Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/b11a40-48e9-4e06-bf11-92c81f22e712/1/Y2FSB6-tIZcdUeDBqVISRqtK_6s.roa
File: Y2FSB6-tIZcdUeDBqVISRqtK_6s.roa (raw, json)
Hash identifier: J8VZFao6aSUBjIxNM2+S7e0L/6WQFPIItTpRqGQceg8=
Subject key identifier: 63:61:52:07:AF:AD:21:97:1D:51:E0:C1:A9:52:12:46:AB:4A:FF:AB
Certificate issuer: /CN=1b2c219f3c297b775880c3b651a2003f9be6de5e
Certificate serial: 018E514D9EE9086DEF39D453270FFBC4BC5B
Authority key identifier: 1B:2C:21:9F:3C:29:7B:77:58:80:C3:B6:51:A2:00:3F:9B:E6:DE:5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gywhnzwpe3dYgMO2UaIAP5vm3l4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/b11a40-48e9-4e06-bf11-92c81f22e712/1/Y2FSB6-tIZcdUeDBqVISRqtK_6s.roa
Signing time: Mon 18 Mar 2024 11:23:45 +0000
ROA not before: Mon 18 Mar 2024 11:23:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210644
IP address blocks: 77.221.136.0/22 maxlen: 22
77.221.140.0/22 maxlen: 22
77.221.145.0/24 maxlen: 24
109.120.184.0/23 maxlen: 23
109.120.186.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 19 Mar 2024 11:14:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:51:4d:9e:e9:08:6d:ef:39:d4:53:27:0f:fb:c4:bc:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b2c219f3c297b775880c3b651a2003f9be6de5e
Validity
Not Before: Mar 18 11:23:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=63615207afad21971d51e0c1a9521246ab4affab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:d3:ea:08:e5:13:e0:66:7b:7c:f2:50:59:d3:
c7:1e:65:86:f6:8e:6a:82:7d:6d:2e:0e:98:61:13:
22:8c:fd:79:9c:70:50:ae:53:dc:78:40:6e:7f:8d:
40:44:6b:26:3b:92:83:fc:9b:1b:cf:01:93:3b:e6:
e9:86:25:18:63:6a:86:05:ae:3c:2d:2e:f0:6e:8b:
1f:e4:65:8d:f0:3c:f4:6b:0f:dc:88:2c:93:d4:b9:
48:28:40:b8:1f:ad:ca:fa:63:56:66:20:85:fc:7f:
1b:a1:5c:2b:f5:13:6e:2a:e6:24:07:d7:d5:a3:ff:
e7:84:d5:cc:93:90:cc:da:be:82:c6:f3:b0:00:54:
33:9e:f4:4b:98:e8:db:37:60:43:a7:f0:4c:5d:bd:
36:1a:8d:70:e6:53:b6:0e:3d:7a:4d:61:5d:af:32:
9a:c2:1f:84:64:2f:ab:86:6b:76:f4:62:07:40:8d:
32:5b:7d:bd:9c:3b:48:56:25:9f:ff:cf:39:2a:b7:
74:18:0b:b4:14:54:6a:12:8b:6f:9c:68:69:f1:7b:
19:7b:5d:ac:07:27:f5:f8:db:ef:85:d4:54:8d:d6:
f0:d2:08:91:ea:0b:f5:54:76:fe:c8:55:0c:15:bb:
ea:62:34:11:7e:f6:fd:8a:96:c0:1c:f3:70:78:b0:
8c:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:61:52:07:AF:AD:21:97:1D:51:E0:C1:A9:52:12:46:AB:4A:FF:AB
X509v3 Authority Key Identifier:
keyid:1B:2C:21:9F:3C:29:7B:77:58:80:C3:B6:51:A2:00:3F:9B:E6:DE:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gywhnzwpe3dYgMO2UaIAP5vm3l4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/b11a40-48e9-4e06-bf11-92c81f22e712/1/Y2FSB6-tIZcdUeDBqVISRqtK_6s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/b11a40-48e9-4e06-bf11-92c81f22e712/1/Gywhnzwpe3dYgMO2UaIAP5vm3l4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.221.136.0/21
77.221.145.0/24
109.120.184.0/22
Signature Algorithm: sha256WithRSAEncryption
69:c8:69:cc:34:03:f3:32:49:ca:5f:3a:f8:60:e0:10:32:44:
4c:bb:24:10:de:3a:57:97:22:cb:7e:41:9d:ae:02:78:2d:f5:
c3:32:d6:c3:3a:38:e7:86:fe:35:e7:d7:87:ec:2e:3e:99:54:
33:e5:f9:31:c2:71:e6:3b:93:18:fa:4c:c4:75:56:eb:67:41:
a5:9b:81:ed:0b:41:a2:53:72:b8:28:2a:53:14:be:57:93:c1:
00:6f:93:4e:0e:d1:dc:7f:ef:a0:05:84:15:0a:59:21:9c:f2:
0a:d0:18:94:47:fc:cd:f0:ab:04:05:10:78:6f:b1:ad:ad:4d:
a3:72:31:77:53:37:74:b6:24:87:95:43:ef:41:a1:b8:9d:b9:
b8:9c:1d:bb:05:dd:19:2f:bf:17:79:c5:e0:a2:ab:4a:c3:81:
2e:93:d5:a4:ed:7c:a4:2e:91:e3:8b:13:df:3e:77:8d:42:d6:
55:84:4c:38:87:6f:60:c3:10:60:dd:f6:3a:d9:ff:27:05:11:
1d:09:c0:cf:0c:fc:b8:0b:87:86:3c:01:a7:03:d6:b6:16:2a:
a0:b0:e7:60:13:dc:b0:e5:08:b1:67:66:cd:6d:ca:62:32:a8:
4c:70:f5:c8:22:46:fb:f9:c3:0a:cb:2b:8b:3c:95:87:94:e1:
b6:66:5e:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:22 2024 by rpki-client on console-fra.rpki-client.org