Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/dUnxM33Dws28wjutzLm-k_NLC3s.roa
File: dUnxM33Dws28wjutzLm-k_NLC3s.roa (raw, json)
Hash identifier: 3Hs1PzqxGTW9nMWndHX17Qq5yx7Kkj9ViVTyKJn6p7M=
Subject key identifier: 75:49:F1:33:7D:C3:C2:CD:BC:C2:3B:AD:CC:B9:BE:93:F3:4B:0B:7B
Certificate issuer: /CN=19426325acb8ce609a686fa655b058968809b346
Certificate serial: 018DC760B4B7E7E64E061B986C022A1F1E88
Authority key identifier: 19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/dUnxM33Dws28wjutzLm-k_NLC3s.roa
Signing time: Tue 20 Feb 2024 16:37:00 +0000
ROA not before: Tue 20 Feb 2024 16:37:00 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 208485
IP address blocks: 77.47.178.0/24 maxlen: 24
77.47.242.0/23 maxlen: 24
185.143.56.0/22 maxlen: 24
Validation: Failed, certificate revoked on Wed 28 Feb 2024 16:04:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:c7:60:b4:b7:e7:e6:4e:06:1b:98:6c:02:2a:1f:1e:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19426325acb8ce609a686fa655b058968809b346
Validity
Not Before: Feb 20 16:37:00 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7549f1337dc3c2cdbcc23badccb9be93f34b0b7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:1b:b8:4f:97:b6:18:21:59:a2:97:fb:b1:d5:
d5:c9:71:93:d8:9b:79:7d:91:4b:cd:e4:7e:1d:11:
11:d1:62:e3:d6:6e:08:f2:f4:0b:13:8a:45:79:da:
79:61:9f:2f:d9:f8:6d:b1:e1:39:48:cd:33:5a:9d:
75:b9:ea:39:4e:09:2d:9e:19:a2:19:fa:d3:60:d8:
86:79:7e:1e:14:ff:af:2e:f0:79:05:2b:bf:37:37:
c1:81:fe:07:ea:3e:1c:08:64:26:fa:e2:de:98:18:
ef:d5:7a:ab:51:1f:0f:05:64:3c:44:4c:2c:67:5e:
44:ad:26:a6:6d:6e:24:bb:f6:e9:c4:d2:d8:af:e0:
fe:60:40:17:a7:e5:ec:b3:ea:14:9a:8d:45:43:35:
d8:ad:9c:48:3d:e6:8b:c5:1a:09:8d:95:69:63:72:
c9:ce:f6:cd:a3:c1:e0:f9:22:32:f4:7b:0e:32:51:
4c:a9:eb:d6:27:a7:36:4b:b6:c0:cc:cd:72:e2:9d:
df:bd:3b:44:98:ea:84:9d:66:82:59:64:f6:35:47:
10:ef:9c:38:02:27:1f:e8:d7:c3:6f:0c:04:a9:a3:
31:a2:b2:d8:71:13:50:81:32:cd:43:33:db:5a:f9:
d5:ca:4d:64:6b:02:f7:8f:1d:08:3d:b0:55:b2:9a:
02:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:49:F1:33:7D:C3:C2:CD:BC:C2:3B:AD:CC:B9:BE:93:F3:4B:0B:7B
X509v3 Authority Key Identifier:
keyid:19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/dUnxM33Dws28wjutzLm-k_NLC3s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/GUJjJay4zmCaaG-mVbBYlogJs0Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.47.178.0/24
77.47.242.0/23
185.143.56.0/22
Signature Algorithm: sha256WithRSAEncryption
c7:7f:07:0b:34:4d:d1:f0:e3:a0:d4:ac:21:4e:18:70:76:8c:
47:ce:ef:8e:d6:88:2b:2a:5f:f9:0c:4a:17:52:e1:b2:79:35:
7e:56:3c:7d:12:4d:81:68:c0:cc:bc:b9:77:79:2c:b9:4a:f8:
93:75:41:0e:b1:d2:60:8a:12:60:37:d1:b3:ac:2f:bf:58:f9:
91:49:82:b4:70:0e:6f:18:e3:4c:f7:21:2e:8b:59:64:1a:a1:
70:69:78:6a:e0:d0:ed:99:81:af:e7:fc:38:87:7d:85:39:c1:
c7:12:96:ce:14:d5:ce:12:5b:02:23:55:81:66:e3:5f:2b:65:
5e:05:8f:03:6c:91:eb:c9:34:51:9a:ee:90:c7:b7:cd:dd:da:
96:56:65:02:18:46:e2:8e:65:03:1e:83:61:b3:72:1e:a0:13:
33:23:31:2e:25:bf:9b:da:86:4f:a2:7a:ec:c5:ed:2d:98:9e:
17:41:4d:76:54:a1:e1:b2:e5:ee:b2:8c:71:5e:c9:b7:41:83:
45:23:ad:de:26:d5:f9:08:a5:a0:bb:64:93:a7:9d:f3:8a:2a:
91:5c:8a:39:4e:cd:10:fa:d2:d9:de:8a:6f:87:ab:3c:f5:19:
29:d1:28:cd:eb:74:b8:fd:45:38:b9:d5:1e:16:e4:10:71:89:
91:df:2d:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:09:38 2024 by rpki-client on console-ams.rpki-client.org