Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/e53de5-1b5f-4467-a68c-15fc0b68f844/1/IvYcL13Et1uu-G-54qpIOTS4QYU.roa
File: IvYcL13Et1uu-G-54qpIOTS4QYU.roa (raw, json)
Hash identifier: WWlPudkMa5HqRyUbXirIJav5oFpjKXCx73fHo6ut8Lc=
Subject key identifier: 22:F6:1C:2F:5D:C4:B7:5B:AE:F8:6F:B9:E2:AA:48:39:34:B8:41:85
Certificate issuer: /CN=da70c441fb892b8c9816534885069fcd3300c9a4
Certificate serial: 018752FAB481D7AA5C99A411FF971673B751
Authority key identifier: DA:70:C4:41:FB:89:2B:8C:98:16:53:48:85:06:9F:CD:33:00:C9:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2nDEQfuJK4yYFlNIhQafzTMAyaQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/e53de5-1b5f-4467-a68c-15fc0b68f844/1/IvYcL13Et1uu-G-54qpIOTS4QYU.roa
Signing time: Wed 05 Apr 2023 19:52:54 +0000
ROA not before: Wed 05 Apr 2023 19:52:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20853
IP address blocks: 77.105.166.0/24 maxlen: 24
77.105.166.0/23 maxlen: 23
77.105.167.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 17 May 2023 10:46:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:52:fa:b4:81:d7:aa:5c:99:a4:11:ff:97:16:73:b7:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da70c441fb892b8c9816534885069fcd3300c9a4
Validity
Not Before: Apr 5 19:52:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=22f61c2f5dc4b75baef86fb9e2aa483934b84185
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:d2:27:83:b0:da:1d:f2:99:f0:7c:ae:ca:1e:
5c:a2:e8:4f:82:e4:23:76:c4:db:aa:93:da:6f:3e:
a0:73:dd:c5:35:71:46:68:11:5b:86:d4:df:b4:b3:
62:9c:20:41:06:47:fe:a8:98:d5:e8:b9:5b:d2:4f:
e5:f7:51:8d:24:c5:d5:2b:17:76:7e:01:df:ec:dc:
9a:06:5a:5e:71:95:1f:bb:66:ef:8e:82:b6:93:42:
6e:d1:6c:64:d5:48:b5:18:c3:ad:b1:02:4f:25:37:
0a:54:aa:96:80:24:e0:f1:3d:83:40:7c:23:9d:15:
65:3a:51:b2:25:e7:0f:52:6a:62:1c:3c:a3:c7:e3:
bc:14:77:92:01:60:06:b4:52:bf:3b:cf:bb:e4:5f:
94:e7:fd:f9:18:f7:c8:0c:04:30:13:2b:4a:1c:6c:
6f:0c:d7:9a:cc:a5:b1:a3:a3:c0:8c:f5:53:56:ef:
0d:ea:ae:6a:af:d7:0b:96:e7:e8:b2:03:53:b4:21:
ac:58:c2:33:bd:4a:0b:bf:f4:51:3c:b4:b3:3c:d8:
f3:0f:5d:96:92:3b:ff:13:54:9f:ba:7f:94:ec:aa:
98:0a:6b:8a:56:18:df:9a:10:3c:91:0b:77:e5:5d:
9d:09:d5:c5:f0:53:7f:f3:ee:ef:66:49:43:91:25:
d7:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:F6:1C:2F:5D:C4:B7:5B:AE:F8:6F:B9:E2:AA:48:39:34:B8:41:85
X509v3 Authority Key Identifier:
keyid:DA:70:C4:41:FB:89:2B:8C:98:16:53:48:85:06:9F:CD:33:00:C9:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2nDEQfuJK4yYFlNIhQafzTMAyaQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/e53de5-1b5f-4467-a68c-15fc0b68f844/1/IvYcL13Et1uu-G-54qpIOTS4QYU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/e53de5-1b5f-4467-a68c-15fc0b68f844/1/2nDEQfuJK4yYFlNIhQafzTMAyaQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.105.166.0/23
Signature Algorithm: sha256WithRSAEncryption
46:60:b5:bd:8c:b9:53:90:08:8c:74:5a:1f:1c:e5:30:18:d9:
a3:28:6d:c2:de:bf:40:c0:23:dd:f5:3c:2f:dd:e7:48:17:bd:
12:7f:27:f1:a0:61:22:a3:78:2e:70:d6:a9:6f:76:c2:d2:07:
62:5a:9d:b5:c2:b1:3c:e1:6a:10:0d:f7:33:0b:20:bb:92:e0:
c2:5b:4b:fa:c4:f7:07:20:5d:51:c3:31:fd:b1:b4:6f:e6:56:
ee:45:4e:1e:d7:aa:e5:f0:15:1b:06:bc:31:31:56:11:1e:03:
6d:8e:a2:d4:61:97:96:dc:55:0b:e1:47:05:96:71:03:ad:25:
d5:18:05:1e:18:71:c8:b6:c7:b5:be:3e:f1:db:d3:bd:95:2f:
11:8e:ef:2e:09:34:a9:0f:fa:5a:55:8c:23:03:d9:42:2f:eb:
8f:b5:54:29:f0:2f:b8:d3:bc:67:55:28:9b:f5:2b:9e:c6:2c:
98:7f:19:67:50:1b:ba:d7:e4:08:28:81:ea:84:fd:fc:54:3b:
2b:15:12:7e:41:a5:56:6c:ef:d6:bb:16:66:5e:e1:38:91:c4:
f1:2a:1f:c7:6f:ff:06:b3:eb:49:eb:eb:78:8c:67:be:d0:6c:
15:db:05:ed:83:38:31:34:1a:a2:a0:67:b2:4b:30:16:11:e3:
74:73:0e:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:28 2024 by rpki-client on console-fra.rpki-client.org