Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/1yCjZ9cIUQge2jhof5D0t2_bD8Q.roa
File: 1yCjZ9cIUQge2jhof5D0t2_bD8Q.roa (raw, json)
Hash identifier: dWMDGm9H1o4mBGR7s54MzBzHxRx1W1D3gGwdcTB1zaM=
Subject key identifier: D7:20:A3:67:D7:08:51:08:1E:DA:38:68:7F:90:F4:B7:6F:DB:0F:C4
Certificate issuer: /CN=9aee15c33de358938d6900a1b3c14480a389e85b
Certificate serial: 018E2D39C963F581EF88DA33EF440A937223
Authority key identifier: 9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/1yCjZ9cIUQge2jhof5D0t2_bD8Q.roa
Signing time: Mon 11 Mar 2024 11:15:45 +0000
ROA not before: Mon 11 Mar 2024 11:15:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215540
IP address blocks: 77.83.245.0/24 maxlen: 24
77.83.246.0/24 maxlen: 24
160.20.156.0/24 maxlen: 24
160.20.157.0/24 maxlen: 24
185.58.114.0/24 maxlen: 24
185.73.183.0/24 maxlen: 24
185.75.132.0/24 maxlen: 24
185.75.135.0/24 maxlen: 24
185.76.240.0/24 maxlen: 24
185.76.241.0/24 maxlen: 24
185.76.242.0/24 maxlen: 24
185.76.243.0/24 maxlen: 24
185.77.138.0/24 maxlen: 24
185.77.139.0/24 maxlen: 24
185.79.133.0/24 maxlen: 24
185.95.228.0/24 maxlen: 24
185.95.230.0/24 maxlen: 24
185.97.79.0/24 maxlen: 24
185.100.156.0/24 maxlen: 24
185.100.159.0/24 maxlen: 24
185.102.114.0/24 maxlen: 24
185.104.148.0/24 maxlen: 24
185.105.47.0/24 maxlen: 24
185.111.24.0/24 maxlen: 24
185.111.25.0/24 maxlen: 24
185.112.59.0/24 maxlen: 24
185.168.208.0/24 maxlen: 24
185.177.238.0/24 maxlen: 24
193.38.228.0/24 maxlen: 24
193.38.229.0/24 maxlen: 24
193.38.230.0/24 maxlen: 24
193.38.231.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 12 Mar 2024 11:15:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:2d:39:c9:63:f5:81:ef:88:da:33:ef:44:0a:93:72:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9aee15c33de358938d6900a1b3c14480a389e85b
Validity
Not Before: Mar 11 11:15:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d720a367d70851081eda38687f90f4b76fdb0fc4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:b7:96:35:20:18:cf:93:ce:e0:3d:19:cc:6d:
cd:d1:90:70:54:da:b5:e5:94:c8:69:63:78:38:8c:
ac:ea:0f:79:e3:c8:b5:f8:64:f2:22:08:f7:e9:dc:
80:67:b2:a2:0a:00:5d:2f:d4:21:da:b4:b5:72:e9:
cd:6e:20:cc:ac:05:31:e9:c4:6f:53:61:8b:28:e8:
e1:3e:bc:e4:e0:c6:7a:5f:44:f8:1d:40:81:91:55:
b2:56:b6:67:52:1f:40:83:8e:42:96:e9:fa:d2:35:
0e:78:e7:0c:4c:df:f9:b2:45:6e:ca:5c:e5:5e:d4:
36:99:7e:0e:ff:22:a6:78:1f:62:5e:46:fa:a3:d2:
f7:a8:33:aa:2a:38:99:df:46:b4:b5:eb:26:54:eb:
55:fa:33:2d:99:82:f7:36:be:b0:0b:5a:77:37:41:
e8:b9:68:c1:24:9b:9d:9c:c5:a8:a1:f1:c1:22:c1:
ec:16:91:e4:f6:e4:31:5c:d4:3b:0a:5e:f6:06:87:
9b:b7:c7:b6:0e:d8:97:4e:6b:78:7f:5e:dc:4e:0a:
36:11:f2:11:8e:44:79:86:97:99:b2:58:e6:a4:8b:
b5:79:1c:73:dc:06:08:ef:a9:5d:f7:82:2d:30:c4:
ab:72:04:23:76:55:7e:1a:9c:92:3b:e8:8b:4d:1d:
1e:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:20:A3:67:D7:08:51:08:1E:DA:38:68:7F:90:F4:B7:6F:DB:0F:C4
X509v3 Authority Key Identifier:
keyid:9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/1yCjZ9cIUQge2jhof5D0t2_bD8Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.83.245.0-77.83.246.255
160.20.156.0/23
185.58.114.0/24
185.73.183.0/24
185.75.132.0/24
185.75.135.0/24
185.76.240.0/22
185.77.138.0/23
185.79.133.0/24
185.95.228.0/24
185.95.230.0/24
185.97.79.0/24
185.100.156.0/24
185.100.159.0/24
185.102.114.0/24
185.104.148.0/24
185.105.47.0/24
185.111.24.0/23
185.112.59.0/24
185.168.208.0/24
185.177.238.0/24
193.38.228.0/22
Signature Algorithm: sha256WithRSAEncryption
a0:91:14:54:00:ac:eb:87:a3:97:80:ff:29:22:88:59:2e:66:
b3:3e:4c:3a:53:f9:7e:60:37:80:3a:8a:9b:a1:6f:dd:4c:d8:
09:1d:6c:52:dc:9d:84:4a:fb:a5:47:e9:b2:82:69:65:49:b8:
50:92:fc:54:12:ef:af:9c:7c:67:30:61:c0:99:d8:dd:05:58:
bc:39:9b:eb:d3:da:20:0a:1c:59:0c:a8:35:1b:5a:98:a8:69:
84:d8:3e:f2:7e:9d:ff:ed:49:d4:cd:c2:a9:1f:dd:6e:3b:a0:
a9:02:2e:28:69:73:3c:a1:c1:30:06:a9:e9:78:bd:51:31:94:
e6:81:a2:6b:c3:d1:b9:7c:84:16:c2:21:53:85:a9:98:6b:07:
c9:e5:bb:31:b3:66:7b:bc:34:55:ea:5a:a4:ca:ca:3b:ca:6c:
53:8e:f5:ac:2e:15:f9:cb:bd:c8:57:11:5c:76:be:50:53:4a:
56:c7:af:70:ae:0c:33:f8:96:bb:4c:f0:fc:a9:e8:ec:d9:fd:
3b:a2:62:35:90:4d:d1:fb:a6:6c:2b:49:b6:89:f9:c7:4f:86:
ad:a8:94:da:2c:18:ac:85:1a:36:64:48:af:7d:54:b4:18:74:
be:cd:5b:52:5e:42:6f:62:47:0c:e8:80:07:ad:f9:0f:7a:91:
c4:d9:e9:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:59 2024 by rpki-client on console-fra.rpki-client.org