Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/cASxRsWC6j_9-IOfvAffVltCoWI.roa
File: cASxRsWC6j_9-IOfvAffVltCoWI.roa (raw, json)
Hash identifier: r3WZrvoJRO2kleHqTV5sewsojfwomPYNUT598aNPnts=
Subject key identifier: 70:04:B1:46:C5:82:EA:3F:FD:F8:83:9F:BC:07:DF:56:5B:42:A1:62
Certificate issuer: /CN=19426325acb8ce609a686fa655b058968809b346
Certificate serial: 019054161FCCB640830BBA5523C61E659AA9
Authority key identifier: 19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/cASxRsWC6j_9-IOfvAffVltCoWI.roa
Signing time: Wed 26 Jun 2024 10:27:34 +0000
ROA not before: Wed 26 Jun 2024 10:27:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 3319
IP address blocks: 77.47.142.0/24 maxlen: 24
77.47.143.0/24 maxlen: 24
77.47.156.0/24 maxlen: 24
77.47.158.0/23 maxlen: 23
77.47.240.0/23 maxlen: 24
185.143.56.0/22 maxlen: 24
195.178.132.0/24 maxlen: 24
195.178.133.0/24 maxlen: 24
195.178.134.0/24 maxlen: 24
195.178.135.0/24 maxlen: 24
195.178.140.0/23 maxlen: 24
195.178.144.0/23 maxlen: 23
195.178.146.0/24 maxlen: 24
195.178.147.0/24 maxlen: 24
195.178.152.0/22 maxlen: 22
212.111.207.0/24 maxlen: 24
212.111.216.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 22 Jul 2024 22:01:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:54:16:1f:cc:b6:40:83:0b:ba:55:23:c6:1e:65:9a:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19426325acb8ce609a686fa655b058968809b346
Validity
Not Before: Jun 26 10:27:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7004b146c582ea3ffdf8839fbc07df565b42a162
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:ee:f0:09:75:06:44:95:e7:99:50:ce:7c:8c:
53:de:11:d3:59:89:f1:a8:99:95:d4:67:ad:01:1a:
d6:dc:a7:3c:28:e9:1f:51:22:83:bc:50:f7:c0:81:
08:17:18:56:85:84:4e:a6:0b:49:81:2f:96:f2:8b:
b6:09:db:68:ce:2a:b3:87:3a:8e:1f:be:a3:1e:52:
3c:e8:f5:26:84:e3:5e:cb:48:2f:a3:30:0c:38:e1:
1a:94:b2:cd:8a:d1:ef:ba:57:b8:0a:5a:02:85:d8:
fa:da:8d:a0:66:94:6a:e3:75:ba:a5:73:21:db:7f:
a7:06:48:33:66:80:13:43:4c:52:ee:4c:b2:c7:f5:
ec:29:f9:62:0c:27:0c:d1:1b:13:3f:48:33:74:56:
b1:39:e7:e3:22:af:f0:ae:af:9e:10:c7:eb:02:c4:
2d:5e:80:16:49:97:4e:e7:cc:dd:ef:a8:3d:b8:69:
c8:b5:75:d1:d3:13:77:cb:2e:e1:81:a1:16:92:7c:
a6:cf:7c:2e:f8:97:c1:f1:7c:2e:0d:ad:6d:19:ff:
3f:40:6e:ef:74:15:ad:02:27:0f:ea:2a:72:41:b3:
27:d5:50:3e:ab:40:79:fd:8e:a5:78:f7:0f:d5:e5:
51:d9:e5:93:5a:93:44:fc:1c:f4:6d:79:17:42:fb:
d3:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:04:B1:46:C5:82:EA:3F:FD:F8:83:9F:BC:07:DF:56:5B:42:A1:62
X509v3 Authority Key Identifier:
keyid:19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/cASxRsWC6j_9-IOfvAffVltCoWI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/GUJjJay4zmCaaG-mVbBYlogJs0Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.47.142.0/23
77.47.156.0/24
77.47.158.0/23
77.47.240.0/23
185.143.56.0/22
195.178.132.0/22
195.178.140.0/23
195.178.144.0/22
195.178.152.0/22
212.111.207.0/24
212.111.216.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:86:05:c9:76:8a:16:fc:ac:21:4f:51:5d:f2:05:d0:16:2c:
e8:e8:a6:d4:be:0e:49:39:eb:62:91:3e:0f:60:e7:0d:70:59:
19:f7:70:92:b3:6b:23:c3:c5:5d:fb:de:fe:fb:fd:43:45:28:
63:2a:75:c5:6a:21:e1:3a:66:d3:4b:2a:b2:c6:31:f1:99:26:
a4:fe:b4:18:6a:54:a4:14:38:9c:c0:25:84:12:be:43:c8:c6:
c4:f3:32:ef:c5:8b:7e:6c:b8:57:50:f4:52:56:b0:e7:f9:e8:
48:be:b8:3c:4b:af:52:63:20:ba:ef:46:e8:d4:40:f6:0b:dc:
91:eb:3b:ee:a3:e0:d6:85:5d:55:ec:d1:b9:d1:31:94:ce:6c:
37:3d:cd:14:08:81:97:1f:25:6f:ba:b3:3d:5f:f1:10:c0:82:
f8:88:5e:98:32:e1:d8:bf:2c:f2:71:43:62:ec:39:c6:8f:be:
7d:eb:2f:ca:a8:a8:45:bf:57:77:42:cf:0b:c5:ba:80:1a:d4:
86:6f:ad:02:4f:3a:2f:6f:7b:15:ee:f2:d4:6a:f0:90:e5:23:
c4:4e:6a:11:1f:69:ab:7b:aa:bd:a6:9e:10:b6:60:b9:09:76:
2e:32:d2:ba:dc:7e:a2:91:c3:5d:2a:b0:a1:3a:ee:25:0e:95:
d3:8a:0a:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 23 00:28:51 2024 by rpki-client on console-fra.rpki-client.org