Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/qw4u5m2ZaKFKNT2dX8Jp7L1GOu0.roa
File: qw4u5m2ZaKFKNT2dX8Jp7L1GOu0.roa (raw, json)
Hash identifier: AxturdiZE8Yg4KGx88VvzXwjoRs15RZ0c/3IB8yFZt0=
Subject key identifier: AB:0E:2E:E6:6D:99:68:A1:4A:35:3D:9D:5F:C2:69:EC:BD:46:3A:ED
Certificate issuer: /CN=19426325acb8ce609a686fa655b058968809b346
Certificate serial: 0186FF60EC8C5A6AAB5B12AA0AD196870580
Authority key identifier: 19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/qw4u5m2ZaKFKNT2dX8Jp7L1GOu0.roa
Signing time: Mon 20 Mar 2023 14:16:27 +0000
ROA not before: Mon 20 Mar 2023 14:16:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3319
IP address blocks: 77.47.240.0/23 maxlen: 24
77.47.244.0/22 maxlen: 24
77.47.143.0/24 maxlen: 24
195.178.140.0/24 maxlen: 24
195.178.142.0/23 maxlen: 24
195.178.144.0/23 maxlen: 23
195.178.146.0/24 maxlen: 24
195.178.152.0/22 maxlen: 22
77.47.178.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 06 Apr 2023 16:25:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:ff:60:ec:8c:5a:6a:ab:5b:12:aa:0a:d1:96:87:05:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19426325acb8ce609a686fa655b058968809b346
Validity
Not Before: Mar 20 14:16:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ab0e2ee66d9968a14a353d9d5fc269ecbd463aed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:6d:3b:a6:08:5f:0b:3a:86:14:9a:60:73:90:
d5:2b:1d:ec:67:9e:58:c8:98:fb:cf:68:7c:95:04:
3f:aa:39:0e:1a:38:6c:18:1b:88:db:c6:ae:dd:93:
75:16:cd:f6:02:ae:b5:64:1f:74:76:7d:cd:13:fd:
a1:58:d7:17:a1:b4:cb:2e:31:91:10:e6:ef:21:c0:
c3:40:16:a6:9e:15:33:9c:e4:8b:00:63:be:7e:45:
ea:f1:5b:47:77:e9:a8:74:01:73:76:74:06:22:20:
20:62:d9:31:6b:3c:9c:3f:31:ed:f3:84:d8:59:10:
0e:ba:90:f3:da:b8:60:50:5e:ef:f8:3d:d4:d5:84:
dc:b1:d9:eb:b2:8c:d0:9d:f0:29:a3:cf:3b:c1:10:
93:1a:fc:02:b9:76:c0:07:87:d7:ea:29:57:49:9a:
d4:82:49:87:9e:9a:6f:58:7a:65:02:06:80:2e:70:
02:9f:c8:16:c0:56:44:63:e3:b7:d5:78:5b:d5:ea:
32:36:77:83:89:50:46:af:2a:93:dd:6e:2b:00:83:
c9:01:1e:e9:6f:85:fe:6a:98:66:55:80:a5:dc:4c:
bb:2a:02:6b:ed:8b:08:82:6c:16:98:0e:1d:5a:4a:
88:12:33:ea:b2:26:f6:0e:b9:c1:e2:d4:26:53:10:
b3:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:0E:2E:E6:6D:99:68:A1:4A:35:3D:9D:5F:C2:69:EC:BD:46:3A:ED
X509v3 Authority Key Identifier:
keyid:19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/qw4u5m2ZaKFKNT2dX8Jp7L1GOu0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/GUJjJay4zmCaaG-mVbBYlogJs0Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.47.143.0/24
77.47.178.0/24
77.47.240.0/23
77.47.244.0/22
195.178.140.0/24
195.178.142.0-195.178.146.255
195.178.152.0/22
Signature Algorithm: sha256WithRSAEncryption
a6:17:3d:67:bc:d1:c7:af:a5:8e:c2:a0:f9:70:2e:e7:dd:ef:
e2:25:92:ab:ed:f2:3d:61:a5:50:5e:8e:54:c6:ee:84:07:c4:
7c:e9:72:35:4b:b8:d4:48:5e:bd:16:a0:98:b1:c3:ae:2e:ae:
a3:8e:59:b0:a5:b3:ee:29:60:12:08:b5:9d:20:c3:44:d2:c4:
fe:60:ee:5e:6f:4a:0c:c0:72:b7:20:cb:c6:b7:29:53:f1:65:
3f:83:35:26:6c:2a:22:19:cb:4b:3b:cb:8c:e8:71:51:6e:5a:
1b:0d:2a:ff:f1:76:f1:63:a6:81:93:ce:41:c5:fe:49:cd:29:
93:83:70:ab:d3:f0:e9:c1:2d:08:77:4b:ec:e8:6a:3a:19:f3:
05:43:0c:69:d4:ac:3f:e2:ab:2c:0f:f0:c8:41:d6:22:da:b2:
39:d3:f4:4d:d7:cc:f4:49:10:b1:97:16:ac:56:0c:09:3e:13:
7f:2e:2c:51:67:25:e6:22:90:66:92:13:7f:72:d1:66:9f:f8:
36:a7:bf:6f:8d:0d:7f:d2:97:bf:ac:43:77:6e:e5:b2:76:1a:
10:24:1b:f4:8d:f4:bc:6e:4e:e9:e3:db:2c:13:52:a1:fc:bb:
f3:f7:1f:dd:9a:da:1f:0f:92:71:e3:70:11:e5:b5:fd:9e:09:
89:f7:54:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:09:38 2024 by rpki-client on console-ams.rpki-client.org