Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/iYFkO2YpvQylBrtwIU-tlGYol0A.roa
File: iYFkO2YpvQylBrtwIU-tlGYol0A.roa (raw, json)
Hash identifier: 6FVVjzNpj3xARjzmpR/LmY1xNFie7s9tm4dqP1c9FGI=
Subject key identifier: 89:81:64:3B:66:29:BD:0C:A5:06:BB:70:21:4F:AD:94:66:28:97:40
Certificate issuer: /CN=19426325acb8ce609a686fa655b058968809b346
Certificate serial: 0193B5A53265C1BE8264FB8C020DA7352CCF
Authority key identifier: 19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/iYFkO2YpvQylBrtwIU-tlGYol0A.roa
Signing time: Wed 11 Dec 2024 12:15:22 +0000
ROA not before: Wed 11 Dec 2024 12:15:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 3319
IP address blocks: 77.47.143.0/24 maxlen: 24
77.47.148.0/22 maxlen: 24
77.47.156.0/22 maxlen: 24
77.47.212.0/23 maxlen: 24
77.47.240.0/23 maxlen: 24
77.47.243.0/24 maxlen: 24
77.47.244.0/22 maxlen: 24
185.143.56.0/22 maxlen: 24
195.178.132.0/24 maxlen: 24
195.178.133.0/24 maxlen: 24
195.178.134.0/24 maxlen: 24
195.178.135.0/24 maxlen: 24
195.178.144.0/23 maxlen: 23
195.178.146.0/24 maxlen: 24
195.178.147.0/24 maxlen: 24
195.178.148.0/23 maxlen: 24
195.178.152.0/22 maxlen: 22
195.178.156.0/24 maxlen: 24
212.111.207.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 11 Dec 2024 18:11:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:b5:a5:32:65:c1:be:82:64:fb:8c:02:0d:a7:35:2c:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19426325acb8ce609a686fa655b058968809b346
Validity
Not Before: Dec 11 12:15:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8981643b6629bd0ca506bb70214fad9466289740
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:25:ed:8e:81:19:98:98:50:e6:58:da:59:84:
3b:67:e6:23:e8:f0:24:ea:6d:da:5f:b6:b1:9d:32:
85:a0:b3:59:6e:f5:c4:fa:40:a9:18:f6:8e:ce:bd:
bf:f8:ff:42:ac:51:d0:0b:79:20:f1:48:71:b3:98:
ad:41:f4:c3:52:18:1a:ec:d5:e1:60:f9:c0:0d:1d:
74:b6:fd:83:0f:09:52:eb:56:5e:6e:b0:02:db:3d:
0f:05:ea:cc:aa:75:68:9b:db:b6:0c:86:22:d5:f5:
d2:fd:94:1e:e2:df:53:cd:73:e8:71:59:68:86:59:
0c:0d:0b:e2:fa:c7:04:24:88:e5:d0:0c:80:7e:a3:
fa:bd:06:f2:54:76:5b:fe:af:45:69:da:52:f1:5b:
87:17:36:f3:16:6e:ce:de:8f:62:91:1c:1d:ad:fb:
62:39:e3:ed:a3:cf:b1:b0:2a:6c:25:d3:8a:58:1e:
1d:9a:ba:34:8e:27:31:ba:10:df:f9:7c:37:a4:e0:
ad:5c:9c:92:1d:ce:df:d8:55:e0:25:7d:9c:9b:7b:
e0:aa:8b:5d:a1:d3:6d:77:a9:ee:05:8e:86:9e:b6:
a2:b7:a2:c9:6e:0e:3f:0e:72:e6:84:2b:0a:24:68:
88:98:a1:de:a4:bd:e8:98:10:c5:99:46:27:9b:90:
bb:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:81:64:3B:66:29:BD:0C:A5:06:BB:70:21:4F:AD:94:66:28:97:40
X509v3 Authority Key Identifier:
keyid:19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/iYFkO2YpvQylBrtwIU-tlGYol0A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/GUJjJay4zmCaaG-mVbBYlogJs0Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.47.143.0/24
77.47.148.0/22
77.47.156.0/22
77.47.212.0/23
77.47.240.0/23
77.47.243.0-77.47.247.255
185.143.56.0/22
195.178.132.0/22
195.178.144.0-195.178.149.255
195.178.152.0-195.178.156.255
212.111.207.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:97:71:8b:cc:1a:f6:c1:b5:77:61:33:3d:2d:84:42:71:01:
ce:ce:09:1e:ff:7a:90:3c:56:98:38:48:df:41:7b:12:ab:ef:
5d:28:b7:0c:cf:2c:cd:ef:65:7f:65:14:8a:63:96:3a:1e:39:
da:e3:2f:e6:2a:12:b3:a0:42:96:73:e1:98:13:13:6a:75:62:
a7:09:d4:6c:48:eb:09:cf:d5:89:14:da:31:de:87:53:40:a6:
fd:07:95:55:c6:b6:e0:41:a8:c4:60:8f:6d:f9:58:cd:49:8a:
d9:c9:83:0b:3d:67:a6:dc:71:46:8e:03:ee:f6:91:61:53:d7:
ca:85:b9:74:f2:97:c9:46:c6:eb:4f:7b:58:44:68:5d:d5:90:
6c:2a:b9:b1:74:92:08:7b:f0:f2:b7:c3:46:82:ef:b8:ad:82:
b9:bb:4b:d4:95:ad:8c:7f:8d:5c:bf:6a:3c:84:18:5b:a1:5e:
b8:af:e7:fd:24:e7:7e:d9:29:35:5f:79:fd:6d:a3:cf:2f:f4:
6c:de:f2:b9:db:6d:37:62:10:1d:24:ce:6a:93:b2:7d:7d:79:
01:62:34:fa:8f:e6:32:59:2b:72:04:bb:d6:ed:d8:fc:21:3f:
95:97:08:d5:41:f8:6f:d2:a9:c4:b6:0c:7a:46:c8:4e:50:db:
b9:c7:52:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 00:32:19 2025 by rpki-client