Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/c32a5e-acc1-43fc-a15d-9dcc9f6fe035/1/_3SAMz6STGhOscgjwiW2p93X8GQ.roa
File: _3SAMz6STGhOscgjwiW2p93X8GQ.roa (raw, json)
Hash identifier: rnGDSxx0z4BCO5rILDVTpjpt3fx56UjDmwicNEuvV/A=
Subject key identifier: FF:74:80:33:3E:92:4C:68:4E:B1:C8:23:C2:25:B6:A7:DD:D7:F0:64
Certificate issuer: /CN=e9ad14362f52569616f0fd5536c5a1a208def29d
Certificate serial: 018CC94D2B7EC85CF7512677EFFEF6E70286
Authority key identifier: E9:AD:14:36:2F:52:56:96:16:F0:FD:55:36:C5:A1:A2:08:DE:F2:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6a0UNi9SVpYW8P1VNsWhogje8p0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/c32a5e-acc1-43fc-a15d-9dcc9f6fe035/1/_3SAMz6STGhOscgjwiW2p93X8GQ.roa
Signing time: Tue 02 Jan 2024 08:32:06 +0000
ROA not before: Tue 02 Jan 2024 08:32:06 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 3214
IP address blocks: 77.83.132.0/22 maxlen: 24
Validation: Failed, certificate revoked on Wed 26 Jun 2024 17:09:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4d:2b:7e:c8:5c:f7:51:26:77:ef:fe:f6:e7:02:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e9ad14362f52569616f0fd5536c5a1a208def29d
Validity
Not Before: Jan 2 08:32:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ff7480333e924c684eb1c823c225b6a7ddd7f064
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:07:1f:87:38:e3:15:58:91:be:a1:a5:99:6e:
ec:56:37:e3:a6:b6:93:b9:f8:62:c5:7c:8f:51:dd:
6c:8d:49:6d:56:1d:bf:50:2a:fd:b4:0f:dc:b8:b8:
ad:b1:a6:ee:16:4f:0f:9f:48:69:69:f2:6f:aa:7f:
9e:47:c2:6e:2e:e4:4d:ed:c1:47:fe:09:17:09:11:
56:36:21:1a:96:86:85:fe:f5:c4:38:52:ea:c5:a6:
81:33:08:9a:d3:c0:0f:4e:bc:6a:4c:ec:4a:f1:d5:
c6:82:bb:5c:7d:8e:5d:cc:3f:63:ef:69:c4:34:7b:
e3:0e:29:af:dd:7b:38:4a:70:70:ed:98:25:ef:60:
70:e9:87:59:f3:b6:4f:26:d5:14:5a:97:bf:ef:c6:
f7:13:0e:7f:45:26:51:45:5c:d2:e9:e9:db:16:3e:
02:78:2d:7c:ed:ab:fb:ac:ed:3d:a4:6f:ee:5c:a2:
89:4d:2f:db:34:26:47:09:64:56:89:11:d7:9d:d9:
22:b8:e0:30:00:e0:f7:39:c4:40:9b:1f:32:92:99:
56:d7:99:bc:92:57:3e:f4:53:06:72:16:30:93:56:
4d:fe:82:75:94:9f:e9:35:73:9d:9f:b3:4e:be:d6:
40:56:d2:f5:a0:26:c8:64:83:f6:60:62:58:74:3a:
47:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:74:80:33:3E:92:4C:68:4E:B1:C8:23:C2:25:B6:A7:DD:D7:F0:64
X509v3 Authority Key Identifier:
keyid:E9:AD:14:36:2F:52:56:96:16:F0:FD:55:36:C5:A1:A2:08:DE:F2:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a0UNi9SVpYW8P1VNsWhogje8p0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/c32a5e-acc1-43fc-a15d-9dcc9f6fe035/1/_3SAMz6STGhOscgjwiW2p93X8GQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/c32a5e-acc1-43fc-a15d-9dcc9f6fe035/1/6a0UNi9SVpYW8P1VNsWhogje8p0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.83.132.0/22
Signature Algorithm: sha256WithRSAEncryption
47:3a:b0:d3:f3:a5:50:58:4f:fd:1e:43:3c:17:87:b2:52:24:
69:4c:33:df:1d:03:bc:d9:66:bc:47:af:4e:93:0e:03:b9:12:
80:ee:da:e0:7b:64:05:d0:d3:ca:de:67:9f:6f:cd:d8:b1:b4:
22:9b:44:d9:3f:e4:31:ed:d3:79:ef:7e:ec:2f:ae:5c:10:e1:
7c:0e:a5:3b:f9:47:02:a5:24:2c:bb:b1:7f:24:01:38:b0:20:
31:04:99:2a:1c:8e:36:20:8c:34:92:89:bb:d2:49:9f:6c:38:
3a:31:0b:85:ea:1c:1c:db:25:55:53:f3:a8:f0:fc:2e:2b:2d:
07:b6:3b:95:82:8c:26:3e:91:77:68:af:5e:d6:a4:b4:f5:f3:
a5:e9:19:f9:ed:0d:73:7b:69:ba:79:fb:42:c2:aa:4a:10:15:
84:21:ea:fd:6a:08:2c:8d:87:c0:b6:d9:23:7d:50:b8:4b:36:
a7:15:b2:06:72:7d:52:9e:84:66:3c:f4:52:c1:8b:4d:b3:5c:
64:30:33:58:df:bb:db:58:87:35:7e:73:e2:5e:df:bc:36:56:
d6:6f:65:7f:4a:5f:96:b6:a6:fb:ee:2d:4c:8c:11:42:fa:e8:
ee:5c:eb:80:c1:46:1f:76:ab:d5:0f:fc:38:b8:5c:a5:fd:26:
73:ae:e4:ea
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzJTSt+yFz3USZ37/725wKGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU5YWQxNDM2MmY1MjU2OTYxNmYwZmQ1NTM2YzVhMWEyMDhk
ZWYyOWQwHhcNMjQwMTAyMDgzMjA2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmZjc0ODAzMzNlOTI0YzY4NGViMWM4MjNjMjI1YjZhN2RkZDdmMDY0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlQcfhzjjFViRvqGlmW7sVjfjpraT
ufhixXyPUd1sjUltVh2/UCr9tA/cuLitsabuFk8Pn0hpafJvqn+eR8JuLuRN7cFH
/gkXCRFWNiEaloaF/vXEOFLqxaaBMwia08APTrxqTOxK8dXGgrtcfY5dzD9j72nE
NHvjDimv3Xs4SnBw7Zgl72Bw6YdZ87ZPJtUUWpe/78b3Ew5/RSZRRVzS6enbFj4C
eC187av7rO09pG/uXKKJTS/bNCZHCWRWiRHXndkiuOAwAOD3OcRAmx8ykplW15m8
klc+9FMGchYwk1ZN/oJ1lJ/pNXOdn7NOvtZAVtL1oCbIZIP2YGJYdDpH/wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFP90gDM+kkxoTrHII8Iltqfd1/BkMB8GA1UdIwQY
MBaAFOmtFDYvUlaWFvD9VTbFoaII3vKdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNmEwVU5pOVNWcFlXOFAxVk5zV2hvZ2plOHAwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yy9jMzJhNWUtYWNjMS00M2ZjLWExNWQt
OWRjYzlmNmZlMDM1LzEvXzNTQU16NlNUR2hPc2NnandpVzJwOTNYOEdRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Yy9jMzJhNWUtYWNjMS00M2ZjLWExNWQtOWRjYzlmNmZlMDM1
LzEvNmEwVU5pOVNWcFlXOFAxVk5zV2hvZ2plOHAwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCTVOEMA0G
CSqGSIb3DQEBCwUAA4IBAQBHOrDT86VQWE/9HkM8F4eyUiRpTDPfHQO82Wa8R69O
kw4DuRKA7trge2QF0NPK3mefb83YsbQim0TZP+Qx7dN5737sL65cEOF8DqU7+UcC
pSQsu7F/JAE4sCAxBJkqHI42IIw0kom70kmfbDg6MQuF6hwc2yVVU/Oo8PwuKy0H
tjuVgowmPpF3aK9e1qS09fOl6Rn57Q1ze2m6eftCwqpKEBWEIer9aggsjYfAttkj
fVC4SzanFbIGcn1SnoRmPPRSwYtNs1xkMDNY37vbWIc1fnPiXt+8NlbWb2V/Sl+W
tqb77i1MjBFC+ujuXOuAwUYfdqvVD/w4uFyl/SZzruTq
-----END CERTIFICATE-----
Generated at Wed Jun 26 22:04:35 2024 by rpki-client on console-ams.rpki-client.org