Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/BYmpR7U8w8YU3QWKULigCxKMrU4.roa
File: BYmpR7U8w8YU3QWKULigCxKMrU4.roa (raw, json)
Hash identifier: 736Iqd0zKkh67o3oc2j9a7gP9iGBgX9qRsQQRPFjd9k=
Subject key identifier: 05:89:A9:47:B5:3C:C3:C6:14:DD:05:8A:50:B8:A0:0B:12:8C:AD:4E
Certificate issuer: /CN=19426325acb8ce609a686fa655b058968809b346
Certificate serial: 018F3070C6CF332CC6204399488819822EC7
Authority key identifier: 19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/BYmpR7U8w8YU3QWKULigCxKMrU4.roa
Signing time: Tue 30 Apr 2024 19:17:28 +0000
ROA not before: Tue 30 Apr 2024 19:17:28 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 208485
IP address blocks: 77.47.178.0/24 maxlen: 24
77.47.242.0/23 maxlen: 24
195.178.146.0/24 maxlen: 24
212.111.207.0/24 maxlen: 24
212.111.216.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 27 May 2024 18:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:30:70:c6:cf:33:2c:c6:20:43:99:48:88:19:82:2e:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19426325acb8ce609a686fa655b058968809b346
Validity
Not Before: Apr 30 19:17:28 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0589a947b53cc3c614dd058a50b8a00b128cad4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:8a:01:25:8f:27:00:87:89:cd:01:b8:99:4e:
20:0d:c5:3a:97:00:e5:2c:57:9e:fa:b8:31:c6:34:
7a:c5:d0:11:f1:65:fd:d7:aa:0a:f3:b7:c1:fe:c8:
90:e0:73:ca:00:9f:a2:3f:e7:d3:2e:64:f0:a3:f8:
ea:26:98:61:5c:82:a6:0c:0c:8f:63:62:47:95:66:
db:65:e9:98:18:5d:ea:77:7c:44:3e:f1:c4:98:4f:
9c:5b:4c:66:bf:f9:62:1d:a0:4c:5e:ae:5c:8f:3c:
d8:b4:6f:4e:3e:f5:38:73:fa:aa:3e:38:26:d2:59:
1b:bd:7d:67:0e:62:6e:2c:a4:88:0f:4e:4e:f3:dc:
26:fd:57:ef:41:9a:78:fe:7d:40:17:94:d3:14:8f:
b6:6b:b6:bf:46:50:3a:11:a4:d8:7f:c9:40:3e:3a:
83:85:ce:bb:7a:e1:32:36:3c:57:f4:5a:ec:37:e3:
50:80:80:71:f8:d0:89:e8:23:51:db:e8:82:62:46:
53:e1:6b:6c:e6:69:5a:66:be:0c:97:df:32:77:17:
10:9a:6e:ef:cc:9b:85:a8:a3:74:19:05:e9:0e:1c:
56:ce:00:8f:6a:9e:b1:0b:1b:c7:d8:50:f1:1f:fb:
d2:94:75:65:20:0a:f0:27:22:37:54:f2:d1:a0:fd:
7b:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:89:A9:47:B5:3C:C3:C6:14:DD:05:8A:50:B8:A0:0B:12:8C:AD:4E
X509v3 Authority Key Identifier:
keyid:19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/BYmpR7U8w8YU3QWKULigCxKMrU4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/GUJjJay4zmCaaG-mVbBYlogJs0Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.47.178.0/24
77.47.242.0/23
195.178.146.0/24
212.111.207.0/24
212.111.216.0/23
Signature Algorithm: sha256WithRSAEncryption
1a:0f:f7:14:fa:77:d2:a0:3c:9a:12:c7:3e:d0:7c:7d:c4:cd:
0a:42:d4:d2:09:50:af:eb:4d:c0:c2:21:40:65:90:91:83:fc:
29:3e:06:55:6f:4d:b5:34:83:b9:f9:15:01:fd:43:d2:84:e2:
ea:b8:02:42:49:43:3a:85:c5:e5:5a:78:b8:5d:b1:d2:59:70:
2f:af:52:ab:3d:99:9c:c0:52:53:57:94:b7:be:f2:2f:9a:22:
e4:59:8e:65:e9:6a:04:0c:ad:0e:d2:bb:a7:84:78:f3:84:ac:
7c:1d:96:b8:9e:86:de:97:d1:62:fd:e5:04:2e:15:4a:09:21:
44:7c:03:65:e3:d0:c9:27:7f:1d:43:25:9d:7e:8f:0e:cb:73:
05:1e:06:49:81:b4:94:96:da:af:ff:db:16:b6:b7:51:36:8b:
e1:8c:e0:0c:3a:3c:2b:6b:5c:8b:25:a2:8e:68:a3:5e:86:21:
ac:a6:69:89:49:dd:57:74:1d:25:21:22:5c:6c:a0:49:8f:88:
28:28:78:e4:6f:f5:4c:72:ac:52:01:f5:00:a3:6a:22:64:21:
0e:2a:e7:36:3e:2c:d8:7a:94:eb:3d:d9:64:74:cc:b9:d8:dd:
c5:7f:66:a4:1b:22:24:08:9d:8b:6a:81:12:dd:c2:5d:7b:a1:
cf:e1:13:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:09:38 2024 by rpki-client on console-ams.rpki-client.org