Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/810d24-acbe-4cb2-9ac5-9d5875d86373/1/hdgd8zd0_CrbZ6UWTnTcRtBB8BY.roa
File: hdgd8zd0_CrbZ6UWTnTcRtBB8BY.roa (raw, json)
Hash identifier: vL0cxSgIT3K3FZqjOxyR8avtUuifVHPZSx6GHbgFqzs=
Subject key identifier: 85:D8:1D:F3:37:74:FC:2A:DB:67:A5:16:4E:74:DC:46:D0:41:F0:16
Certificate issuer: /CN=ada25aafe3a9870e9524afa0265987ed5a5a4da3
Certificate serial: 01891FBCBF22D761660C8B0F925CD1BA654A
Authority key identifier: AD:A2:5A:AF:E3:A9:87:0E:95:24:AF:A0:26:59:87:ED:5A:5A:4D:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/raJar-Ophw6VJK-gJlmH7VpaTaM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/810d24-acbe-4cb2-9ac5-9d5875d86373/1/hdgd8zd0_CrbZ6UWTnTcRtBB8BY.roa
Signing time: Tue 04 Jul 2023 07:10:10 +0000
ROA not before: Tue 04 Jul 2023 07:10:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57844
IP address blocks: 77.83.154.0/23 maxlen: 23
139.28.168.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:1f:bc:bf:22:d7:61:66:0c:8b:0f:92:5c:d1:ba:65:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ada25aafe3a9870e9524afa0265987ed5a5a4da3
Validity
Not Before: Jul 4 07:10:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=85d81df33774fc2adb67a5164e74dc46d041f016
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:94:fc:49:8b:60:a3:d0:e8:e4:a3:91:73:eb:
2e:d4:41:4b:3c:0b:5f:15:e9:72:96:e2:9a:bd:5d:
11:81:e1:ff:1e:fc:49:c0:c8:3f:0f:2d:37:2f:73:
14:8c:23:d1:e2:25:6d:86:b0:ac:0d:65:b5:c1:c1:
d3:7f:5c:23:e6:59:59:7b:f2:fd:0a:02:8a:8d:b9:
24:53:4c:63:70:cb:8d:c8:f1:8c:22:80:7f:42:94:
18:6f:61:a4:7f:65:e0:bb:f3:89:e7:90:6c:75:ef:
fd:e5:e1:3b:78:8d:59:b3:eb:5a:8c:89:0a:a9:56:
be:0b:27:a8:7c:ca:5d:73:a7:00:06:b2:ae:bd:f7:
e1:1b:3d:53:14:27:6c:14:64:0d:23:28:00:fa:d7:
f3:89:3b:40:03:75:d1:a3:a7:23:78:ad:0a:34:2b:
a8:e2:7b:e3:be:76:4b:52:b4:c2:12:ab:ef:dd:65:
af:ad:ca:11:d4:f1:97:f0:40:60:b0:30:48:52:61:
e8:59:3f:01:a2:01:f2:3c:4e:39:1d:19:25:9a:a9:
79:a6:83:88:3f:d8:81:68:dc:f5:54:9d:d3:32:fb:
70:8b:73:8e:7f:13:05:87:62:a4:ac:f9:d9:ef:b6:
c2:4d:b9:2f:f1:c7:ad:7d:b5:b6:33:da:82:c3:df:
ad:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:D8:1D:F3:37:74:FC:2A:DB:67:A5:16:4E:74:DC:46:D0:41:F0:16
X509v3 Authority Key Identifier:
keyid:AD:A2:5A:AF:E3:A9:87:0E:95:24:AF:A0:26:59:87:ED:5A:5A:4D:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/raJar-Ophw6VJK-gJlmH7VpaTaM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/810d24-acbe-4cb2-9ac5-9d5875d86373/1/hdgd8zd0_CrbZ6UWTnTcRtBB8BY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/810d24-acbe-4cb2-9ac5-9d5875d86373/1/raJar-Ophw6VJK-gJlmH7VpaTaM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.83.154.0/23
139.28.168.0/22
Signature Algorithm: sha256WithRSAEncryption
53:d7:b1:94:51:64:98:71:7d:85:01:52:1f:02:a6:3d:e7:72:
73:e2:77:c4:32:aa:98:3a:55:a9:c5:30:ac:74:0c:3b:80:f3:
93:9e:b0:90:23:75:4f:e6:e0:52:3e:f4:8d:7b:c8:17:71:58:
f6:2e:91:37:f4:fb:65:24:85:02:f8:01:af:cb:57:dd:75:b3:
d7:d9:fc:a3:3d:44:c1:c2:2e:dc:a7:3a:2f:87:c7:6f:b1:19:
ad:a3:a6:13:41:fe:ae:3e:5d:d3:58:65:fb:71:be:38:81:6f:
c7:44:06:99:51:68:7a:0f:b2:2a:af:3d:e8:4b:31:61:4d:c6:
52:88:52:07:cd:0c:5f:d9:3b:94:e6:3a:2b:9a:8d:71:02:6d:
4a:10:5c:fa:67:be:7f:16:72:52:3b:09:40:32:b9:48:1c:be:
36:66:cb:0d:f0:d6:a5:61:d4:a4:c9:ca:7b:a3:61:9a:a0:f4:
5a:11:da:d4:37:8a:e6:4f:35:9c:fd:50:7d:1c:51:5c:d5:78:
59:51:7d:75:da:0c:b0:88:71:98:1a:75:79:3b:71:0c:2c:2c:
5c:e0:b7:cc:bd:44:9f:a5:fa:21:71:69:e8:f1:82:d8:c3:03:
e6:3f:5d:bf:bf:bc:58:e2:70:ac:b3:a6:86:64:1d:41:5b:0c:
14:cc:ca:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:01 2024 by rpki-client on console-fra.rpki-client.org