Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/jZa5FmHCJ3fXPncQVyOxpaJySds.roa
File: jZa5FmHCJ3fXPncQVyOxpaJySds.roa (raw, json)
Hash identifier: Wug9c1oe8EVoySBXrb899iJHI3ntC8/jgNk03BaeQ/E=
Subject key identifier: 8D:96:B9:16:61:C2:27:77:D7:3E:77:10:57:23:B1:A5:A2:72:49:DB
Certificate issuer: /CN=19426325acb8ce609a686fa655b058968809b346
Certificate serial: 018678241A52BF4B7977AF09BB50D4D5351C
Authority key identifier: 19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/jZa5FmHCJ3fXPncQVyOxpaJySds.roa
Signing time: Wed 22 Feb 2023 08:01:17 +0000
ROA not before: Wed 22 Feb 2023 08:01:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43260
IP address blocks: 77.47.212.0/23 maxlen: 24
77.47.210.0/23 maxlen: 24
77.47.244.0/22 maxlen: 24
77.47.156.0/22 maxlen: 24
195.178.143.0/24 maxlen: 24
195.178.141.0/24 maxlen: 24
195.178.142.0/24 maxlen: 24
195.178.146.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 24 Feb 2023 08:01:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:78:24:1a:52:bf:4b:79:77:af:09:bb:50:d4:d5:35:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19426325acb8ce609a686fa655b058968809b346
Validity
Not Before: Feb 22 08:01:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8d96b91661c22777d73e77105723b1a5a27249db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:29:c2:92:95:f7:9d:42:be:c8:40:c9:c2:f8:
32:5e:6f:46:f1:29:a3:70:93:a3:e4:0a:23:52:28:
b1:00:ac:e8:1b:b4:3c:d6:97:3e:4a:c0:63:33:97:
63:f3:c5:0a:f0:4e:cc:e8:70:9b:ac:a5:01:09:c3:
a0:e8:e4:ab:a6:63:aa:65:87:19:2d:58:58:54:59:
87:a3:f5:42:0a:eb:4f:59:49:ac:9c:7b:45:46:a8:
05:0a:64:fb:ca:ed:4d:81:75:ff:fa:61:92:32:1f:
f2:8a:17:93:39:74:83:87:f7:31:e3:e7:63:eb:67:
66:49:21:22:00:6a:20:4d:c8:e6:3f:3c:55:43:50:
d1:5e:79:73:4f:88:81:f3:ce:53:38:50:d2:5d:2f:
b0:27:74:6d:a7:08:60:fc:fb:70:91:e1:0c:48:bd:
c2:ea:a4:ac:34:c5:12:16:aa:92:bd:91:1f:73:71:
f5:65:91:ad:66:da:54:22:c6:e3:df:ad:d0:cc:06:
19:3e:0d:f2:de:d3:0a:98:ad:c0:51:1f:79:8c:2d:
1e:27:14:6a:64:13:cb:5d:b4:21:cc:46:41:5f:20:
e8:79:07:8c:96:97:3b:96:5c:b9:c8:34:20:0b:2a:
36:60:cb:7e:f2:42:b0:80:51:b4:f2:e6:ce:3f:4f:
da:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:96:B9:16:61:C2:27:77:D7:3E:77:10:57:23:B1:A5:A2:72:49:DB
X509v3 Authority Key Identifier:
keyid:19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/jZa5FmHCJ3fXPncQVyOxpaJySds.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/GUJjJay4zmCaaG-mVbBYlogJs0Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.47.156.0/22
77.47.210.0-77.47.213.255
77.47.244.0/22
195.178.141.0-195.178.143.255
195.178.146.0/24
Signature Algorithm: sha256WithRSAEncryption
11:6e:88:6a:14:f4:86:c5:5d:f6:3b:78:4b:05:cc:65:ba:61:
f9:f0:46:3a:0c:37:76:15:84:5b:02:ee:e4:5f:4e:94:2b:4f:
e5:39:26:a4:1f:cf:97:fc:b3:59:ae:c1:a1:c5:84:09:88:c7:
6e:2c:b5:b5:37:2a:a0:6d:ec:d3:4d:a0:fa:ab:1c:35:29:7a:
d2:4c:40:f4:54:67:60:dc:ed:55:17:2d:0a:c7:1a:42:10:fc:
11:06:ee:91:11:d0:37:ee:94:70:e6:71:4c:bb:60:bc:f6:2d:
ab:88:ae:61:22:61:48:c9:f0:02:cf:67:f6:08:bc:a6:79:c7:
71:22:98:28:5c:c0:db:23:fa:da:e5:d2:0f:72:cd:76:78:80:
22:a4:40:e6:40:5e:cd:51:37:ea:08:6f:53:dc:f3:7f:79:61:
ef:54:1f:a7:1a:83:15:b7:7f:af:56:85:6c:4f:1b:2c:5a:b3:
ae:e3:da:f9:93:66:dc:d5:02:3f:85:7d:fe:ff:9d:26:e9:27:
00:0f:a1:a1:b5:d5:89:fe:d2:b6:0a:06:5d:e1:22:8e:73:61:
d6:f7:bd:7e:1f:7f:e4:81:22:d2:93:e5:17:c0:05:25:15:7a:
95:03:e5:76:37:f3:45:44:53:a0:70:e8:29:23:4b:a5:fa:2c:
0e:3e:ea:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:09:38 2024 by rpki-client on console-ams.rpki-client.org