Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/034971-b4da-4ba4-8d6e-d3c8a48f7a32/1/ALyNBerQe2GXfK8z9hMoYVD6W9s.roa
File: ALyNBerQe2GXfK8z9hMoYVD6W9s.roa (raw, json)
Hash identifier: TZzDH8nI2w0pPTBm+Dd8ksKhHMqit196im7yJmkUdr4=
Subject key identifier: 00:BC:8D:05:EA:D0:7B:61:97:7C:AF:33:F6:13:28:61:50:FA:5B:DB
Certificate issuer: /CN=77a53d2e97704dbea831a6440072904ee91a71b0
Certificate serial: 01856FB1170DB57BF3493C4EF0FBD1083BA5
Authority key identifier: 77:A5:3D:2E:97:70:4D:BE:A8:31:A6:44:00:72:90:4E:E9:1A:71:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d6U9LpdwTb6oMaZEAHKQTukacbA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/034971-b4da-4ba4-8d6e-d3c8a48f7a32/1/ALyNBerQe2GXfK8z9hMoYVD6W9s.roa
Signing time: Sun 01 Jan 2023 23:35:54 +0000
ROA not before: Sun 01 Jan 2023 23:35:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42510
IP address blocks: 193.200.69.0/24 maxlen: 24
193.200.68.0/24 maxlen: 24
193.200.68.0/23 maxlen: 23
176.103.64.0/21 maxlen: 21
176.103.64.0/22 maxlen: 22
176.103.68.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:30:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:b1:17:0d:b5:7b:f3:49:3c:4e:f0:fb:d1:08:3b:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77a53d2e97704dbea831a6440072904ee91a71b0
Validity
Not Before: Jan 1 23:35:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=00bc8d05ead07b61977caf33f613286150fa5bdb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:a7:fe:cd:04:68:9c:c7:5b:e4:4f:27:95:67:
ce:2e:f9:25:23:6c:72:be:89:49:7d:96:9f:7e:e3:
aa:fa:fc:30:42:27:55:d4:39:5f:e0:db:d2:24:bd:
7e:fa:78:e0:a5:81:52:df:f7:4c:80:e9:a1:9d:c0:
cf:a5:e9:1b:de:a6:a2:25:5b:fc:47:36:68:5d:01:
06:bd:00:25:03:7a:52:d1:47:70:63:6e:c5:af:cc:
51:4a:ee:f6:08:f1:2a:ec:1a:9a:6a:f8:6f:7c:ba:
34:2b:14:4f:6a:35:d7:ea:46:50:c5:c0:d9:54:f3:
8f:ad:16:0d:c0:30:67:5e:e6:eb:d6:4a:2d:1c:ea:
a3:44:d6:58:72:ce:79:14:8c:a7:95:c8:16:13:c1:
7a:54:9c:37:4a:7a:76:85:c9:a7:d6:0b:14:bb:00:
4e:ef:df:d0:7d:af:3c:64:e4:b3:2e:ca:33:08:89:
96:46:92:13:0e:64:f0:80:ce:62:3b:81:1f:62:f0:
40:1b:03:39:3b:83:8b:d8:75:5c:98:dc:d1:8b:83:
23:7d:8b:05:cc:17:34:d1:08:31:c4:be:19:92:e0:
d6:73:77:e1:eb:a4:57:06:ad:b5:d9:85:2b:28:31:
fb:ae:6d:af:f5:4c:27:49:dd:6d:69:8d:6b:9d:34:
c4:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:BC:8D:05:EA:D0:7B:61:97:7C:AF:33:F6:13:28:61:50:FA:5B:DB
X509v3 Authority Key Identifier:
keyid:77:A5:3D:2E:97:70:4D:BE:A8:31:A6:44:00:72:90:4E:E9:1A:71:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6U9LpdwTb6oMaZEAHKQTukacbA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/034971-b4da-4ba4-8d6e-d3c8a48f7a32/1/ALyNBerQe2GXfK8z9hMoYVD6W9s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/034971-b4da-4ba4-8d6e-d3c8a48f7a32/1/d6U9LpdwTb6oMaZEAHKQTukacbA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.103.64.0/21
193.200.68.0/23
Signature Algorithm: sha256WithRSAEncryption
28:e0:e9:09:93:e0:13:50:41:77:8c:81:b3:c8:5a:07:c9:21:
44:cc:44:33:f9:23:32:44:ef:93:ec:e1:9e:e1:45:2f:07:03:
dd:b9:6c:33:a9:42:7c:ae:91:e6:07:4a:50:ae:6e:83:da:1f:
08:79:75:1e:5c:6e:3a:fa:46:d5:48:96:b5:01:f4:01:9f:9a:
b6:ee:61:41:04:17:9e:f0:08:c2:ed:91:ac:ba:dc:73:03:8c:
d7:d1:90:4b:0e:96:33:f0:d4:40:96:b4:03:84:ec:69:70:34:
9f:27:4c:d3:0f:83:08:b7:f6:d0:88:9c:d8:c1:8e:8a:fc:22:
ff:fc:c8:c9:1d:ae:d1:3f:65:b6:ad:94:14:69:6f:f8:96:cb:
67:e6:8c:ff:7e:5e:3f:89:2b:04:40:b9:90:e0:db:91:18:19:
11:0c:01:2f:f4:8c:01:0e:d9:04:08:e2:20:ee:ae:33:d1:48:
8d:e1:f1:df:b2:6f:a8:89:5a:e7:d9:28:4d:50:82:a4:a5:d3:
f0:3c:39:05:6d:ae:6d:4c:6d:a0:26:ae:a5:44:4e:72:d3:1f:
11:63:67:52:88:ae:34:b6:8c:36:c9:6e:39:72:f7:1d:44:4e:
d3:7e:c9:e0:d7:27:01:8b:2b:25:03:f3:6f:99:5e:54:eb:bc:
49:79:ba:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:56 2024 by rpki-client on console-ams.rpki-client.org