Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/b11a40-48e9-4e06-bf11-92c81f22e712/1/NwiHpT4qg7tZkuBGZxU23CDZLxs.roa
File: NwiHpT4qg7tZkuBGZxU23CDZLxs.roa (raw, json)
Hash identifier: kLz5kncLtoHgn/uHRB6fQT6dmYetxFCpbcHPWEOs8uc=
Subject key identifier: 37:08:87:A5:3E:2A:83:BB:59:92:E0:46:67:15:36:DC:20:D9:2F:1B
Certificate issuer: /CN=1b2c219f3c297b775880c3b651a2003f9be6de5e
Certificate serial: 018E84C7B902BBA4CB401926081AC8D0F235
Authority key identifier: 1B:2C:21:9F:3C:29:7B:77:58:80:C3:B6:51:A2:00:3F:9B:E6:DE:5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gywhnzwpe3dYgMO2UaIAP5vm3l4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/b11a40-48e9-4e06-bf11-92c81f22e712/1/NwiHpT4qg7tZkuBGZxU23CDZLxs.roa
Signing time: Thu 28 Mar 2024 11:17:45 +0000
ROA not before: Thu 28 Mar 2024 11:17:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44477
IP address blocks: 77.221.150.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 03 Apr 2024 15:16:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:84:c7:b9:02:bb:a4:cb:40:19:26:08:1a:c8:d0:f2:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b2c219f3c297b775880c3b651a2003f9be6de5e
Validity
Not Before: Mar 28 11:17:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=370887a53e2a83bb5992e046671536dc20d92f1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:30:09:72:dd:23:74:50:dd:f4:0a:51:8e:f8:
1f:1a:a5:80:9c:43:61:0f:b2:52:63:0e:07:64:53:
b4:a6:3e:da:25:99:4e:0d:1c:98:c0:54:71:cf:c1:
60:4a:5f:a2:09:d3:16:e9:54:b2:9a:57:96:05:5a:
64:11:22:82:0d:7e:31:8d:2e:82:b1:f8:77:07:f7:
3c:d6:4b:e5:1f:b1:20:ff:dd:fd:5c:70:80:1a:4b:
41:b2:1d:15:80:8a:c8:5d:fb:51:0a:3c:15:4e:82:
8b:cf:4a:46:ac:49:02:94:1f:d9:37:99:e3:26:1d:
71:8b:a9:b3:12:29:f4:87:86:ea:74:9b:55:04:51:
f6:96:47:5f:90:62:db:cd:ed:5d:60:8f:70:b1:a2:
20:e9:63:73:9f:11:1f:49:4e:4d:4b:e0:eb:e9:3f:
ff:b6:07:4b:e0:b3:11:d5:5b:4d:66:6f:75:2f:1d:
94:ef:76:54:45:c6:52:ad:62:f8:a1:e2:7b:ab:67:
1c:7c:e4:dc:08:5f:5c:c3:e3:28:ac:09:af:78:9e:
53:bb:5b:9f:a1:a0:f3:fb:48:f1:22:86:6f:d2:31:
29:a2:82:69:f0:72:17:f1:bf:ef:ce:7b:1a:bc:7c:
4c:16:78:09:bf:22:b2:92:2c:2f:4b:e9:c9:ad:68:
18:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:08:87:A5:3E:2A:83:BB:59:92:E0:46:67:15:36:DC:20:D9:2F:1B
X509v3 Authority Key Identifier:
keyid:1B:2C:21:9F:3C:29:7B:77:58:80:C3:B6:51:A2:00:3F:9B:E6:DE:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gywhnzwpe3dYgMO2UaIAP5vm3l4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/b11a40-48e9-4e06-bf11-92c81f22e712/1/NwiHpT4qg7tZkuBGZxU23CDZLxs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/b11a40-48e9-4e06-bf11-92c81f22e712/1/Gywhnzwpe3dYgMO2UaIAP5vm3l4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.221.150.0/24
Signature Algorithm: sha256WithRSAEncryption
23:67:57:53:f8:4a:6b:9e:c3:d3:81:f0:d5:27:4c:3c:5d:dc:
41:35:60:8a:02:4b:be:25:85:a2:dd:d6:9e:99:5b:c6:d4:3c:
db:3f:13:2a:bc:d7:d5:ec:58:35:b0:09:0a:a5:e9:37:16:1e:
41:4b:74:53:ea:92:1e:e5:ea:f3:88:4e:4c:40:bf:e3:b1:e5:
c2:74:55:e8:01:99:b1:d6:45:a8:b4:e1:74:67:e7:72:f5:bb:
6b:79:f7:56:79:44:64:df:4e:1c:c3:7e:7b:25:a3:c1:2a:7f:
b4:f9:8e:ad:8b:53:e1:94:47:f4:b5:0b:9e:54:76:2d:42:48:
0b:d2:56:e9:27:72:57:10:b0:4d:49:34:3d:fd:72:d4:eb:92:
0b:da:9f:4f:c1:a4:c2:93:64:cb:f1:71:e1:54:60:de:3a:c6:
15:6d:d3:3f:b7:63:db:32:d1:21:19:ed:43:de:52:ad:f6:09:
b5:7b:2b:fa:da:b3:f8:79:52:ed:28:07:8f:eb:25:25:d1:b5:
9e:c1:f3:ba:03:65:a8:fe:c6:3b:46:b0:d3:f5:d1:37:93:e2:
36:b3:1d:7b:01:c8:69:fa:b9:0d:10:b1:05:e1:b5:ec:ad:d5:
c6:56:b5:e9:9d:e8:d2:0e:74:aa:bd:59:f1:4b:3f:3f:6d:fd:
7d:a1:54:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:22 2024 by rpki-client on console-fra.rpki-client.org