Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/8c51cb-a3bd-476d-880f-a96c6266abdb/1/I38HMLXAVs49-Nkl52kS6Ajkj2A.roa
File: I38HMLXAVs49-Nkl52kS6Ajkj2A.roa (raw, json)
Hash identifier: Yzx+Y5DBV27Rc1t8yTF3/47JRoTaMfKD++6RQR7oZGM=
Subject key identifier: 23:7F:07:30:B5:C0:56:CE:3D:F8:D9:25:E7:69:12:E8:08:E4:8F:60
Certificate issuer: /CN=57182aab5ad9efa380a6c6f06c016e158be977bc
Certificate serial: 018856AFD7E3A9CB3059A50E6664CFC64702
Authority key identifier: 57:18:2A:AB:5A:D9:EF:A3:80:A6:C6:F0:6C:01:6E:15:8B:E9:77:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Vxgqq1rZ76OApsbwbAFuFYvpd7w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/8c51cb-a3bd-476d-880f-a96c6266abdb/1/I38HMLXAVs49-Nkl52kS6Ajkj2A.roa
Signing time: Fri 26 May 2023 06:12:24 +0000
ROA not before: Fri 26 May 2023 06:12:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49234
IP address blocks: 77.87.224.0/22 maxlen: 22
77.87.224.0/21 maxlen: 21
77.87.228.0/22 maxlen: 22
193.30.80.0/24 maxlen: 25
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:56:af:d7:e3:a9:cb:30:59:a5:0e:66:64:cf:c6:47:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57182aab5ad9efa380a6c6f06c016e158be977bc
Validity
Not Before: May 26 06:12:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=237f0730b5c056ce3df8d925e76912e808e48f60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:84:21:55:7a:c6:3d:2d:ac:2a:ae:3c:b4:ca:
50:42:5b:2a:90:f3:ce:76:85:88:df:32:0e:a1:d8:
ec:e9:3e:75:94:25:fa:03:5c:2c:91:90:c0:f0:59:
6a:be:36:fa:30:70:36:76:a5:bd:36:88:65:5e:82:
3e:03:86:0a:18:6d:1b:0c:d6:62:0b:32:e3:ca:fe:
bb:88:e7:47:77:82:e8:e8:df:c2:a3:91:9a:1b:ed:
69:6b:da:81:83:2a:38:84:a2:aa:3f:de:bf:4f:a9:
fb:5d:86:7a:f6:b9:b3:2c:c1:0a:63:ca:da:e1:d2:
06:1c:4e:7b:51:c1:02:93:0e:ef:43:2f:1a:2b:4c:
82:b1:a6:fb:3c:2b:53:ff:07:a2:88:8f:7d:84:67:
7e:be:c5:e1:14:b4:26:da:9e:02:ab:29:3a:39:bc:
22:b3:7d:a0:cd:86:88:62:7e:b6:2c:8d:f5:72:3b:
13:55:6b:57:2e:b0:f9:f6:6f:a5:47:43:3a:11:61:
5f:26:2c:5b:a6:e4:bb:eb:42:e8:7e:c2:96:39:da:
3b:ab:f4:54:b3:b0:50:d3:91:1e:4b:55:58:17:3d:
c3:32:6a:8d:94:46:53:01:10:7a:18:19:8e:2b:3b:
61:44:56:af:fa:e1:81:c8:cd:d7:65:87:60:ed:bf:
44:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:7F:07:30:B5:C0:56:CE:3D:F8:D9:25:E7:69:12:E8:08:E4:8F:60
X509v3 Authority Key Identifier:
keyid:57:18:2A:AB:5A:D9:EF:A3:80:A6:C6:F0:6C:01:6E:15:8B:E9:77:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Vxgqq1rZ76OApsbwbAFuFYvpd7w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/8c51cb-a3bd-476d-880f-a96c6266abdb/1/I38HMLXAVs49-Nkl52kS6Ajkj2A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/8c51cb-a3bd-476d-880f-a96c6266abdb/1/Vxgqq1rZ76OApsbwbAFuFYvpd7w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.87.224.0/21
193.30.80.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:b4:4a:b4:2a:b1:ae:90:2d:c1:87:8d:91:01:7d:81:c1:63:
40:05:31:fd:b6:a0:c1:4a:27:b8:cb:5d:62:63:ed:3c:a5:bd:
ab:d1:f1:4d:5c:80:a4:de:c4:af:07:ce:f8:36:c6:b8:1a:9f:
73:6a:04:01:40:6b:f3:0d:47:e7:4d:3d:45:ca:80:90:d4:f7:
39:ee:eb:91:43:36:7c:c2:cd:6b:de:76:c0:02:ae:26:fa:bd:
00:9f:45:94:0c:f3:16:f6:2a:92:e6:ac:a2:77:d4:4f:68:9d:
13:91:90:23:20:51:25:eb:ef:16:e3:9f:7f:25:be:07:f3:93:
a8:f4:58:df:f6:05:00:f0:09:ed:92:4e:c8:e7:95:54:05:c4:
e3:42:02:4c:9c:84:f6:d6:78:ed:9d:5e:ea:b8:be:4f:39:a6:
a7:e9:fd:40:9c:67:f8:31:31:e3:a8:2c:aa:0c:55:17:1f:c1:
dd:98:9a:e9:a0:0a:88:c6:4d:af:97:ea:50:03:0c:98:84:59:
2a:4f:e6:0a:eb:88:e6:4a:02:c2:fd:9e:bc:ad:97:a3:11:fd:
98:36:26:ca:61:c6:85:57:89:8f:7a:b6:a9:29:75:08:5c:3c:
da:f7:c7:f9:a1:b3:3e:ba:c3:0b:71:bc:bc:01:a2:bb:6c:11:
f2:f0:32:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:30 2024 by rpki-client on console-ams.rpki-client.org