Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/hZYiA2PFCK6jD1LnWDRxOJx3B_Q.roa
File: hZYiA2PFCK6jD1LnWDRxOJx3B_Q.roa (raw, json)
Hash identifier: 9XpsExpAeYObrRN05cRBNPAWDcoN7Bn70ji3FQQuO5M=
Subject key identifier: 85:96:22:03:63:C5:08:AE:A3:0F:52:E7:58:34:71:38:9C:77:07:F4
Certificate issuer: /CN=19426325acb8ce609a686fa655b058968809b346
Certificate serial: 0189ACAA364A4C12699B95F1792A1E5F6012
Authority key identifier: 19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/hZYiA2PFCK6jD1LnWDRxOJx3B_Q.roa
Signing time: Mon 31 Jul 2023 15:56:23 +0000
ROA not before: Mon 31 Jul 2023 15:56:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3319
IP address blocks: 77.47.143.0/24 maxlen: 24
195.178.140.0/24 maxlen: 24
195.178.144.0/23 maxlen: 23
77.47.156.0/22 maxlen: 24
185.143.56.0/22 maxlen: 24
195.178.152.0/22 maxlen: 22
77.47.178.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 01 Aug 2023 11:30:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:ac:aa:36:4a:4c:12:69:9b:95:f1:79:2a:1e:5f:60:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19426325acb8ce609a686fa655b058968809b346
Validity
Not Before: Jul 31 15:56:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8596220363c508aea30f52e7583471389c7707f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:0c:b1:2d:22:35:93:ed:c4:71:61:4e:f1:90:
58:15:b8:2a:00:5d:4a:91:d9:f8:0c:11:b6:21:7b:
66:34:22:8b:2a:4c:d1:47:5a:83:43:d0:83:82:cf:
c1:d0:9c:e6:2e:e6:65:a0:5b:2d:12:6d:4e:21:f1:
7c:59:de:fa:8f:6e:4d:12:e3:04:14:78:fb:9b:95:
3c:11:90:55:a4:56:b0:f3:55:eb:f1:16:e9:44:c0:
0f:54:04:8f:c4:6c:0e:b6:a2:d3:ed:dc:5e:4d:9b:
cc:a6:4f:87:47:e3:48:ab:81:2a:fb:83:7e:d7:a2:
d8:94:87:98:a9:f7:8b:e7:f8:78:70:15:00:98:d6:
88:28:f4:e6:2c:b1:d5:e2:91:74:f2:e3:0d:ae:03:
c0:f8:ac:91:f2:95:c1:78:b1:30:ad:42:00:48:00:
21:39:3f:bf:a8:94:6b:23:6d:f5:03:28:d6:db:88:
3c:5c:90:32:e2:38:b8:c5:23:e4:46:03:5f:58:a0:
21:1f:59:9d:f9:f2:bf:a3:4f:48:be:b2:c8:e6:41:
22:26:02:08:4d:fb:f0:5b:a5:d7:64:5d:83:a1:71:
11:d2:f7:45:48:4f:87:93:54:67:50:d1:60:82:7f:
1a:f9:7a:bf:b8:8e:ba:14:44:d6:4c:4e:d5:01:10:
84:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:96:22:03:63:C5:08:AE:A3:0F:52:E7:58:34:71:38:9C:77:07:F4
X509v3 Authority Key Identifier:
keyid:19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/hZYiA2PFCK6jD1LnWDRxOJx3B_Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/GUJjJay4zmCaaG-mVbBYlogJs0Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.47.143.0/24
77.47.156.0/22
77.47.178.0/24
185.143.56.0/22
195.178.140.0/24
195.178.144.0/23
195.178.152.0/22
Signature Algorithm: sha256WithRSAEncryption
03:a0:76:42:07:70:2c:34:6c:10:2a:6b:4e:04:79:d1:a9:e8:
04:e1:19:f8:63:ab:04:84:02:7a:4a:18:71:87:e1:57:61:0e:
db:73:a2:8e:ce:08:da:c6:b2:f2:c2:be:b9:01:a8:5f:41:98:
e7:98:e1:b5:bc:bc:04:ba:2a:a0:d4:10:8d:49:fa:06:7f:25:
32:a8:d2:91:0f:ee:3b:83:7b:f2:46:12:fa:96:54:80:65:59:
7d:65:e7:93:8a:a6:3e:f7:f8:31:61:37:12:d7:35:f5:93:a8:
b9:c2:86:e5:59:2e:de:2e:07:ca:4e:41:d7:2e:72:6d:37:9e:
8d:75:f6:42:1a:1e:45:c8:bb:13:bf:47:a7:0f:08:71:88:f8:
41:41:83:0a:ae:48:a7:37:fa:27:99:c9:d8:4c:d5:8f:c4:cd:
14:d3:90:64:53:3a:f0:b1:5e:ec:5f:0a:74:27:12:83:6d:68:
9b:c4:8b:fb:10:00:9f:72:3b:19:76:5a:ee:5c:0d:0b:c0:8a:
cc:4b:f2:91:8d:ee:54:81:92:3d:82:aa:a6:25:75:80:36:41:
2a:d7:a8:12:ce:ba:af:74:5e:d0:9a:84:87:0d:f0:b2:2c:62:
c6:5c:90:4a:8f:2c:04:5b:bd:4d:00:a8:6a:6f:99:ca:33:8d:
2a:8d:68:ae
-----BEGIN CERTIFICATE-----
MIIFITCCBAmgAwIBAgISAYmsqjZKTBJpm5XxeSoeX2ASMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE5NDI2MzI1YWNiOGNlNjA5YTY4NmZhNjU1YjA1ODk2ODgw
OWIzNDYwHhcNMjMwNzMxMTU1NjIzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4NTk2MjIwMzYzYzUwOGFlYTMwZjUyZTc1ODM0NzEzODljNzcwN2Y0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmQyxLSI1k+3EcWFO8ZBYFbgqAF1K
kdn4DBG2IXtmNCKLKkzRR1qDQ9CDgs/B0JzmLuZloFstEm1OIfF8Wd76j25NEuME
FHj7m5U8EZBVpFaw81Xr8RbpRMAPVASPxGwOtqLT7dxeTZvMpk+HR+NIq4Eq+4N+
16LYlIeYqfeL5/h4cBUAmNaIKPTmLLHV4pF08uMNrgPA+KyR8pXBeLEwrUIASAAh
OT+/qJRrI231AyjW24g8XJAy4ji4xSPkRgNfWKAhH1md+fK/o09IvrLI5kEiJgII
TfvwW6XXZF2DoXER0vdFSE+Hk1RnUNFggn8a+Xq/uI66FETWTE7VARCEWQIDAQAB
o4ICLTCCAikwHQYDVR0OBBYEFIWWIgNjxQiuow9S51g0cTicdwf0MB8GA1UdIwQY
MBaAFBlCYyWsuM5gmmhvplWwWJaICbNGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR1VKakpheTR6bUNhYUctbVZiQllsb2dKczBZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS84YjZmYjAtYTg3NS00OTQ3LThhZTQt
MDNmNGM3MTEzYzM0LzEvaFpZaUEyUEZDSzZqRDFMbldEUnhPSngzQl9RLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS84YjZmYjAtYTg3NS00OTQ3LThhZTQtMDNmNGM3MTEzYzM0
LzEvR1VKakpheTR6bUNhYUctbVZiQllsb2dKczBZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEMGCCsGAQUFBwEHAQH/BDQwMjAwBAIAATAqAwQATS+PAwQC
TS+cAwQATS+yAwQCuY84AwQAw7KMAwQBw7KQAwQCw7KYMA0GCSqGSIb3DQEBCwUA
A4IBAQADoHZCB3AsNGwQKmtOBHnRqegE4Rn4Y6sEhAJ6Shhxh+FXYQ7bc6KOzgja
xrLywr65AahfQZjnmOG1vLwEuiqg1BCNSfoGfyUyqNKRD+47g3vyRhL6llSAZVl9
ZeeTiqY+9/gxYTcS1zX1k6i5woblWS7eLgfKTkHXLnJtN56NdfZCGh5FyLsTv0en
DwhxiPhBQYMKrkinN/onmcnYTNWPxM0U05BkUzrwsV7sXwp0JxKDbWibxIv7EACf
cjsZdlruXA0LwIrMS/KRje5UgZI9gqqmJXWANkEq16gSzrqvdF7QmoSHDfCyLGLG
XJBKjywEW71NAKhqb5nKM40qjWiu
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:09:38 2024 by rpki-client on console-ams.rpki-client.org