Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/77217d-814b-486a-8ef2-fe0333ed005f/1/wQUQohYnqb-2m_XtS91lWbRU3qs.roa
File: wQUQohYnqb-2m_XtS91lWbRU3qs.roa (raw, json)
Hash identifier: qVSKTZhJHxt8y8F9FGstAsw4BVUmNilXhjm+38GnkV8=
Subject key identifier: C1:05:10:A2:16:27:A9:BF:B6:9B:F5:ED:4B:DD:65:59:B4:54:DE:AB
Certificate issuer: /CN=7302cdc29fdca09e9a0f3f7d2113da85a7e1d654
Certificate serial: 01856D0A9F256B330CE793CEFAA0B7D554A8
Authority key identifier: 73:02:CD:C2:9F:DC:A0:9E:9A:0F:3F:7D:21:13:DA:85:A7:E1:D6:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cwLNwp_coJ6aDz99IRPahafh1lQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/77217d-814b-486a-8ef2-fe0333ed005f/1/wQUQohYnqb-2m_XtS91lWbRU3qs.roa
Signing time: Sun 01 Jan 2023 11:14:50 +0000
ROA not before: Sun 01 Jan 2023 11:14:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43391
IP address blocks: 185.80.72.0/24 maxlen: 24
77.223.132.0/24 maxlen: 24
77.223.128.0/19 maxlen: 24
77.223.136.0/24 maxlen: 24
77.223.135.0/24 maxlen: 24
77.223.143.0/24 maxlen: 24
93.187.200.0/21 maxlen: 21
93.187.206.0/24 maxlen: 24
93.187.205.0/24 maxlen: 24
93.187.204.0/24 maxlen: 24
93.187.207.0/24 maxlen: 24
195.244.32.0/19 maxlen: 24
195.244.33.0/24 maxlen: 24
77.223.148.0/23 maxlen: 23
77.223.152.0/24 maxlen: 24
77.223.158.0/24 maxlen: 24
77.223.153.0/24 maxlen: 24
77.223.156.0/24 maxlen: 24
77.223.154.0/24 maxlen: 24
91.191.160.0/20 maxlen: 24
91.191.171.0/24 maxlen: 24
91.191.170.0/24 maxlen: 24
91.191.168.0/21 maxlen: 21
78.40.224.0/24 maxlen: 24
78.40.224.0/21 maxlen: 21
2a0a:be80::/29 maxlen: 29
2a01:aac0::/32 maxlen: 32
2a0a:be80::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 13 Nov 2023 10:55:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:0a:9f:25:6b:33:0c:e7:93:ce:fa:a0:b7:d5:54:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7302cdc29fdca09e9a0f3f7d2113da85a7e1d654
Validity
Not Before: Jan 1 11:14:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c10510a21627a9bfb69bf5ed4bdd6559b454deab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:04:51:7c:42:2a:dc:d7:0a:0d:73:9d:26:15:
7e:3b:38:e6:b9:19:a9:69:dd:ab:3f:c9:7f:2b:a3:
76:30:eb:9e:f7:dc:fa:4d:28:cb:c0:00:e5:e6:ff:
b2:fd:d6:55:0c:2b:0c:8b:6b:23:93:fa:05:da:7e:
73:e9:66:62:61:da:0a:2e:d6:02:af:a1:1a:e3:ac:
60:40:8a:cf:49:5a:72:1d:29:73:f3:55:a0:a0:b4:
9b:4c:ce:73:82:14:d4:7d:f1:37:f3:c1:19:61:d3:
9e:cf:b1:27:92:20:f0:91:fc:9f:4c:9e:6c:02:43:
99:94:73:fd:5d:f7:db:e1:e3:5f:4b:65:45:f1:1e:
7e:53:1a:55:f9:52:f6:52:95:81:d6:d4:86:94:a2:
92:fb:9d:5d:64:76:46:43:79:4c:91:12:77:83:dd:
40:3e:2d:6c:9c:00:a6:82:63:d3:89:07:dd:07:e3:
87:3f:c8:41:f6:59:ec:b2:1d:76:ad:08:b7:3b:18:
1b:94:e7:d0:05:8e:13:2a:71:94:aa:fe:ff:90:97:
8a:f6:e0:02:42:22:f9:08:8e:f4:2f:61:fe:cb:b7:
fd:e9:40:b9:bd:61:b6:86:11:63:f0:8d:7b:ed:dc:
b1:cf:50:45:79:f4:bd:74:92:48:86:91:d8:17:de:
85:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:05:10:A2:16:27:A9:BF:B6:9B:F5:ED:4B:DD:65:59:B4:54:DE:AB
X509v3 Authority Key Identifier:
keyid:73:02:CD:C2:9F:DC:A0:9E:9A:0F:3F:7D:21:13:DA:85:A7:E1:D6:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cwLNwp_coJ6aDz99IRPahafh1lQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/77217d-814b-486a-8ef2-fe0333ed005f/1/wQUQohYnqb-2m_XtS91lWbRU3qs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/77217d-814b-486a-8ef2-fe0333ed005f/1/cwLNwp_coJ6aDz99IRPahafh1lQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.223.128.0/19
78.40.224.0/21
91.191.160.0/20
93.187.200.0/21
185.80.72.0/24
195.244.32.0/19
IPv6:
2a01:aac0::/32
2a0a:be80::/29
Signature Algorithm: sha256WithRSAEncryption
93:88:4a:0a:61:11:00:25:6e:3d:2e:8e:8a:71:10:ed:89:6c:
ba:e7:0b:4d:b7:d7:39:45:c9:7d:01:93:56:bd:e9:3b:1c:cd:
fe:95:4e:9f:78:24:e4:65:27:65:8b:36:22:f1:50:85:a2:8a:
ae:f6:eb:0c:9d:2c:eb:a9:14:b6:c4:05:bb:31:ac:cf:b9:82:
a3:1c:e7:38:b5:25:e0:82:95:12:b5:59:75:ee:4f:64:73:cb:
58:09:ab:30:60:b5:0b:95:97:f1:a3:85:b7:79:b9:9e:36:6d:
6d:46:5e:b1:f4:98:8e:c4:52:1a:8f:33:06:5c:c1:c0:b0:4a:
7c:41:64:6a:c1:63:c4:f2:e2:b1:3e:8f:64:1f:d9:16:29:0b:
bf:c9:e8:ca:57:99:e0:32:2c:b4:6e:79:76:e7:91:ca:68:2d:
14:98:52:4b:1e:20:73:18:2b:9b:c7:4d:3a:0a:a5:54:65:8f:
b8:97:6c:a5:79:4e:dc:ef:be:5a:6f:5c:b5:b1:a9:47:52:96:
09:57:d5:f6:96:1c:c5:12:e2:15:10:bf:5d:00:bb:02:49:9a:
67:d3:74:8d:12:d1:94:76:d4:53:d5:5b:b7:b7:27:a6:6b:44:
ab:a5:b0:9d:f0:bf:03:95:37:aa:c3:a4:42:ec:d7:54:64:34:
48:e5:dc:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:10 2024 by rpki-client on console-fra.rpki-client.org