Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/74v6ge97sdG5kP3Q9o2Lzea6Vf4.roa
File: 74v6ge97sdG5kP3Q9o2Lzea6Vf4.roa (raw, json)
Hash identifier: CqC3bwlo7vXzZeQTWOVt5miBGLzRQE1sc65dW0Bobg8=
Subject key identifier: EF:8B:FA:81:EF:7B:B1:D1:B9:90:FD:D0:F6:8D:8B:CD:E6:BA:55:FE
Certificate issuer: /CN=00775d9471b85d963fef6d283590e2d942dd5c21
Certificate serial: 01856F5DC055F227E6A37B1BD658BA12DF31
Authority key identifier: 00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/74v6ge97sdG5kP3Q9o2Lzea6Vf4.roa
Signing time: Sun 01 Jan 2023 22:04:53 +0000
ROA not before: Sun 01 Jan 2023 22:04:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205207
IP address blocks: 81.12.77.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:5d:c0:55:f2:27:e6:a3:7b:1b:d6:58:ba:12:df:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00775d9471b85d963fef6d283590e2d942dd5c21
Validity
Not Before: Jan 1 22:04:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ef8bfa81ef7bb1d1b990fdd0f68d8bcde6ba55fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:e7:38:6a:e8:31:b3:cf:a3:da:c5:fa:e4:5c:
44:85:00:97:48:f8:3f:b8:37:c3:71:b3:06:79:2d:
a9:62:a9:f7:30:47:c8:4b:12:f7:b3:b9:bd:fc:5c:
6e:08:be:b0:d5:b2:db:e1:de:23:d8:b4:b0:58:ff:
a9:12:97:94:99:74:dc:6b:c2:cb:cb:eb:4b:bf:41:
21:d5:28:20:3f:04:a2:f3:25:4e:f6:57:b6:5e:8a:
1f:3b:21:f2:98:e3:93:58:cf:81:82:5d:39:bc:46:
ef:57:0c:f8:08:aa:09:b3:ad:61:eb:0f:bd:b4:98:
b5:9c:de:db:80:76:c7:4f:06:44:1d:5f:ae:04:e1:
96:90:68:95:98:c3:c2:c1:ee:6b:96:da:84:38:a4:
b7:94:ab:28:57:e4:08:b1:23:b8:76:c8:d9:1b:bd:
11:a8:02:bf:ed:44:1e:29:1b:5e:0a:fa:50:2a:91:
6e:14:c5:33:69:69:f9:24:15:2e:da:fb:0d:ba:88:
77:43:57:b5:51:a4:f3:19:b2:e9:b2:89:95:fe:d5:
2c:e2:d2:19:69:59:62:87:55:e6:aa:47:b7:32:4e:
78:18:96:b7:d3:6b:7f:be:de:16:fe:79:c0:52:57:
7d:e0:05:50:86:ec:57:97:bc:12:04:ee:dd:6f:d6:
01:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:8B:FA:81:EF:7B:B1:D1:B9:90:FD:D0:F6:8D:8B:CD:E6:BA:55:FE
X509v3 Authority Key Identifier:
keyid:00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/74v6ge97sdG5kP3Q9o2Lzea6Vf4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/AHddlHG4XZY_720oNZDi2ULdXCE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.12.77.0/24
Signature Algorithm: sha256WithRSAEncryption
95:7a:ca:36:90:d4:76:68:71:f5:fd:51:54:70:cc:55:52:7c:
a9:cf:f3:cf:fd:e2:4d:80:0c:68:94:09:94:66:4a:b8:3e:5e:
a3:ac:29:2e:b9:cc:9d:c3:0a:cf:75:c1:47:f2:1f:a3:6b:c7:
bb:b2:b2:18:38:0e:ad:b4:04:01:cf:c9:d9:b8:d0:57:a7:53:
04:40:c5:6e:86:87:58:2d:a3:a3:f1:c5:a9:c3:c4:b5:d8:cb:
95:88:15:cf:b1:d5:f7:9d:36:15:56:61:99:56:93:fb:d9:85:
18:73:c6:4b:f2:f9:28:90:6b:7c:a7:2c:20:2d:98:47:d0:fe:
83:b6:9a:64:2d:a9:0b:b4:90:15:c9:be:eb:56:9a:c2:65:1f:
f4:49:6f:a9:c6:50:22:89:5e:55:90:e3:07:84:12:f4:67:44:
8b:de:47:62:d4:f9:29:36:dd:b1:bd:fe:5e:6a:ed:af:00:e5:
7f:8c:ad:11:15:89:46:79:bf:be:cb:38:eb:e1:3a:73:ff:de:
d4:25:b2:b6:a4:0d:f1:8a:71:56:af:bf:a1:8d:d2:4d:4a:45:
ad:66:d2:48:3c:66:d5:42:0e:47:30:45:60:8d:21:e5:41:d2:
91:1e:a9:62:94:ea:02:fa:5b:d6:a7:b9:1f:3c:e6:ba:3b:d4:
f9:d5:35:66
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvXcBV8ifmo3sb1li6Et8xMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAwNzc1ZDk0NzFiODVkOTYzZmVmNmQyODM1OTBlMmQ5NDJk
ZDVjMjEwHhcNMjMwMTAxMjIwNDUzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlZjhiZmE4MWVmN2JiMWQxYjk5MGZkZDBmNjhkOGJjZGU2YmE1NWZlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlec4augxs8+j2sX65FxEhQCXSPg/
uDfDcbMGeS2pYqn3MEfISxL3s7m9/FxuCL6w1bLb4d4j2LSwWP+pEpeUmXTca8LL
y+tLv0Eh1SggPwSi8yVO9le2XoofOyHymOOTWM+Bgl05vEbvVwz4CKoJs61h6w+9
tJi1nN7bgHbHTwZEHV+uBOGWkGiVmMPCwe5rltqEOKS3lKsoV+QIsSO4dsjZG70R
qAK/7UQeKRteCvpQKpFuFMUzaWn5JBUu2vsNuoh3Q1e1UaTzGbLpsomV/tUs4tIZ
aVlih1Xmqke3Mk54GJa302t/vt4W/nnAUld94AVQhuxXl7wSBO7db9YB+wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFO+L+oHve7HRuZD90PaNi83mulX+MB8GA1UdIwQY
MBaAFAB3XZRxuF2WP+9tKDWQ4tlC3VwhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQUhkZGxIRzRYWllfNzIwb05aRGkyVUxkWENFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNi82Mzc2MGMtZTIxYi00YmFmLWE5YTQt
NzZiMzNlNGNlODIxLzEvNzR2NmdlOTdzZEc1a1AzUTlvMkx6ZWE2VmY0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNi82Mzc2MGMtZTIxYi00YmFmLWE5YTQtNzZiMzNlNGNlODIx
LzEvQUhkZGxIRzRYWllfNzIwb05aRGkyVUxkWENFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAUQxNMA0G
CSqGSIb3DQEBCwUAA4IBAQCVeso2kNR2aHH1/VFUcMxVUnypz/PP/eJNgAxolAmU
Zkq4Pl6jrCkuucydwwrPdcFH8h+ja8e7srIYOA6ttAQBz8nZuNBXp1MEQMVuhodY
LaOj8cWpw8S12MuViBXPsdX3nTYVVmGZVpP72YUYc8ZL8vkokGt8pywgLZhH0P6D
tppkLakLtJAVyb7rVprCZR/0SW+pxlAiiV5VkOMHhBL0Z0SL3kdi1PkpNt2xvf5e
au2vAOV/jK0RFYlGeb++yzjr4Tpz/97UJbK2pA3xinFWr7+hjdJNSkWtZtJIPGbV
Qg5HMEVgjSHlQdKRHqlilOoC+lvWp7kfPOa6O9T51TVm
-----END CERTIFICATE-----
Generated at Tue Jan 2 17:35:35 2024 by rpki-client on console-fra.rpki-client.org