Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/PTfxCSJ-VuoS7WoXk0jrAVRM0yE.roa
File: PTfxCSJ-VuoS7WoXk0jrAVRM0yE.roa (raw, json)
Hash identifier: C5yaznGN4X754U5UGeeL2HNepi3I3OSDhbZthDM9dFM=
Subject key identifier: 3D:37:F1:09:22:7E:56:EA:12:ED:6A:17:93:48:EB:01:54:4C:D3:21
Certificate issuer: /CN=19426325acb8ce609a686fa655b058968809b346
Certificate serial: 018E7F7396020608265C757475310B64097C
Authority key identifier: 19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/PTfxCSJ-VuoS7WoXk0jrAVRM0yE.roa
Signing time: Wed 27 Mar 2024 10:27:45 +0000
ROA not before: Wed 27 Mar 2024 10:27:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 3319
IP address blocks: 77.47.143.0/24 maxlen: 24
77.47.156.0/24 maxlen: 24
185.143.56.0/22 maxlen: 24
195.178.144.0/23 maxlen: 23
195.178.152.0/22 maxlen: 22
Validation: Failed, certificate revoked on Thu 28 Mar 2024 09:10:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:7f:73:96:02:06:08:26:5c:75:74:75:31:0b:64:09:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19426325acb8ce609a686fa655b058968809b346
Validity
Not Before: Mar 27 10:27:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3d37f109227e56ea12ed6a179348eb01544cd321
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:ba:d0:5d:19:dd:40:67:de:2f:8d:58:01:28:
d2:25:a4:44:b7:3a:1e:ed:57:16:92:1a:74:e1:9e:
ff:a7:d3:97:85:80:aa:cc:3a:c2:71:54:bc:98:de:
1c:e8:00:a6:29:38:74:2e:68:9f:eb:f9:91:c9:65:
26:73:23:d2:5b:0f:95:7d:2f:d6:51:fa:22:16:fa:
a2:0a:44:30:c5:f7:69:42:99:c6:ef:0e:93:cf:1c:
5d:81:bd:8d:36:9e:60:48:05:c0:9d:a7:6c:8f:e4:
9b:78:14:e3:fe:22:6f:10:94:48:f2:b3:9e:15:73:
c4:b0:a8:e4:11:53:4b:da:c5:e8:7c:00:a2:36:02:
b2:40:fd:27:00:f7:30:c5:51:44:43:e4:e3:fd:82:
98:93:47:a4:4f:5b:e2:8b:68:6e:e6:d2:65:e9:48:
d9:70:46:68:25:70:34:14:5e:d5:9f:42:e3:72:58:
60:0f:f7:72:e7:cc:7a:8e:53:c3:d6:40:90:4c:08:
97:41:64:0f:e5:de:82:62:9e:c6:bd:53:20:84:4c:
4d:5d:a2:ae:c5:e3:4f:28:99:cf:e5:a6:d7:89:b2:
cb:a5:e4:be:30:aa:19:9d:31:5e:db:c3:e8:a4:d6:
49:cc:cf:5c:ea:53:64:84:33:8e:e5:04:99:c5:35:
64:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:37:F1:09:22:7E:56:EA:12:ED:6A:17:93:48:EB:01:54:4C:D3:21
X509v3 Authority Key Identifier:
keyid:19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/PTfxCSJ-VuoS7WoXk0jrAVRM0yE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/GUJjJay4zmCaaG-mVbBYlogJs0Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.47.143.0/24
77.47.156.0/24
185.143.56.0/22
195.178.144.0/23
195.178.152.0/22
Signature Algorithm: sha256WithRSAEncryption
c8:50:af:ea:40:57:ec:b4:92:e8:82:dd:53:39:10:05:1e:5c:
b3:32:15:c3:a6:98:f4:5a:f2:b6:f3:ca:69:91:1a:4d:8c:1f:
30:9b:fb:e7:b5:6f:82:5a:68:dd:8c:e0:ff:99:9d:94:f0:83:
a0:db:ff:9f:f6:82:93:08:1b:9a:18:9f:32:1c:6f:b9:34:ec:
1f:e5:50:a9:51:a9:ac:25:a1:ae:d8:a5:50:0a:66:f3:87:ec:
8e:68:26:cc:11:26:7c:08:75:66:6a:4b:87:93:8a:1c:1d:94:
bb:68:1f:67:46:6e:b6:ea:49:6c:78:05:48:cb:c1:e7:41:7f:
c0:b4:d6:0a:d3:5a:07:76:2d:67:6f:5c:17:70:37:fe:21:ac:
48:46:a7:9a:6c:f2:0e:57:37:3c:b8:07:df:d8:e1:4e:da:75:
fd:dd:7a:2d:e2:be:3e:7e:10:db:a6:4d:27:06:7b:52:79:09:
15:f5:55:11:7d:1f:8e:da:c2:6f:6f:ee:5c:f7:32:eb:03:e5:
66:90:c2:09:de:4f:44:dc:df:9e:c1:3f:89:af:ba:ad:54:03:
5b:a4:1c:10:1c:42:58:ad:53:0d:60:cf:b5:07:8e:56:80:76:
80:e1:3b:63:41:80:50:e9:81:8b:f2:4a:4f:ff:83:ee:b6:fc:
a5:bb:e4:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:09:38 2024 by rpki-client on console-ams.rpki-client.org