Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/dxNVpofL4doA-ChoOaBAKQJY4Cs.roa
File: dxNVpofL4doA-ChoOaBAKQJY4Cs.roa (raw, json)
Hash identifier: CVKFmgWAJcoDp04YvyGthU9oQmbYOKOgOiSJbFaP694=
Subject key identifier: 77:13:55:A6:87:CB:E1:DA:00:F8:28:68:39:A0:40:29:02:58:E0:2B
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 0185725DB71D3F6CB4DDFA6FD1A90136F04F
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/dxNVpofL4doA-ChoOaBAKQJY4Cs.roa
Signing time: Mon 02 Jan 2023 12:03:42 +0000
ROA not before: Mon 02 Jan 2023 12:03:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 400377
IP address blocks: 94.177.145.0/24 maxlen: 24
94.177.51.0/24 maxlen: 24
176.126.174.0/24 maxlen: 24
77.81.88.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 03 Jan 2023 14:16:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:5d:b7:1d:3f:6c:b4:dd:fa:6f:d1:a9:01:36:f0:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Jan 2 12:03:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=771355a687cbe1da00f8286839a040290258e02b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:e6:e1:f5:36:e0:0e:3e:8e:70:3c:07:8c:a3:
03:fc:80:0e:2f:a5:d6:f6:39:0e:b4:31:7f:5f:d6:
4a:a1:1b:ce:c4:f6:21:21:1d:43:60:f6:63:47:70:
9c:f4:02:02:18:0d:f6:93:77:a6:b6:2d:db:9c:34:
6f:75:f7:36:07:21:ca:63:26:4d:ef:4f:fb:07:d1:
cb:a1:1b:35:d9:8f:46:18:c8:d8:a5:da:3e:91:88:
8f:c4:f4:c8:f3:86:eb:73:62:a9:68:77:47:a8:da:
bd:af:1a:0d:3e:74:c7:55:8b:b6:d0:7a:ba:a4:5d:
28:59:c2:ed:cf:ea:c8:53:1a:3b:fd:bd:80:21:c3:
20:36:ff:78:84:a5:79:87:b2:b0:20:c9:dc:72:ea:
12:df:bf:33:60:fb:34:7d:bf:08:85:34:51:c0:f8:
6e:0b:79:3b:95:99:34:74:9f:08:14:fd:8e:c2:86:
49:43:78:ce:73:01:5a:17:7a:a6:43:e9:33:98:29:
58:0e:c0:6c:d2:6e:db:b1:10:8c:ee:c7:bd:a3:ee:
8a:34:dd:3d:f4:05:a1:4f:e3:ce:df:2e:eb:02:62:
3c:3d:ac:23:87:61:a8:ca:f9:3b:38:4f:d8:1d:c1:
89:6c:9b:20:23:e1:ee:97:37:70:30:e2:c7:a1:2f:
46:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:13:55:A6:87:CB:E1:DA:00:F8:28:68:39:A0:40:29:02:58:E0:2B
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/dxNVpofL4doA-ChoOaBAKQJY4Cs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.81.88.0/24
94.177.51.0/24
94.177.145.0/24
176.126.174.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:d9:e4:48:eb:4d:1d:03:d8:ca:5f:00:91:d7:4b:59:6e:59:
fa:89:dc:e0:05:6f:24:c2:2e:ae:62:4a:44:de:b0:aa:be:d7:
1e:17:1a:2e:aa:a7:87:34:68:41:5f:e9:43:94:5f:c0:78:6c:
f7:f5:80:06:19:67:8f:fa:27:0e:48:38:c5:4a:5e:23:d4:66:
80:f4:1b:82:4b:74:f3:87:f5:f9:0e:74:87:20:27:64:b7:de:
dd:6d:95:e7:7f:b4:c6:80:5a:db:ac:b9:28:9b:4f:27:92:64:
0a:b3:ca:85:92:8a:ae:e3:da:4b:fb:40:71:10:a6:b9:1b:2f:
4a:71:a5:00:e0:2e:cd:83:26:14:7c:0d:45:0b:8d:a9:4b:32:
b7:5e:cd:37:e4:2a:f4:05:f5:bf:61:f9:67:78:f5:7e:9a:39:
55:cd:b4:cc:ea:af:01:7e:51:71:db:2a:5c:98:e1:d2:7f:2d:
e8:18:92:42:c8:49:e4:8f:19:fb:b4:3b:a6:5a:65:7b:03:13:
f8:4e:64:01:e2:18:49:8b:f4:b9:c9:c0:b4:a0:43:9f:5c:d6:
3e:53:d6:b2:51:7c:70:e5:e9:90:e2:81:a9:f4:e6:94:0b:82:
51:14:59:2a:6f:4a:d5:d8:fd:e7:08:45:52:26:ba:12:39:20:
dd:fd:b5:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:10 2024 by rpki-client on console-fra.rpki-client.org