Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/OtwlZyvx3diQ211ctqIxobOVprw.roa
File: OtwlZyvx3diQ211ctqIxobOVprw.roa (raw, json)
Hash identifier: h76c3+yV2/tY3ogoUyNO7peGDUEgft0d5SpboMy4uJU=
Subject key identifier: 3A:DC:25:67:2B:F1:DD:D8:90:DB:5D:5C:B6:A2:31:A1:B3:95:A6:BC
Certificate issuer: /CN=19426325acb8ce609a686fa655b058968809b346
Certificate serial: 01879E250EB7887998E02EBC17AE4B9FD830
Authority key identifier: 19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/OtwlZyvx3diQ211ctqIxobOVprw.roa
Signing time: Thu 20 Apr 2023 10:10:41 +0000
ROA not before: Thu 20 Apr 2023 10:10:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213257
IP address blocks: 77.47.210.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 31 Jul 2023 15:56:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:9e:25:0e:b7:88:79:98:e0:2e:bc:17:ae:4b:9f:d8:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19426325acb8ce609a686fa655b058968809b346
Validity
Not Before: Apr 20 10:10:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3adc25672bf1ddd890db5d5cb6a231a1b395a6bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:70:bf:7d:0e:ed:7b:4f:31:de:41:7d:83:fd:
29:88:0e:e2:5c:81:f2:3a:4e:85:4a:94:c6:82:10:
9b:83:72:bd:b8:dd:f8:63:59:01:31:27:7f:41:3b:
81:4b:8c:c1:2b:2a:63:38:28:91:b7:d1:f4:b5:e4:
87:0b:c5:8d:10:70:48:2a:17:72:5f:f7:af:63:56:
41:1b:8c:a7:3f:9b:2c:e8:0f:b6:d4:9a:e0:d6:9c:
b0:42:55:21:e0:27:b4:5f:18:04:a8:aa:f4:83:d4:
41:ac:5d:8c:34:71:37:b7:31:46:3b:52:98:13:4d:
41:fb:9e:7d:b4:b7:32:cb:bc:85:4a:1f:ca:41:26:
15:0c:18:e1:2b:59:83:aa:d5:65:ca:ce:17:cf:e9:
2b:6c:4d:6f:81:62:d3:c7:c6:39:bf:95:b5:cf:7c:
b5:ce:a0:ea:4e:d6:d3:0e:6c:ba:c7:f3:ab:a4:0e:
0a:08:ec:62:9d:c6:ef:2c:7f:61:6f:ee:64:f0:93:
f2:04:ec:a6:b9:e6:76:9e:6f:8a:8f:45:a2:f4:99:
3a:80:9a:fe:7a:ab:8d:52:26:53:39:2c:27:90:98:
ac:31:ad:86:5a:9a:7a:40:d9:20:58:23:68:b4:51:
9f:29:96:ef:44:56:eb:87:92:5a:38:cb:ca:6f:72:
f5:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:DC:25:67:2B:F1:DD:D8:90:DB:5D:5C:B6:A2:31:A1:B3:95:A6:BC
X509v3 Authority Key Identifier:
keyid:19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/OtwlZyvx3diQ211ctqIxobOVprw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/GUJjJay4zmCaaG-mVbBYlogJs0Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.47.210.0/23
Signature Algorithm: sha256WithRSAEncryption
61:8e:dc:4d:f6:38:78:a9:c6:6a:46:a4:c1:49:fc:e1:c7:b5:
43:00:c2:33:20:00:11:9b:97:cd:88:cd:95:7e:c5:ad:0e:69:
53:b3:2b:22:8e:55:0a:93:9d:8e:dc:c3:e7:93:6c:1e:52:4d:
f2:99:4f:40:4a:0d:81:2f:13:df:83:c7:6b:4c:b5:44:85:01:
30:15:fe:e4:40:40:a2:18:17:b7:c0:84:aa:52:2a:31:19:f4:
cd:f5:4c:12:19:bc:8b:d8:d7:1f:e2:ca:39:4e:ad:dc:41:df:
31:ea:4e:a0:1d:c9:17:91:a8:b1:98:ed:60:b2:0c:54:72:ab:
88:53:45:80:c1:d0:51:ac:2f:f9:44:c2:5f:42:b3:3b:46:89:
a6:9e:cf:50:ee:b7:33:17:58:59:60:ea:9a:bb:bf:74:68:71:
29:d3:fa:43:0c:65:29:fe:73:73:36:32:f9:6b:cc:06:73:1a:
1f:33:2e:6e:9f:10:48:aa:39:0b:24:6f:e4:0b:47:0e:20:b9:
2b:c4:38:bc:89:a1:10:a1:a4:1f:4a:0f:1b:2a:ec:02:e8:9b:
21:a1:ef:46:93:42:3f:bb:88:d2:3b:3f:77:31:27:ca:36:b1:
90:07:82:e5:8d:db:c3:dc:2e:07:e9:d2:33:ba:58:e8:bd:48:
09:7f:3e:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:09:38 2024 by rpki-client on console-ams.rpki-client.org