Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/_4pD_bIJv_VqPQpA7xrXpwg8nFI.roa
File: _4pD_bIJv_VqPQpA7xrXpwg8nFI.roa (raw, json)
Hash identifier: ovP/sPZlRsTvDVNqNu9acHypmnEMsGBd26pQVw3t5JI=
Subject key identifier: FF:8A:43:FD:B2:09:BF:F5:6A:3D:0A:40:EF:1A:D7:A7:08:3C:9C:52
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018C907A3949519B6BB18CE568B0608F1575
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/_4pD_bIJv_VqPQpA7xrXpwg8nFI.roa
Signing time: Fri 22 Dec 2023 07:42:58 +0000
ROA not before: Fri 22 Dec 2023 07:42:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 147287
IP address blocks: 86.107.51.0/24 maxlen: 24
91.132.49.0/24 maxlen: 24
77.81.182.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 26 Dec 2023 06:25:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:90:7a:39:49:51:9b:6b:b1:8c:e5:68:b0:60:8f:15:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Dec 22 07:42:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ff8a43fdb209bff56a3d0a40ef1ad7a7083c9c52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:ac:c9:02:f5:60:6c:dc:34:0d:38:db:f3:fe:
fc:cf:4a:9c:d3:72:58:c0:2b:55:a4:e2:eb:2c:29:
bf:72:e5:5d:df:f9:e7:8f:ec:6a:48:72:5e:15:25:
de:47:ed:66:b5:16:82:88:fe:2a:9d:61:a2:eb:ce:
8d:e4:ea:8e:a5:c4:a6:5d:b6:43:d3:bd:89:af:ad:
81:16:b3:85:22:b1:60:57:9a:90:47:81:96:2b:25:
63:51:db:7a:80:50:e6:dc:5e:e1:cb:7e:9d:ce:27:
b1:6d:fe:32:16:48:da:77:f5:53:87:0d:cb:2a:12:
c0:d0:3c:77:91:b6:0c:d4:1e:64:1e:82:a6:43:3c:
70:d7:a9:40:fb:b4:af:39:24:25:cf:6f:3a:77:d0:
e8:2c:4d:46:74:2c:a2:65:31:d2:1b:af:f0:e6:f5:
f9:86:83:89:28:d0:49:37:ff:4e:fa:96:ff:af:0b:
55:f3:ba:f5:26:df:7d:ac:5d:ca:b4:00:a1:fb:f9:
81:42:11:5f:f9:fb:e3:1b:40:19:11:cf:98:c3:a7:
1b:fb:88:a4:ba:b5:e1:72:3d:ba:d2:f7:fd:f4:6e:
dd:6e:a1:e0:13:6e:bf:1f:9a:5d:2b:1d:ff:ef:16:
5b:b6:a9:be:47:71:fa:20:9d:48:76:c5:25:ec:37:
0f:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:8A:43:FD:B2:09:BF:F5:6A:3D:0A:40:EF:1A:D7:A7:08:3C:9C:52
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/_4pD_bIJv_VqPQpA7xrXpwg8nFI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.81.182.0/24
86.107.51.0/24
91.132.49.0/24
Signature Algorithm: sha256WithRSAEncryption
15:11:e1:56:e9:6d:6d:36:ab:24:88:8d:c7:b4:ac:52:e0:2c:
6d:fd:47:28:cd:99:57:06:60:09:e4:4a:37:4b:f0:7b:b3:6d:
83:aa:e9:44:ae:46:ba:db:82:55:19:17:b0:78:de:b6:48:fe:
9f:24:1d:85:74:cf:db:fd:f0:00:36:98:2f:ea:38:9d:9b:b3:
14:a3:9e:08:39:85:d5:04:fb:f4:51:84:39:60:01:8f:76:c9:
53:bb:1c:7c:c1:f3:9e:ec:57:10:6d:b9:71:82:3a:f5:ca:73:
9d:a0:46:55:96:92:8e:f7:1b:c8:9d:13:7d:4f:cf:f2:9c:0d:
9e:ac:eb:66:bf:f9:e0:be:a3:9e:ba:2e:9b:78:5a:72:a8:7f:
13:bd:ef:29:a1:c4:15:54:10:2b:27:a8:1b:78:ad:ec:98:52:
cc:29:0b:3c:ab:4b:9e:84:5c:3d:96:c9:a6:fb:cf:d0:a2:0e:
8b:47:3f:c8:b6:6f:27:25:19:4c:ab:08:c1:59:6f:05:40:e8:
3f:25:5a:9a:55:6e:35:1f:7b:18:71:f3:ac:0a:93:ff:01:36:
77:03:ce:20:dc:a8:0e:a5:02:6c:28:7f:63:47:85:55:5c:38:
3a:7d:93:39:b7:44:8a:fd:ac:34:cc:1e:be:88:5f:d6:85:6d:
fe:54:4c:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:13 2024 by rpki-client on console-ams.rpki-client.org