Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/soaTrnluK3e3UOR36XAgEvk3tO0.roa
File: soaTrnluK3e3UOR36XAgEvk3tO0.roa (raw, json)
Hash identifier: wvZ+Bt2rXUZeKMsqcv9NYgK9HpC/SXC/fVvim52OsmA=
Subject key identifier: B2:86:93:AE:79:6E:2B:77:B7:50:E4:77:E9:70:20:12:F9:37:B4:ED
Certificate issuer: /CN=19426325acb8ce609a686fa655b058968809b346
Certificate serial: 018FBB5CA81C7B8B87E15C9B399BAD0390D2
Authority key identifier: 19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/soaTrnluK3e3UOR36XAgEvk3tO0.roa
Signing time: Mon 27 May 2024 18:42:42 +0000
ROA not before: Mon 27 May 2024 18:42:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 208485
IP address blocks: 77.47.148.0/24 maxlen: 24
77.47.178.0/24 maxlen: 24
77.47.242.0/23 maxlen: 24
195.178.146.0/24 maxlen: 24
212.111.207.0/24 maxlen: 24
212.111.216.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 03 Jun 2024 12:08:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:bb:5c:a8:1c:7b:8b:87:e1:5c:9b:39:9b:ad:03:90:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19426325acb8ce609a686fa655b058968809b346
Validity
Not Before: May 27 18:42:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b28693ae796e2b77b750e477e9702012f937b4ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:1e:7c:92:9d:fc:9a:b4:1f:d7:fb:46:e0:f3:
0a:f9:80:fb:99:ab:82:3b:4c:60:f9:ac:02:57:15:
ab:b9:41:f1:ac:26:7b:75:ee:e5:a6:cd:de:e0:25:
26:13:9f:ce:74:89:2e:16:3e:95:9a:03:b1:5e:17:
f4:ba:c4:f2:b3:d4:b8:5b:3d:f6:04:87:06:8c:61:
0b:d3:a4:82:10:62:78:3f:8d:88:81:77:03:8c:d6:
b3:21:9e:65:04:16:dd:4b:c9:92:dd:8f:06:d7:70:
8e:87:e8:df:d5:27:d6:fc:4b:96:ea:32:26:4d:8d:
40:4f:8c:c3:8e:d3:17:83:64:01:6a:a9:87:d7:6b:
b4:3a:d5:9f:8d:f5:db:5c:22:d1:f8:eb:88:95:7d:
04:ca:5b:a7:50:40:15:37:ed:0c:a0:7c:9e:2f:b3:
90:f9:ea:d0:34:60:99:1e:98:d8:f6:b2:d2:69:4e:
6b:a5:57:bf:dd:35:08:11:b8:4f:f8:58:e8:9a:d5:
13:35:cc:af:9e:2c:8e:f6:20:1d:94:4a:00:e8:27:
b7:92:73:3d:80:18:be:95:8a:2c:76:f7:e0:11:d8:
96:93:09:e7:41:44:e2:6c:07:db:3a:8d:3f:69:c0:
2d:8e:1e:c3:1e:f4:02:7a:07:71:0d:aa:eb:d4:e6:
8f:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:86:93:AE:79:6E:2B:77:B7:50:E4:77:E9:70:20:12:F9:37:B4:ED
X509v3 Authority Key Identifier:
keyid:19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/soaTrnluK3e3UOR36XAgEvk3tO0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/GUJjJay4zmCaaG-mVbBYlogJs0Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.47.148.0/24
77.47.178.0/24
77.47.242.0/23
195.178.146.0/24
212.111.207.0/24
212.111.216.0/23
Signature Algorithm: sha256WithRSAEncryption
7a:32:73:62:83:bf:06:02:f7:0e:12:13:57:0b:b4:75:97:4a:
88:a3:3f:2c:0c:52:52:ae:34:a5:d6:25:4a:4a:2f:ea:25:94:
fb:62:68:1a:6f:70:9c:66:ed:d2:0f:ba:04:aa:28:31:68:b7:
3d:28:42:d9:52:5f:ae:07:44:fd:0a:4e:a2:29:05:b8:12:31:
ae:24:e1:5f:c7:aa:84:f7:41:3b:75:f6:6f:2a:08:63:6c:68:
69:48:15:43:2d:4f:7f:03:a9:ee:75:f4:09:47:42:33:de:e3:
28:6d:ce:16:19:c9:17:f8:48:b5:d3:33:54:53:2c:6e:dc:26:
f1:d3:79:ad:bc:b5:2f:b2:c7:a3:d5:5a:95:c8:ae:af:b9:71:
6a:6e:ce:c0:83:3f:8e:73:2e:e0:10:14:b3:77:48:9c:18:ce:
8a:46:da:21:4c:70:cf:9c:f5:74:51:01:a1:1e:fa:bd:0b:ae:
f8:51:fd:a1:24:44:68:63:a0:e7:a8:ca:fc:1a:bd:79:6b:b2:
d9:88:d4:59:58:e3:2a:dc:50:92:c1:52:cc:92:c4:9d:ec:e1:
55:ec:d3:f4:7b:51:61:3b:03:e5:d0:5e:90:fc:9f:c3:da:e3:
92:8e:c7:4b:7a:07:7a:05:13:3c:ec:9c:25:3f:61:27:da:ce:
f9:db:85:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:09:38 2024 by rpki-client on console-ams.rpki-client.org