Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/57688e-a964-4933-8631-850f34906229/1/OGejcd4Q6XQzSqcsAsMzzSi78s0.roa
File: OGejcd4Q6XQzSqcsAsMzzSi78s0.roa (raw, json)
Hash identifier: 7LLX7zT+FL6e7ILZOXq5J1UF/z+bor5/SLgrH0CFFQU=
Subject key identifier: 38:67:A3:71:DE:10:E9:74:33:4A:A7:2C:02:C3:33:CD:28:BB:F2:CD
Certificate issuer: /CN=311d62b7fd9fcfc87dfea987515767c838e21bb9
Certificate serial: 0185718C2E3A1C43C8E7D851B34F7800D3C8
Authority key identifier: 31:1D:62:B7:FD:9F:CF:C8:7D:FE:A9:87:51:57:67:C8:38:E2:1B:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MR1it_2fz8h9_qmHUVdnyDjiG7k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/57688e-a964-4933-8631-850f34906229/1/OGejcd4Q6XQzSqcsAsMzzSi78s0.roa
Signing time: Mon 02 Jan 2023 08:14:50 +0000
ROA not before: Mon 02 Jan 2023 08:14:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199422
IP address blocks: 185.92.20.0/24 maxlen: 24
77.95.64.0/23 maxlen: 23
77.95.64.0/22 maxlen: 22
77.95.66.0/23 maxlen: 23
2a03:9180:8000::/33 maxlen: 33
2a03:9180::/33 maxlen: 33
2a03:9180::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:8c:2e:3a:1c:43:c8:e7:d8:51:b3:4f:78:00:d3:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=311d62b7fd9fcfc87dfea987515767c838e21bb9
Validity
Not Before: Jan 2 08:14:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3867a371de10e974334aa72c02c333cd28bbf2cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:d9:4e:f9:a9:bb:ac:d9:a7:3b:ee:a9:de:e6:
75:dc:b7:1e:f6:85:9f:f7:11:d1:0c:e6:0b:f1:3a:
dc:23:af:31:4b:42:fe:45:57:44:db:a8:71:66:af:
16:45:8e:c9:b3:3f:6b:80:a3:c7:e3:f6:76:b5:73:
0d:7e:ac:b3:94:35:f5:87:9f:13:46:ee:07:19:60:
ca:92:c4:5e:a3:7d:39:08:a3:9f:e8:2a:c0:03:fc:
a1:f4:9f:d6:64:db:39:1c:58:f9:92:39:50:07:83:
9f:ea:4c:3b:49:3f:e8:79:19:be:d1:74:1b:d1:89:
ef:83:93:98:7c:bc:c0:a2:10:34:de:79:16:bb:7d:
9d:e3:cc:0c:f0:10:20:6d:9c:1a:0f:c8:ff:08:49:
26:62:c3:aa:1c:05:1c:87:88:ff:85:c0:b9:f0:61:
34:57:6e:a9:67:fd:03:19:b9:38:18:47:59:1e:7b:
ec:ed:8c:85:91:58:56:b5:4c:de:e6:6a:58:e8:1a:
10:2d:3a:53:69:61:22:aa:c0:01:fa:79:fb:f9:d6:
cb:06:95:f1:f0:1d:7c:05:82:83:80:3e:58:02:c7:
8c:23:a6:cc:75:4f:5d:2c:72:56:c1:12:5a:6e:25:
b7:37:5b:44:d3:e7:3a:f9:1b:aa:80:bb:df:b7:5f:
6b:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:67:A3:71:DE:10:E9:74:33:4A:A7:2C:02:C3:33:CD:28:BB:F2:CD
X509v3 Authority Key Identifier:
keyid:31:1D:62:B7:FD:9F:CF:C8:7D:FE:A9:87:51:57:67:C8:38:E2:1B:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MR1it_2fz8h9_qmHUVdnyDjiG7k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/57688e-a964-4933-8631-850f34906229/1/OGejcd4Q6XQzSqcsAsMzzSi78s0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/57688e-a964-4933-8631-850f34906229/1/MR1it_2fz8h9_qmHUVdnyDjiG7k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.95.64.0/22
185.92.20.0/24
IPv6:
2a03:9180::/32
Signature Algorithm: sha256WithRSAEncryption
74:13:be:32:01:01:e2:90:3b:45:1a:3a:1c:ed:49:6f:6c:92:
bf:13:ad:a2:d3:d3:43:6d:da:88:74:c2:cc:0a:95:71:bc:df:
4f:01:5e:31:48:0d:a7:c7:0d:58:18:2b:c1:48:d4:b8:83:d5:
5a:11:9d:d8:09:72:66:f8:91:04:4e:12:24:5e:ea:c8:0b:b0:
60:0c:d7:12:27:62:4c:b8:b2:54:11:0c:6f:4a:74:90:1a:08:
89:36:03:9a:75:6a:fb:d1:20:35:99:e6:6d:99:a9:ba:c5:97:
10:9f:82:3f:97:ea:82:03:d1:67:b8:f3:27:f0:df:02:26:ed:
c2:24:69:f5:93:f5:e3:ff:72:14:9a:eb:77:72:40:a8:1c:e1:
9c:64:08:b0:d3:f6:46:53:71:06:d7:61:e0:14:e0:5f:14:91:
bd:1f:c0:0c:f5:3a:2f:18:05:2a:19:e3:be:d5:36:a3:25:fa:
c2:b4:26:0d:83:a4:fd:64:4d:9d:cf:fb:b5:7e:2e:67:16:ef:
b5:5b:fc:2a:6a:d8:8c:eb:17:95:d1:db:a8:2d:18:7d:74:36:
5b:f9:83:1a:54:27:f6:5f:53:16:fc:69:4f:d5:60:38:e1:44:
fd:40:5f:a0:6b:e8:32:0a:2d:9a:53:b8:6e:df:0e:eb:b4:1c:
b6:16:54:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:37 2024 by rpki-client on console-fra.rpki-client.org