Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/3uO6toS5ukQyiRqMl8txBZqm4P8.roa
File: 3uO6toS5ukQyiRqMl8txBZqm4P8.roa (raw, json)
Hash identifier: hh6GAKD1mdyD7vL9GCX6Ip62Q3Cg4ULz3vTjftWh1kI=
Subject key identifier: DE:E3:BA:B6:84:B9:BA:44:32:89:1A:8C:97:CB:71:05:9A:A6:E0:FF
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 0189D8DCD4DD12D13A86BD36639A9020DC9C
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/3uO6toS5ukQyiRqMl8txBZqm4P8.roa
Signing time: Wed 09 Aug 2023 05:54:58 +0000
ROA not before: Wed 09 Aug 2023 05:54:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43260
IP address blocks: 188.213.0.0/24 maxlen: 24
77.81.65.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 13 Aug 2023 20:36:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:d8:dc:d4:dd:12:d1:3a:86:bd:36:63:9a:90:20:dc:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Aug 9 05:54:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dee3bab684b9ba4432891a8c97cb71059aa6e0ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:69:03:7d:6a:d6:8a:8d:be:2b:5f:bd:2c:8e:
9b:e6:c7:b1:eb:6d:bd:e4:6c:8c:2e:d0:9d:5a:f5:
e3:af:d5:7c:19:cd:64:af:3a:9c:1c:5d:3c:ed:62:
a7:c9:eb:53:14:c9:bf:42:b4:7f:97:29:a7:d6:4c:
a2:c8:1c:b7:9e:4b:49:ec:98:00:b4:19:94:f8:08:
e8:c4:b9:72:ae:00:86:fd:06:d0:54:7c:94:54:d9:
3d:e3:8f:40:28:a2:45:1f:74:54:04:ff:9f:b1:43:
3c:ec:45:46:9c:d2:b8:c9:23:1c:03:d3:27:09:f3:
0c:5c:fa:32:19:2f:d5:de:a2:d2:66:ad:ff:97:32:
3d:7b:1d:cc:24:91:08:70:c0:a1:46:bd:94:06:40:
2c:18:4f:53:c5:04:ae:88:c2:14:6e:57:80:81:e2:
3f:d5:32:f7:4f:37:dd:9f:55:b7:af:7a:3d:84:d4:
bd:25:57:08:e4:ac:1b:77:79:9d:80:13:5a:9c:4b:
6a:0e:7e:08:c7:56:0d:a9:17:74:d5:77:30:77:0a:
c7:fa:66:d9:f0:9a:39:08:3f:a5:da:13:51:f5:b3:
60:a7:80:a7:7b:15:8e:b6:17:e1:81:1f:1a:c1:d5:
a1:47:8c:e8:75:06:d5:54:a8:6c:d9:e1:72:45:d6:
5e:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:E3:BA:B6:84:B9:BA:44:32:89:1A:8C:97:CB:71:05:9A:A6:E0:FF
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/3uO6toS5ukQyiRqMl8txBZqm4P8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.81.65.0/24
188.213.0.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:5d:15:f7:b1:0f:fa:e8:13:b0:3e:ba:73:f1:1f:c8:ed:a6:
67:95:2e:7f:e0:dd:5e:64:61:94:07:0e:56:92:53:98:bb:78:
fe:7f:aa:ec:c8:d2:cd:94:a8:f1:84:5a:58:26:22:3f:04:bb:
c4:f2:90:5b:67:1b:61:0e:a1:82:83:2b:f1:5e:5b:35:04:ad:
d9:03:f3:67:e0:3e:03:b9:53:bd:fa:c0:5d:fa:dc:a1:7f:42:
7b:17:a9:72:73:bf:e7:da:01:05:27:6d:d8:b7:77:f4:01:a7:
53:f1:d5:35:72:de:30:95:ee:91:04:d4:30:16:c4:6d:4b:43:
31:99:94:af:20:e4:0c:3e:7c:09:5f:f0:2b:53:5e:fc:7a:d4:
4f:5f:0d:4b:6a:45:b6:9b:78:83:8d:9d:ff:ed:b3:34:7a:38:
b6:fd:c7:39:ec:c6:7c:5f:24:46:86:65:83:14:0d:40:98:ae:
a2:b4:63:65:68:f6:61:cf:75:3a:9c:25:20:eb:96:6d:1c:ba:
31:48:ff:79:00:fa:b0:30:eb:a3:26:cd:43:76:45:33:ae:14:
0c:05:31:a0:c8:65:6c:8d:10:8d:43:ce:34:73:2d:dc:80:dc:
90:47:cc:5a:7d:9b:41:f7:8d:a7:33:01:18:5d:61:a8:b1:d2:
e1:00:1a:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:06 2024 by rpki-client on console-fra.rpki-client.org