Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/Plo4hF11CE4MVMB_jR44TYq6IRU.roa
File: Plo4hF11CE4MVMB_jR44TYq6IRU.roa (raw, json)
Hash identifier: YDzRWpBXcBh/gDOmbAwOGXpBAi7ASHQSx08HBnH8+Ks=
Subject key identifier: 3E:5A:38:84:5D:75:08:4E:0C:54:C0:7F:8D:1E:38:4D:8A:BA:21:15
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 01860375A8680340ED74D5806FA3874D3C57
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/Plo4hF11CE4MVMB_jR44TYq6IRU.roa
Signing time: Mon 30 Jan 2023 16:14:47 +0000
ROA not before: Mon 30 Jan 2023 16:14:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3507
IP address blocks: 89.37.192.0/24 maxlen: 24
77.81.100.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Feb 2023 10:52:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:03:75:a8:68:03:40:ed:74:d5:80:6f:a3:87:4d:3c:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Jan 30 16:14:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3e5a38845d75084e0c54c07f8d1e384d8aba2115
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:fa:71:64:ad:c8:c9:df:52:eb:d5:71:c9:ed:
39:fd:31:82:39:9a:fa:90:09:1e:bd:7c:67:15:62:
5b:a8:a2:6d:1b:bb:00:9e:55:78:17:a3:02:88:44:
81:42:49:5c:7c:4a:a1:aa:cd:7d:ac:9a:e5:05:64:
db:fb:7f:17:64:0a:72:44:d7:da:88:a5:6e:c2:97:
18:48:30:d2:3a:38:d7:0e:24:08:7b:cb:4b:66:2e:
dc:28:6e:91:3b:c3:d2:6d:ec:76:9d:86:6e:ff:1f:
1b:f8:a1:b4:b6:dc:22:e3:a6:08:7b:f1:03:0f:97:
6d:d0:d2:7e:f2:63:4e:c5:0e:de:65:be:a1:ba:a0:
ba:31:9f:09:87:b3:ca:9f:2b:e0:29:bc:6c:b3:6f:
4d:b2:b7:df:93:97:21:7f:61:46:2c:09:e3:3b:eb:
a5:ac:64:45:86:e9:eb:2d:23:25:18:8a:6f:4e:e3:
7d:df:75:be:79:5a:c1:f9:94:c2:d8:2a:83:ed:5b:
db:0b:db:cb:fd:c0:99:30:07:d5:09:2e:34:1e:96:
96:57:bf:2e:b1:f2:8f:26:39:1a:f9:4a:e3:7c:38:
14:b6:a8:0a:d2:fe:af:40:6f:58:d4:57:15:73:37:
55:1c:fa:58:4d:fa:90:ed:73:0c:34:2c:c9:53:fa:
84:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:5A:38:84:5D:75:08:4E:0C:54:C0:7F:8D:1E:38:4D:8A:BA:21:15
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/Plo4hF11CE4MVMB_jR44TYq6IRU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.81.100.0/24
89.37.192.0/24
Signature Algorithm: sha256WithRSAEncryption
52:44:0b:d6:d3:95:9f:f9:d1:4b:ba:ac:e2:84:63:7a:3b:88:
df:cb:21:a0:fc:f4:d9:a5:dd:29:63:36:cc:0e:e5:84:9a:c9:
0c:cc:aa:83:da:6c:ca:c5:bb:76:8f:f7:5b:70:77:bd:1e:f2:
35:cb:d1:66:a4:8f:e8:65:7a:72:f4:bb:02:6c:aa:bf:69:94:
1f:60:56:44:42:f7:85:41:9d:e7:c3:a7:32:5f:72:f9:e6:fe:
aa:69:9c:e6:1d:b7:62:14:0a:aa:60:a1:8c:7d:7a:8f:f8:ba:
e6:46:c3:4a:fa:85:32:d3:a7:9e:c6:7d:5e:67:d7:9c:72:2b:
b2:38:d7:55:9f:47:fb:0e:64:4d:85:57:f7:cd:fb:23:78:4f:
46:e2:84:83:7f:3c:68:f4:12:9f:b2:b3:93:c9:f7:d9:fe:f7:
dc:24:9a:cf:d7:c4:7f:61:c5:bd:6b:73:0d:a5:96:2d:e3:a4:
b4:c1:b2:7e:99:e7:0b:1b:53:5e:a3:bf:f5:f3:c2:a9:c3:96:
5f:cf:5e:2d:62:7c:09:3c:91:2c:a7:49:8d:d3:20:58:ed:5c:
91:cf:0f:0f:ee:77:5d:92:5a:35:15:25:a8:fa:84:6f:5d:cb:
e3:f5:98:96:6a:35:43:db:a5:c4:56:05:ec:c6:65:5d:00:ac:
f8:ee:e9:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:13 2024 by rpki-client on console-ams.rpki-client.org