Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/tKO6SVemnso6v266yE49JkWJFN4.roa
File: tKO6SVemnso6v266yE49JkWJFN4.roa (raw, json)
Hash identifier: 0wUXOieV4aASQ0mhZng+RM7ZnwmZSkD3oCTc5sxzeok=
Subject key identifier: B4:A3:BA:49:57:A6:9E:CA:3A:BF:6E:BA:C8:4E:3D:26:45:89:14:DE
Certificate issuer: /CN=9aee15c33de358938d6900a1b3c14480a389e85b
Certificate serial: 018572D5CCD959DD18AFF47D32C74C5A4B9F
Authority key identifier: 9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/tKO6SVemnso6v266yE49JkWJFN4.roa
Signing time: Mon 02 Jan 2023 14:14:52 +0000
ROA not before: Mon 02 Jan 2023 14:14:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51765
IP address blocks: 185.77.218.0/23 maxlen: 24
185.77.217.0/24 maxlen: 24
77.83.247.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:d5:cc:d9:59:dd:18:af:f4:7d:32:c7:4c:5a:4b:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9aee15c33de358938d6900a1b3c14480a389e85b
Validity
Not Before: Jan 2 14:14:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b4a3ba4957a69eca3abf6ebac84e3d26458914de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:8a:46:86:0c:5e:94:b6:4e:82:8a:f3:5e:14:
51:c4:21:3d:cc:66:15:91:cf:ec:3f:e0:5e:34:aa:
0f:37:1b:9f:dd:dc:32:77:66:a5:ff:d7:05:3e:d8:
ba:c3:36:86:01:3f:9b:06:be:b4:ff:2f:50:4b:d6:
1b:97:31:46:12:24:ea:1d:5e:df:ce:6f:d9:fd:af:
6a:be:54:4a:f7:3d:35:a9:15:a6:27:17:47:88:16:
4d:72:dc:8e:e4:3d:f9:0b:cf:b0:80:9e:45:b4:00:
1e:e7:aa:b4:de:da:f1:09:df:06:25:06:1a:ce:eb:
78:af:b4:f9:01:18:53:aa:3c:c8:b6:11:b7:46:ca:
c6:ea:6a:60:23:33:f9:5c:81:f3:04:db:80:cb:f3:
35:0d:73:5c:d7:b5:ef:9b:95:ea:79:c6:c8:d5:86:
9d:ad:ca:83:23:c3:27:1e:d2:10:52:65:9b:74:19:
58:f3:aa:b5:e8:b0:04:8a:72:6b:18:76:53:16:fb:
0f:1e:11:c3:58:60:2a:6c:33:dc:98:95:2d:32:e7:
58:09:c6:75:78:77:25:6f:0d:90:c1:49:f9:d1:95:
7c:9c:05:b0:7a:55:17:2f:32:61:5f:7b:b8:6e:9b:
5a:5c:92:54:0c:13:f9:71:08:5e:b2:57:cb:4c:6a:
e2:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:A3:BA:49:57:A6:9E:CA:3A:BF:6E:BA:C8:4E:3D:26:45:89:14:DE
X509v3 Authority Key Identifier:
keyid:9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/tKO6SVemnso6v266yE49JkWJFN4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.83.247.0/24
185.77.217.0-185.77.219.255
Signature Algorithm: sha256WithRSAEncryption
67:87:93:16:f2:fc:5b:9b:b1:07:cb:ac:89:d0:dd:b2:ec:86:
5a:b1:d1:5c:fe:a2:a8:3d:0d:55:cf:a5:7b:de:9d:da:e1:82:
20:d7:e8:39:a9:43:9a:a2:df:9b:9e:d6:62:30:fe:c8:0b:e1:
9d:a9:00:78:a4:7d:6e:94:01:6f:28:74:50:67:2f:25:4d:64:
89:17:5d:ea:54:c9:a7:97:36:f6:13:74:92:fa:a3:19:8f:b0:
3b:6f:24:0e:b9:ff:cc:dc:92:1e:02:2c:bb:21:97:73:9c:ab:
75:a0:3b:2d:99:e7:48:40:76:d2:5d:31:73:47:08:9e:d9:a5:
f1:04:23:1b:04:37:49:fb:c0:b0:92:de:52:a1:1e:5f:8f:22:
c0:81:3e:19:a4:fd:9f:7b:c7:af:af:f5:13:6b:ef:9b:12:72:
8a:d6:37:f7:8a:2c:cc:c6:52:80:39:ca:d0:fb:a7:d3:b4:ea:
96:65:37:b0:29:d1:d7:96:1d:ab:e0:25:af:4d:10:20:db:5c:
46:24:5a:c1:f0:e4:ae:29:3b:31:02:33:8e:9d:af:48:ac:52:
08:55:a1:cd:b9:aa:9f:4e:93:8f:f1:d3:c4:0b:90:e8:e0:35:
17:02:8d:32:8c:0f:6c:5f:3e:8c:ba:cf:6d:d7:6b:ad:1f:0e:
a7:b8:24:ac
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:59 2024 by rpki-client on console-fra.rpki-client.org