Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/OoGQlStHqh6hd-93L6-LkSgJ6Uk.roa
File: OoGQlStHqh6hd-93L6-LkSgJ6Uk.roa (raw, json)
Hash identifier: zdZ7knhAwBQ4MU8UYCvg8h341SIMj7ByjvMmDh7yHUI=
Subject key identifier: 3A:81:90:95:2B:47:AA:1E:A1:77:EF:77:2F:AF:8B:91:28:09:E9:49
Certificate issuer: /CN=19426325acb8ce609a686fa655b058968809b346
Certificate serial: 018E8453728C04806594269CF0AD79B4ECE2
Authority key identifier: 19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/OoGQlStHqh6hd-93L6-LkSgJ6Uk.roa
Signing time: Thu 28 Mar 2024 09:10:45 +0000
ROA not before: Thu 28 Mar 2024 09:10:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 208485
IP address blocks: 77.47.178.0/24 maxlen: 24
77.47.242.0/23 maxlen: 24
195.178.140.0/24 maxlen: 24
195.178.141.0/24 maxlen: 24
195.178.146.0/24 maxlen: 24
212.111.207.0/24 maxlen: 24
212.111.216.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 30 Apr 2024 19:17:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:84:53:72:8c:04:80:65:94:26:9c:f0:ad:79:b4:ec:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19426325acb8ce609a686fa655b058968809b346
Validity
Not Before: Mar 28 09:10:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3a8190952b47aa1ea177ef772faf8b912809e949
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:6e:27:be:80:bc:e6:77:a1:2c:a2:56:ca:5d:
f3:ef:1a:48:f7:37:c2:5a:aa:7d:67:5d:13:ec:48:
78:4c:f0:00:f4:f1:61:35:0b:9d:dc:a3:6e:ad:58:
da:e6:0c:6e:18:07:b8:95:61:80:02:52:79:bb:52:
38:a6:9d:94:cf:47:05:2f:b9:dc:82:16:8e:10:7b:
40:ff:4c:27:a7:09:9f:ed:77:33:40:a2:da:3a:de:
e4:3e:76:ae:50:bc:74:69:ba:11:49:9b:d6:fd:4d:
72:ab:72:14:46:4d:e6:20:50:9a:2c:b9:31:4c:e6:
ae:29:f2:23:87:2e:4f:93:83:cd:5e:f1:f3:44:50:
a6:05:e9:8c:a5:5f:7a:6d:db:0c:80:a4:e5:fd:7d:
42:be:6d:36:92:62:51:1b:9c:0a:29:d8:cc:81:a2:
f8:12:07:66:d1:98:2b:6d:d9:43:c3:19:94:db:a0:
5d:34:55:8d:45:63:34:a1:01:c2:9e:53:48:8e:1a:
90:44:f6:4b:4c:86:f4:ea:39:dc:ef:9b:ee:2a:84:
87:57:bf:eb:d1:f0:b9:d0:3c:bb:86:44:8c:c7:af:
ba:47:bc:0f:0a:bd:1c:0a:1a:e5:6f:98:27:8a:75:
78:c5:bd:b1:bf:c9:0f:5b:dc:75:30:db:9c:2c:9d:
73:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:81:90:95:2B:47:AA:1E:A1:77:EF:77:2F:AF:8B:91:28:09:E9:49
X509v3 Authority Key Identifier:
keyid:19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/OoGQlStHqh6hd-93L6-LkSgJ6Uk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/GUJjJay4zmCaaG-mVbBYlogJs0Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.47.178.0/24
77.47.242.0/23
195.178.140.0/23
195.178.146.0/24
212.111.207.0/24
212.111.216.0/23
Signature Algorithm: sha256WithRSAEncryption
af:ba:30:d8:24:da:3b:49:04:64:02:da:3d:cb:3d:32:4e:8a:
65:c6:cb:47:c0:c4:a5:48:e0:c3:d0:45:f6:07:79:45:fb:b9:
ae:0a:1e:62:3e:50:ad:72:b0:de:08:6c:bd:0b:21:56:63:cd:
c8:d4:46:9d:ed:2b:e0:6d:c9:8a:b4:83:96:41:85:ba:d8:e0:
32:3c:26:49:ce:df:16:32:a1:a9:7f:89:0e:36:6c:08:03:1e:
b7:03:75:c3:0c:c5:8c:ef:68:93:20:a3:0c:c8:85:72:ce:2d:
42:16:2a:b4:2c:d8:74:2b:57:64:71:7c:2b:e9:4f:5d:85:b1:
ed:3f:65:8c:6c:54:c6:8c:95:9b:4a:64:d2:e9:de:4f:11:d1:
1e:03:f5:0c:26:b8:04:26:20:f6:e2:d4:9f:69:8b:a7:56:d3:
8d:66:af:f1:b1:99:ce:17:42:bf:f8:b3:f9:a5:1e:16:4d:b9:
35:a6:ae:ba:c7:a9:fb:b5:a2:92:9e:4b:c6:68:7d:77:20:19:
b4:8d:a5:5b:67:4a:cb:f1:78:21:40:ec:b8:ee:97:8e:ee:e5:
5b:53:74:f5:46:d5:40:ec:74:3a:62:31:9d:52:2c:f7:a2:0e:
83:d2:4e:ce:7d:87:4d:49:2e:67:74:64:c4:6d:ce:46:e5:18:
3b:3b:0c:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 30 22:16:23 2024 by rpki-client on console-fra.rpki-client.org