f:4d:76:86:7c:f5:8a:3b:0a:
be:e6:66:3c:0c:1f:62:97:9c:ad:bd:0b:12:32:ab:
71:2d:f9:10:f2:7b:2c:c0:d0:80:a7:a3:27:23:20:
d1:fb:72:f6:fa:3c:7b:e1:a5:8c:6d:43:49:b6:02:
94:6d:a7:69:3d:02:8d:d7:93:92:39:83:1f:2a:16:
79:9b:b6:e7:05:84:e4:18:7e:d8:64:97:28:dd:f8:
6e:17:cd:e0:48:43:2b:93:8a:d0:13:4b:f7:18:0e:
d1:f9:91:1d:50:27:ad:b3:7c:57:bc:93:12:96:af:
db:83:80:0a:ef:3e:d4:19:11:27:64:79:dd:51:36:
5b:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:68:1F:81:FD:9F:28:4D:65:CC:61:62:76:95:BB:E9:19:9B:2A:78
X509v3 Authority Key Identifier:
keyid:1E:54:B8:07:23:92:1C:DD:51:DA:53:32:5F:12:B3:DB:C6:78:26:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HlS4ByOSHN1R2lMyXxKz28Z4JmQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/46a38c-5d73-42b4-afeb-de80791a1386/1/JGgfgf2fKE1lzGFidpW76RmbKng.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/46a38c-5d73-42b4-afeb-de80791a1386/1/HlS4ByOSHN1R2lMyXxKz28Z4JmQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.73.33.0/24
93.95.25.0/24
IPv6:
2a05:9480::/29
Signature Algorithm: sha256WithRSAEncryption
7b:55:34:7e:64:81:42:3a:82:c1:9f:6f:87:3a:64:91:70:0d:
a5:3a:bd:e1:eb:eb:47:ff:e8:8a:dc:15:ec:2e:af:5a:a3:83:
0c:60:94:a3:9c:97:0a:81:90:d3:7a:99:a9:d9:1d:16:2e:95:
3b:fb:02:ed:37:f8:e0:eb:0d:b4:3a:c4:f2:0e:35:50:97:93:
7d:12:10:a1:56:62:aa:63:16:d9:76:94:c7:80:c9:87:e9:fa:
dc:d2:04:ea:98:2b:be:47:dc:de:f6:88:ee:a6:6e:77:b7:b4:
03:ba:7d:88:fc:b1:e0:74:df:46:1d:22:4e:2d:a2:bd:56:52:
12:bd:52:fa:81:8a:b9:c4:34:de:10:92:42:fe:64:e5:e0:1d:
20:ed:15:e4:f1:eb:e0:64:07:c9:76:7d:91:e6:b5:1b:1a:5b:
2d:ed:9d:38:f7:83:3f:e5:d6:a9:bb:3a:73:77:d1:e8:0f:fe:
88:25:ab:43:e6:f7:57:2d:ae:f9:85:15:db:3e:8f:de:9b:9f:
31:4d:5e:16:53:94:ed:93:d5:5f:1e:73:62:b8:f7:82:bb:46:
7a:5f:0d:0d:84:e9:0f:29:21:e6:7f:b4:60:28:cb:50:61:d5:
75:3a:1a:f5:8c:d4:46:a5:d4:72:28:f3:72:d7:a7:ba:83:3a:
fe:dc:08:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:34:04 2025 by rpki-client