Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/7588ca-5677-4795-8a81-b6f9df455249/1/sQQ5BISRqbKFFwZPpukY2XcwUtk.roa
File: sQQ5BISRqbKFFwZPpukY2XcwUtk.roa (raw, json)
Hash identifier: 4iZ/u+ngu3a4ARfv+TZz8kE5G2qScwVvoc4af4WGOJ0=
Subject key identifier: B1:04:39:04:84:91:A9:B2:85:17:06:4F:A6:E9:18:D9:77:30:52:D9
Certificate issuer: /CN=d6108a485dfaf06a931f543c085a009c6aea2d9c
Certificate serial: 01876F4C938CF8B76971038EBE45750A631B
Authority key identifier: D6:10:8A:48:5D:FA:F0:6A:93:1F:54:3C:08:5A:00:9C:6A:EA:2D:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1hCKSF368GqTH1Q8CFoAnGrqLZw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/7588ca-5677-4795-8a81-b6f9df455249/1/sQQ5BISRqbKFFwZPpukY2XcwUtk.roa
Signing time: Tue 11 Apr 2023 07:51:42 +0000
ROA not before: Tue 11 Apr 2023 07:51:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 400513
IP address blocks: 80.77.92.0/22 maxlen: 22
80.77.93.0/24 maxlen: 24
88.214.192.0/24 maxlen: 24
88.214.197.0/24 maxlen: 24
88.214.196.0/24 maxlen: 24
88.214.200.0/24 maxlen: 24
88.214.203.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:35:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:6f:4c:93:8c:f8:b7:69:71:03:8e:be:45:75:0a:63:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d6108a485dfaf06a931f543c085a009c6aea2d9c
Validity
Not Before: Apr 11 07:51:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b10439048491a9b28517064fa6e918d9773052d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:12:8a:84:ed:f3:3c:9a:c5:96:c4:51:8b:f8:
b3:ed:af:6a:62:cc:92:d1:60:6a:3d:0a:02:98:5d:
10:18:93:dc:c6:31:ba:25:a0:01:4a:6b:e1:bc:98:
8b:84:69:ea:2c:ac:90:89:5f:e3:65:38:ff:35:ef:
fc:28:8a:9b:65:4b:c5:b3:9d:eb:d0:ce:f2:f7:df:
46:1f:1f:85:63:34:95:90:95:a0:48:ef:f8:41:e8:
8e:8a:03:7d:da:51:03:a8:0d:dd:86:db:1f:0d:e4:
03:7e:89:8c:fe:0a:9a:00:0b:8f:a1:51:a7:ae:6d:
98:5b:14:e7:c9:bd:62:11:f0:37:c1:bc:19:b0:27:
84:b1:ee:ca:b7:b6:fc:f0:2e:5b:09:83:91:46:cc:
e4:d0:a9:4b:0d:c0:a5:5d:9c:a3:77:72:e1:a2:8f:
16:d4:d8:b3:58:6b:96:43:3a:c5:4c:a9:ea:b2:4a:
ab:5b:fa:54:28:75:26:fd:d5:fd:0f:d1:05:e5:fc:
a7:af:68:3b:71:51:49:1c:02:e2:4b:53:00:dc:fd:
99:f3:61:ce:de:84:dc:fc:78:82:87:e4:4c:54:94:
55:ad:8a:e4:18:64:13:cb:d2:50:75:79:06:c3:6e:
69:56:7d:fc:84:5c:f3:9c:85:c0:06:c5:90:2c:2d:
da:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:04:39:04:84:91:A9:B2:85:17:06:4F:A6:E9:18:D9:77:30:52:D9
X509v3 Authority Key Identifier:
keyid:D6:10:8A:48:5D:FA:F0:6A:93:1F:54:3C:08:5A:00:9C:6A:EA:2D:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1hCKSF368GqTH1Q8CFoAnGrqLZw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/7588ca-5677-4795-8a81-b6f9df455249/1/sQQ5BISRqbKFFwZPpukY2XcwUtk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/7588ca-5677-4795-8a81-b6f9df455249/1/1hCKSF368GqTH1Q8CFoAnGrqLZw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.77.92.0/22
88.214.192.0/24
88.214.196.0/23
88.214.200.0/24
88.214.203.0/24
Signature Algorithm: sha256WithRSAEncryption
88:5f:ff:24:bc:c3:01:ce:47:6c:8c:7c:c5:33:98:14:bd:a4:
99:7b:db:ed:85:ad:b4:a5:16:a8:11:ba:e9:8d:c2:c5:3c:d2:
ec:58:ea:43:6e:88:97:7a:a6:b2:22:72:de:a0:e3:14:89:c6:
67:87:05:75:c1:5e:97:67:42:ce:a4:d8:2a:2e:2e:a5:3d:7b:
0e:3b:73:4d:72:6f:7d:fd:cd:54:23:72:fa:5b:16:b6:61:ff:
a8:83:eb:ca:8d:2b:7a:67:1e:55:e9:68:7c:45:08:e1:70:37:
36:13:ff:54:af:01:93:d5:d5:58:c4:f9:50:d5:ee:fa:c2:f3:
4b:15:99:fe:e4:7f:50:a0:0a:5a:d4:18:3e:2e:20:18:ce:88:
37:f3:ed:c4:03:01:62:45:60:97:bd:43:b5:55:c2:b2:f5:d7:
08:be:0d:8f:d6:79:7c:ba:7b:46:1c:0a:85:9f:ff:36:b9:ff:
ed:0c:e5:d9:df:34:22:7f:61:14:8b:44:c8:2c:cd:96:ff:c5:
98:18:a5:22:75:ac:7c:77:22:3f:9d:45:eb:97:e2:d7:8e:54:
c7:bd:f9:37:f9:63:6e:27:32:da:d6:d4:17:19:f3:b4:2d:d9:
55:1f:c7:8f:ad:1c:99:3e:30:c1:44:c1:1e:f2:b9:e9:9e:91:
fb:90:39:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:26 2024 by rpki-client on console-ams.rpki-client.org