Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/DqyQRI-68LfTwCHxDSN0JXRAzPE.roa
File: DqyQRI-68LfTwCHxDSN0JXRAzPE.roa (raw, json)
Hash identifier: yuuApWrJoGUuZNS+rE9Zi93cXfaMkmSnf2DM7Nqkrh8=
Subject key identifier: 0E:AC:90:44:8F:BA:F0:B7:D3:C0:21:F1:0D:23:74:25:74:40:CC:F1
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 0189F4222E428701D64903BE3257C284E487
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/DqyQRI-68LfTwCHxDSN0JXRAzPE.roa
Signing time: Mon 14 Aug 2023 13:00:28 +0000
ROA not before: Mon 14 Aug 2023 13:00:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203394
IP address blocks: 85.204.18.0/24 maxlen: 24
77.81.88.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 24 Aug 2023 12:53:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:f4:22:2e:42:87:01:d6:49:03:be:32:57:c2:84:e4:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Aug 14 13:00:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0eac90448fbaf0b7d3c021f10d2374257440ccf1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:62:6d:0e:d6:2f:79:fa:03:cf:40:e1:bb:14:
1e:db:e8:df:2b:f5:51:f0:5e:53:7c:86:70:a8:13:
0c:ea:ef:33:e2:b3:a8:e3:57:81:79:b3:8f:50:8e:
b9:e5:b9:4a:20:20:5c:f9:a2:26:fc:17:ba:a8:ad:
e1:83:d5:95:6b:01:33:90:0e:1b:42:db:8c:8e:77:
78:45:2d:45:fd:b7:14:d3:55:7d:8d:aa:cb:1b:0a:
7f:76:bc:ec:a4:1b:94:93:26:e1:bb:13:d5:83:3f:
bf:d4:04:ab:f0:5c:4e:56:69:a0:5b:b5:62:61:fe:
cc:5c:10:b0:f9:10:a6:3d:59:4c:2c:fb:8a:d1:06:
4f:8c:6d:0d:30:cf:66:a5:4d:ed:79:be:ab:d5:2a:
25:ea:9f:80:a4:bf:9f:82:67:bc:a9:47:9d:5e:74:
d6:1a:85:eb:7d:00:bf:54:34:a6:6d:40:9b:f8:85:
c7:0e:ca:97:26:bb:c3:92:4f:80:07:69:b0:60:41:
0e:8f:6f:68:fa:47:1f:8f:06:d1:46:d0:3d:32:29:
c6:8a:51:c6:23:08:f2:42:ba:c9:95:3b:b3:14:26:
24:71:6b:53:16:7a:9a:ff:6e:d6:42:bf:f9:39:32:
6d:79:cb:2d:96:96:f0:9c:6c:da:37:c6:d2:8c:53:
bb:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:AC:90:44:8F:BA:F0:B7:D3:C0:21:F1:0D:23:74:25:74:40:CC:F1
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/DqyQRI-68LfTwCHxDSN0JXRAzPE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.81.88.0/24
85.204.18.0/24
Signature Algorithm: sha256WithRSAEncryption
94:89:c6:2d:f8:c4:bd:ab:47:54:e7:a6:43:a5:1e:69:6b:43:
fd:16:b9:a4:78:34:b4:20:d5:6a:76:f0:86:a3:43:43:1d:06:
57:f9:8a:5a:b4:da:82:c9:2d:28:44:94:88:5a:80:4c:36:7c:
d8:9b:a4:4e:ac:ef:3a:a4:11:73:e9:a9:f1:9e:3e:fc:f9:76:
be:d6:c8:56:3c:5d:23:a5:9f:d7:99:1c:2b:c4:da:0b:52:8a:
2c:e3:bc:07:79:92:d2:7a:bb:ec:1d:39:08:c4:b4:b6:d4:a3:
10:8f:cf:80:1f:fb:1d:a3:94:10:2f:d8:40:05:5b:43:c9:d1:
f0:c9:3a:5a:7d:aa:6f:83:e1:1b:cb:0a:07:ee:12:9a:49:db:
30:c3:33:89:39:7a:17:2a:56:11:3c:dc:20:27:f2:0a:5b:f0:
71:a9:2e:df:7b:45:48:3a:d8:c0:27:fc:c3:a5:be:90:f7:78:
96:80:36:48:02:ca:74:fd:d6:1b:ab:77:5c:6e:5c:78:6f:c2:
12:9a:4a:e5:b6:f9:57:1b:5b:e2:5f:d0:24:98:7e:88:1f:b2:
76:97:ee:80:cb:1c:39:17:f5:96:7f:8b:b9:6a:2d:21:33:5f:
36:41:03:44:83:ce:f5:ad:bb:ad:1f:8b:2c:9b:cd:c3:de:5a:
9e:e2:bf:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:12 2024 by rpki-client on console-ams.rpki-client.org