Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/H9CJz8_bdnrvRizrjFe2xSOVmS4.roa
File: H9CJz8_bdnrvRizrjFe2xSOVmS4.roa (raw, json)
Hash identifier: YhSQH++tmXq72RE6NkbSsHO4TPn5HeXJRA3tOtYsrpI=
Subject key identifier: 1F:D0:89:CF:CF:DB:76:7A:EF:46:2C:EB:8C:57:B6:C5:23:95:99:2E
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018C1B3A19C6545F9D83D70B650F26B6D1F7
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/H9CJz8_bdnrvRizrjFe2xSOVmS4.roa
Signing time: Wed 29 Nov 2023 13:17:21 +0000
ROA not before: Wed 29 Nov 2023 13:17:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35830
IP address blocks: 77.81.65.0/24 maxlen: 24
45.88.13.0/24 maxlen: 24
89.47.55.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:1b:3a:19:c6:54:5f:9d:83:d7:0b:65:0f:26:b6:d1:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Nov 29 13:17:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1fd089cfcfdb767aef462ceb8c57b6c52395992e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:94:df:0e:6c:59:b3:10:9e:d8:7b:e3:6d:78:
0f:da:45:04:a4:9a:0f:e8:63:91:f8:ec:b5:58:b6:
50:1e:57:86:de:e6:40:1f:e4:5a:aa:3e:d4:2e:ab:
f1:83:79:3f:42:3e:93:a0:09:b0:36:99:e8:3f:4d:
82:9c:04:f5:ce:48:9b:7a:e7:7e:41:ee:95:fd:f3:
f9:f0:ec:89:91:df:cb:e2:e6:7d:75:5f:6a:0d:b9:
b9:46:03:f9:a7:3d:ff:a5:f3:e6:1c:d0:f6:77:d5:
8f:97:18:7d:cc:3d:5e:00:cf:05:61:ba:aa:e9:4b:
8b:a0:e8:4f:f1:0d:7f:e4:65:55:0f:36:0c:09:a4:
c8:09:8b:04:b6:f6:04:bf:6f:0c:52:23:fe:e3:68:
3b:32:a1:03:23:1f:5d:1c:61:2a:ce:68:93:b2:75:
1a:96:ea:5f:65:07:f2:2e:e8:2b:db:ab:70:ae:31:
e3:c2:7e:78:ec:26:e5:cb:fc:86:c4:2f:15:e8:de:
63:d8:6a:f4:b2:f1:ca:8d:b0:b2:ee:00:d5:2d:85:
4f:a2:de:db:b9:c9:35:20:b6:37:e6:00:cf:85:4e:
d8:ad:05:94:68:be:d8:f1:11:0d:ee:d7:34:3f:44:
60:59:51:8f:28:d4:53:34:66:aa:46:54:52:d5:36:
ce:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:D0:89:CF:CF:DB:76:7A:EF:46:2C:EB:8C:57:B6:C5:23:95:99:2E
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/H9CJz8_bdnrvRizrjFe2xSOVmS4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.88.13.0/24
77.81.65.0/24
89.47.55.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:17:d0:3d:ad:8d:d2:e3:3b:ec:a1:33:c1:03:23:cd:c5:58:
16:a6:5d:76:e4:62:5c:fc:02:6b:0c:d4:97:20:d0:83:38:25:
97:6c:f6:21:e9:18:7b:4d:19:27:11:40:c8:9d:27:e8:04:b5:
23:02:59:45:98:4d:16:4b:59:12:eb:79:ce:b0:33:ee:ba:98:
87:20:ad:f0:7f:d6:a8:8e:06:a4:fb:a8:34:7e:dd:23:42:17:
50:99:35:c3:f8:1c:ce:87:cf:51:a0:d2:af:68:54:d8:85:98:
6b:6f:a5:34:0d:31:50:57:fe:86:fd:45:4d:a9:80:08:86:0e:
82:c4:0a:35:5b:d9:d1:37:d9:6f:5c:be:a5:68:ff:0c:99:26:
1d:d7:62:bd:45:8c:bd:ee:5e:36:01:fd:0f:3e:4a:9a:76:b4:
0b:ff:10:10:67:44:ee:d2:f1:b5:f4:71:a4:68:e0:af:aa:39:
2c:88:52:f3:48:60:ec:81:c5:f3:ae:8c:7a:a7:dc:62:f0:2a:
fd:ea:fb:e2:a1:e2:66:06:62:a9:b9:2c:d8:42:00:f8:ce:e5:
73:88:5c:05:31:9c:02:df:f3:ea:a2:5b:a0:9f:d9:68:0f:6c:
70:e4:1a:a8:43:17:61:39:56:7d:c9:41:4b:82:67:25:ce:32:
9f:05:38:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:12 2024 by rpki-client on console-ams.rpki-client.org