Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/IknRIm0Ig58wf3LSsh2Tv3iMM20.roa
File: IknRIm0Ig58wf3LSsh2Tv3iMM20.roa (raw, json)
Hash identifier: NTQU8+i/fiGVTJrLE04YDLWmmzg75ekK3uU9vxEqfVc=
Subject key identifier: 22:49:D1:22:6D:08:83:9F:30:7F:72:D2:B2:1D:93:BF:78:8C:33:6D
Certificate issuer: /CN=19426325acb8ce609a686fa655b058968809b346
Certificate serial: 0186FF60ED438D20EF4DEBB99452880693AB
Authority key identifier: 19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/IknRIm0Ig58wf3LSsh2Tv3iMM20.roa
Signing time: Mon 20 Mar 2023 14:16:27 +0000
ROA not before: Mon 20 Mar 2023 14:16:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43260
IP address blocks: 77.47.212.0/23 maxlen: 24
77.47.210.0/23 maxlen: 24
77.47.156.0/22 maxlen: 24
195.178.141.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 22 Mar 2023 15:52:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:ff:60:ed:43:8d:20:ef:4d:eb:b9:94:52:88:06:93:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19426325acb8ce609a686fa655b058968809b346
Validity
Not Before: Mar 20 14:16:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2249d1226d08839f307f72d2b21d93bf788c336d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:d4:b0:85:47:5a:a9:a9:f5:8d:07:93:73:6a:
3d:d3:87:17:69:67:26:40:b3:1a:b9:39:8b:8a:4d:
1c:51:cf:9c:26:0b:ae:2d:0e:63:dd:77:21:ab:bc:
df:43:bf:b9:8c:26:15:b4:68:9c:1e:ad:74:44:fc:
96:c8:94:22:2f:45:47:1a:d9:5d:5b:dc:da:47:60:
d7:8d:1a:b8:02:9c:0a:d5:ad:f8:15:47:eb:ee:eb:
72:22:9a:15:ec:96:0e:ed:b2:64:5f:5a:0d:13:ee:
eb:a2:96:6e:45:f5:11:13:5a:19:d1:2f:9a:08:de:
f4:3f:39:b1:f2:93:85:dc:a5:2e:c1:6c:c4:95:06:
9d:e1:25:5b:52:c0:49:fa:c3:bd:d1:75:df:0f:c6:
f8:88:cc:ae:a1:83:ac:a9:fa:22:c3:d2:4a:d8:c4:
53:93:6d:ef:ae:d4:b8:1b:ba:65:98:8d:6d:ea:71:
ad:b3:05:ba:98:37:4e:2a:fe:f3:dc:c5:f6:c5:93:
02:1e:7d:f6:88:4c:c1:f9:fd:1d:7f:51:ff:4d:0f:
8a:8c:b8:ac:82:d0:74:f2:b7:a1:19:59:b6:02:4b:
51:47:82:b7:87:04:80:d8:88:dc:4f:81:e7:e6:6f:
59:48:d8:94:25:66:19:a9:bc:7b:58:d8:80:41:5d:
a3:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:49:D1:22:6D:08:83:9F:30:7F:72:D2:B2:1D:93:BF:78:8C:33:6D
X509v3 Authority Key Identifier:
keyid:19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/IknRIm0Ig58wf3LSsh2Tv3iMM20.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/GUJjJay4zmCaaG-mVbBYlogJs0Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.47.156.0/22
77.47.210.0-77.47.213.255
195.178.141.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:10:d1:dd:39:3b:a0:3c:65:26:24:b8:38:d0:0e:36:40:7c:
03:c4:8e:9c:cf:47:b8:83:68:21:49:57:a5:b6:8b:c5:d9:15:
60:05:28:ef:d6:1f:a3:6e:96:e7:3a:e7:b3:81:6f:ca:f3:e5:
d9:32:85:8c:23:a5:de:16:93:71:09:8d:c7:26:bd:1b:c9:7b:
07:77:10:6b:ba:14:8e:13:22:2e:41:b5:77:a1:d0:e6:3b:18:
64:a9:9e:e1:c1:8d:32:ff:b6:1d:b6:7b:67:e9:d0:57:9a:65:
83:12:b8:cf:b9:2e:b8:cc:dd:86:46:dc:53:63:64:aa:04:0f:
4c:22:4e:08:3c:41:8a:8b:0b:d7:08:d7:a7:14:fa:22:2c:90:
35:fd:9a:dc:cd:ee:24:6e:fb:9a:91:0d:78:87:4e:45:8b:5e:
3d:db:06:90:27:ba:41:9b:41:18:59:98:bb:e1:a1:24:c3:09:
83:ad:4b:2b:32:77:22:9b:4e:25:b1:7f:a6:e2:fd:52:7a:8f:
11:9c:a7:86:7c:3a:67:20:6a:82:11:09:97:83:54:9e:e1:94:
b5:3f:8a:b4:25:1c:8e:cc:80:e6:0c:c4:87:62:00:fd:74:22:
60:04:a3:f4:c9:e0:0b:aa:0b:1e:aa:36:8b:30:94:6d:1f:e7:
e3:07:e1:64
-----BEGIN CERTIFICATE-----
MIIFETCCA/mgAwIBAgISAYb/YO1DjSDvTeu5lFKIBpOrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE5NDI2MzI1YWNiOGNlNjA5YTY4NmZhNjU1YjA1ODk2ODgw
OWIzNDYwHhcNMjMwMzIwMTQxNjI3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyMjQ5ZDEyMjZkMDg4MzlmMzA3ZjcyZDJiMjFkOTNiZjc4OGMzMzZkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl9SwhUdaqan1jQeTc2o904cXaWcm
QLMauTmLik0cUc+cJguuLQ5j3Xchq7zfQ7+5jCYVtGicHq10RPyWyJQiL0VHGtld
W9zaR2DXjRq4ApwK1a34FUfr7utyIpoV7JYO7bJkX1oNE+7ropZuRfURE1oZ0S+a
CN70Pzmx8pOF3KUuwWzElQad4SVbUsBJ+sO90XXfD8b4iMyuoYOsqfoiw9JK2MRT
k23vrtS4G7plmI1t6nGtswW6mDdOKv7z3MX2xZMCHn32iEzB+f0df1H/TQ+KjLis
gtB08rehGVm2AktRR4K3hwSA2IjcT4Hn5m9ZSNiUJWYZqbx7WNiAQV2jzwIDAQAB
o4ICHTCCAhkwHQYDVR0OBBYEFCJJ0SJtCIOfMH9y0rIdk794jDNtMB8GA1UdIwQY
MBaAFBlCYyWsuM5gmmhvplWwWJaICbNGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR1VKakpheTR6bUNhYUctbVZiQllsb2dKczBZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS84YjZmYjAtYTg3NS00OTQ3LThhZTQt
MDNmNGM3MTEzYzM0LzEvSWtuUkltMElnNTh3ZjNMU3NoMlR2M2lNTTIwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS84YjZmYjAtYTg3NS00OTQ3LThhZTQtMDNmNGM3MTEzYzM0
LzEvR1VKakpheTR6bUNhYUctbVZiQllsb2dKczBZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDMGCCsGAQUFBwEHAQH/BCQwIjAgBAIAATAaAwQCTS+cMAwD
BAFNL9IDBAFNL9QDBADDso0wDQYJKoZIhvcNAQELBQADggEBADwQ0d05O6A8ZSYk
uDjQDjZAfAPEjpzPR7iDaCFJV6W2i8XZFWAFKO/WH6Nuluc657OBb8rz5dkyhYwj
pd4Wk3EJjccmvRvJewd3EGu6FI4TIi5BtXeh0OY7GGSpnuHBjTL/th22e2fp0Fea
ZYMSuM+5LrjM3YZG3FNjZKoED0wiTgg8QYqLC9cI16cU+iIskDX9mtzN7iRu+5qR
DXiHTkWLXj3bBpAnukGbQRhZmLvhoSTDCYOtSysydyKbTiWxf6bi/VJ6jxGcp4Z8
OmcgaoIRCZeDVJ7hlLU/irQlHI7MgOYMxIdiAP10ImAEo/TJ4AuqCx6qNoswlG0f
5+MH4WQ=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:09:38 2024 by rpki-client on console-ams.rpki-client.org