Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/x-YdjHd06uQcYuXVgKprTjqMS5w.roa
File: x-YdjHd06uQcYuXVgKprTjqMS5w.roa (raw, json)
Hash identifier: 4FQOgywE9K+HHRwdKRA70yNMCQiujOeSB8gzdlgcdeo=
Subject key identifier: C7:E6:1D:8C:77:74:EA:E4:1C:62:E5:D5:80:AA:6B:4E:3A:8C:4B:9C
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018F2F5E1FC4C6D621DED2B7FF85C685EF59
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/x-YdjHd06uQcYuXVgKprTjqMS5w.roa
Signing time: Tue 30 Apr 2024 14:17:28 +0000
ROA not before: Tue 30 Apr 2024 14:17:28 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215433
IP address blocks: 77.81.101.0/24 maxlen: 24
89.37.185.0/24 maxlen: 24
94.177.13.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 03 May 2024 21:01:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:2f:5e:1f:c4:c6:d6:21:de:d2:b7:ff:85:c6:85:ef:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Apr 30 14:17:28 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c7e61d8c7774eae41c62e5d580aa6b4e3a8c4b9c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:21:d4:65:af:e6:93:9c:53:55:49:f5:dd:af:
d7:f3:ab:61:46:02:a7:30:c5:09:c9:48:18:3d:52:
79:e1:cb:2a:1c:59:01:03:db:d9:7a:95:97:dd:c5:
4d:58:96:26:97:3f:9d:2c:cc:d2:c7:c0:75:95:d9:
28:2e:89:17:2a:37:37:c8:0d:d6:fe:67:85:98:bf:
82:5e:48:b1:af:62:e1:b7:5e:25:a0:06:94:53:c6:
bf:17:75:cc:29:83:74:2f:81:91:ca:05:61:42:da:
f5:76:28:70:a4:a7:74:a1:2c:23:8c:29:02:6b:18:
92:ba:81:ae:d0:be:07:07:47:3b:c1:05:80:76:3c:
16:6e:25:f3:99:b6:ad:87:d3:62:84:10:69:da:1c:
bd:cc:60:0c:cc:d2:4d:94:14:60:08:0c:17:61:34:
d4:c2:a8:3d:c5:58:bc:c0:c7:8f:fc:3a:df:07:75:
b1:a7:be:d8:f4:4a:d7:45:aa:0d:37:0f:ad:b1:9b:
c5:6d:52:db:f4:bd:88:20:17:26:a1:76:ad:d6:73:
c4:3d:2e:a6:6f:9e:99:e0:cb:7b:1a:76:83:9e:8e:
a4:6a:86:74:2e:5c:07:68:9c:55:b3:23:94:c1:3f:
a2:a6:b5:25:b2:a0:e3:60:bf:a3:89:d2:9e:03:02:
ef:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:E6:1D:8C:77:74:EA:E4:1C:62:E5:D5:80:AA:6B:4E:3A:8C:4B:9C
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/x-YdjHd06uQcYuXVgKprTjqMS5w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.81.101.0/24
89.37.185.0/24
94.177.13.0/24
Signature Algorithm: sha256WithRSAEncryption
99:6c:c8:1b:79:ac:3f:f7:b3:2a:4c:ae:92:3c:ec:21:85:5b:
18:4c:ae:8a:7a:ce:97:c2:71:1c:86:78:9c:50:2d:19:eb:15:
56:33:67:b6:23:7a:70:d0:0f:da:c9:22:6f:9b:4d:02:be:62:
71:12:a3:47:89:47:88:af:76:a7:70:3f:eb:65:2a:43:9b:bf:
2b:26:86:77:e1:79:7a:6f:fe:95:f4:88:a2:d3:1b:4e:f5:73:
cd:96:3d:bf:8d:29:2d:f0:42:24:19:4d:2e:50:e0:a0:9e:22:
66:55:4f:67:50:23:97:e8:ae:4d:c7:12:dc:d3:a1:d9:d3:a3:
a4:1a:7b:9b:ab:29:6c:9c:23:4f:21:a3:fd:fb:b8:62:9f:6c:
de:1a:7a:53:ec:ad:3e:0c:e1:d8:bb:d1:0a:eb:22:75:70:16:
2b:12:2b:36:4f:14:f1:30:3f:e6:8c:d1:2c:67:86:a1:8d:39:
7e:0f:21:5d:9d:7b:c7:54:8a:5d:d9:33:1f:22:57:0c:e7:62:
cc:98:4e:50:57:0f:89:d9:29:94:50:ea:41:57:00:a4:63:60:
f1:da:80:8d:c1:a6:29:0a:23:e3:59:5e:f1:7d:f2:19:02:c1:
af:5b:b2:5f:41:db:63:a1:3a:ae:54:63:4d:20:8b:18:1b:bd:
3c:78:e6:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:15 2024 by rpki-client on console-ams.rpki-client.org