Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/9ee980-67a2-4d3c-b6ca-fde073588f0f/1/1mpyjTcU9MUmoKkWpIH5bwO6YB4.roa
File: 1mpyjTcU9MUmoKkWpIH5bwO6YB4.roa (raw, json)
Hash identifier: rZ90Y2C8QOwBe61p06913XClAQYUh2B5QExWOCvvGfM=
Subject key identifier: D6:6A:72:8D:37:14:F4:C5:26:A0:A9:16:A4:81:F9:6F:03:BA:60:1E
Certificate issuer: /CN=b59909ed171b38c1fdc4362229e78d69851de11c
Certificate serial: 018CC6B784346409404BC0BD6DEEE31F4F43
Authority key identifier: B5:99:09:ED:17:1B:38:C1:FD:C4:36:22:29:E7:8D:69:85:1D:E1:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tZkJ7RcbOMH9xDYiKeeNaYUd4Rw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/9ee980-67a2-4d3c-b6ca-fde073588f0f/1/1mpyjTcU9MUmoKkWpIH5bwO6YB4.roa
Signing time: Mon 01 Jan 2024 20:29:24 +0000
ROA not before: Mon 01 Jan 2024 20:29:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60447
IP address blocks: 77.246.219.0/24 maxlen: 24
77.246.218.0/24 maxlen: 24
77.246.217.0/24 maxlen: 24
77.246.216.0/22 maxlen: 22
77.246.216.0/24 maxlen: 24
185.97.73.0/24 maxlen: 24
185.97.72.0/24 maxlen: 24
185.97.72.0/22 maxlen: 22
185.97.75.0/24 maxlen: 24
185.97.74.0/24 maxlen: 24
95.214.104.0/22 maxlen: 22
95.214.104.0/23 maxlen: 23
95.214.106.0/23 maxlen: 23
2a06:4c0::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 24 Apr 2024 03:42:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b7:84:34:64:09:40:4b:c0:bd:6d:ee:e3:1f:4f:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b59909ed171b38c1fdc4362229e78d69851de11c
Validity
Not Before: Jan 1 20:29:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d66a728d3714f4c526a0a916a481f96f03ba601e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:e3:1f:a4:fb:2a:95:5a:00:f9:ac:81:24:58:
57:9f:59:d7:bf:ad:0d:90:a1:c4:b8:ae:81:a3:e9:
cb:b0:7e:8c:41:50:e6:6c:dc:44:9c:4e:26:56:72:
25:03:2f:5f:a0:e9:75:f1:4f:2a:d6:eb:80:76:b1:
22:4b:27:cc:30:18:80:62:9e:bf:11:88:82:99:80:
0f:b1:a2:57:d9:06:b5:f5:c6:7f:d3:e2:4f:5f:97:
9f:4a:33:e0:6d:f3:39:92:cc:61:76:8f:9b:3d:e3:
e9:d3:eb:12:db:34:99:4f:2d:b5:7c:54:33:f7:38:
35:da:ff:96:12:69:9c:9d:ba:0f:c6:03:45:8f:b9:
3b:81:0b:63:3a:b8:e2:60:6b:f9:4b:89:ca:05:13:
6f:65:b3:8d:e1:fd:c5:d7:9c:6a:34:3e:f1:c6:2a:
81:f9:70:a1:ee:65:06:fc:bd:48:7e:c4:6e:dc:53:
22:f8:07:47:dd:70:ba:3c:05:ca:e6:02:75:ce:63:
7b:ea:25:2f:91:32:6d:c7:1e:69:20:03:26:7b:6d:
5c:ed:b0:79:04:0c:c7:d2:de:3a:be:ce:ef:af:a1:
ee:ed:d8:d9:8f:ba:76:4d:8e:70:a8:7f:57:b4:a7:
55:d2:8d:db:f3:9f:22:64:eb:36:6b:aa:f8:ab:aa:
12:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:6A:72:8D:37:14:F4:C5:26:A0:A9:16:A4:81:F9:6F:03:BA:60:1E
X509v3 Authority Key Identifier:
keyid:B5:99:09:ED:17:1B:38:C1:FD:C4:36:22:29:E7:8D:69:85:1D:E1:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tZkJ7RcbOMH9xDYiKeeNaYUd4Rw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/9ee980-67a2-4d3c-b6ca-fde073588f0f/1/1mpyjTcU9MUmoKkWpIH5bwO6YB4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/9ee980-67a2-4d3c-b6ca-fde073588f0f/1/tZkJ7RcbOMH9xDYiKeeNaYUd4Rw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.246.216.0/22
95.214.104.0/22
185.97.72.0/22
IPv6:
2a06:4c0::/32
Signature Algorithm: sha256WithRSAEncryption
76:e7:a0:e1:af:f9:71:f5:0f:59:26:a1:45:9a:cb:d9:8b:7d:
e8:f1:39:32:cc:3c:85:a6:94:79:02:74:b9:36:35:bd:84:79:
61:40:d4:9e:f2:07:64:95:53:3f:5b:03:e0:55:5f:4b:56:39:
5c:f0:08:9d:06:59:c5:83:1e:d5:8d:b0:a4:a9:9c:eb:77:6e:
08:b4:3f:9a:1c:e7:78:00:97:36:b1:4d:ed:a9:e7:f8:10:8d:
e8:1b:55:c4:0e:17:4b:07:7b:62:95:3d:15:40:76:d1:11:fe:
00:f6:f9:29:37:96:63:6b:61:03:c1:7d:fb:81:7f:02:64:ff:
68:0e:5c:f1:ef:c1:60:be:5d:0d:14:81:b2:7b:23:f8:04:68:
c7:7e:6e:3e:1a:d9:2e:73:96:ae:29:c7:69:5b:3d:c6:86:3f:
45:d0:26:41:f8:12:34:6f:d9:2a:16:1c:dd:cb:5f:f6:49:2b:
50:56:81:b2:74:b0:f1:66:fd:2a:82:6f:c8:3f:f2:9b:10:c4:
6e:23:cf:b6:09:c1:29:36:49:49:9f:72:4b:3c:b0:bc:ea:c6:
d4:f7:23:2f:2d:83:fc:ad:59:a9:e8:d0:de:6b:b5:8d:60:1e:
16:33:03:03:b1:5b:2c:eb:7b:ee:e6:6a:95:9f:d0:19:e5:6b:
76:c9:5a:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:38 2024 by rpki-client on console-fra.rpki-client.org