Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/B7hhnWhRbzI1tu3NsCZMOh_WTbA.roa
File: B7hhnWhRbzI1tu3NsCZMOh_WTbA.roa (raw, json)
Hash identifier: id6uwDPHk1Go1+UEd25vDBvBEaGOms88lNmk9Ui10gk=
Subject key identifier: 07:B8:61:9D:68:51:6F:32:35:B6:ED:CD:B0:26:4C:3A:1F:D6:4D:B0
Certificate issuer: /CN=00775d9471b85d963fef6d283590e2d942dd5c21
Certificate serial: 0187F0D469367A88CE6303F85343A9CAF8C2
Authority key identifier: 00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/B7hhnWhRbzI1tu3NsCZMOh_WTbA.roa
Signing time: Sat 06 May 2023 11:31:05 +0000
ROA not before: Sat 06 May 2023 11:31:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43395
IP address blocks: 87.107.85.0/24 maxlen: 24
81.12.64.0/23 maxlen: 23
81.12.90.0/23 maxlen: 23
87.107.31.0/24 maxlen: 24
87.107.142.0/23 maxlen: 23
87.107.32.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:f0:d4:69:36:7a:88:ce:63:03:f8:53:43:a9:ca:f8:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00775d9471b85d963fef6d283590e2d942dd5c21
Validity
Not Before: May 6 11:31:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=07b8619d68516f3235b6edcdb0264c3a1fd64db0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:2a:d3:15:74:c4:1c:29:45:c6:19:9d:57:66:
12:e0:37:f2:7e:c8:77:14:25:f5:4d:6d:22:4d:3c:
1c:93:49:55:e0:d3:d6:da:c5:7d:00:21:2b:16:56:
11:04:66:f5:00:d0:e3:0e:fd:5d:7c:81:6b:9a:bd:
a7:34:8d:e6:4b:48:ca:78:96:ee:31:a6:8f:3e:9f:
43:ef:88:45:bb:8f:00:a7:62:32:c8:90:33:e8:4f:
d9:b0:cc:83:3a:4f:31:09:ae:9e:1a:99:db:16:a2:
62:33:44:96:da:bd:7e:5a:6d:7e:3b:df:d6:a6:da:
f8:17:3e:a9:3c:9a:e2:77:3e:de:48:03:c6:6d:d4:
cb:22:b5:99:07:9b:df:d4:1e:2a:02:0d:15:a9:0c:
86:6d:75:4b:c4:cd:7f:8b:fc:f0:94:40:3a:e0:85:
a9:e5:7b:1c:8d:be:f1:4b:be:7c:a0:9a:9f:e1:90:
86:be:f9:34:85:42:ef:95:5d:36:4b:90:01:28:21:
a4:e5:db:fa:16:7b:aa:5d:28:2f:25:c1:0c:7e:74:
f1:48:e8:2b:08:52:36:c6:9f:8f:0c:cc:84:0f:07:
4b:c5:15:42:45:3e:a2:5a:82:03:d3:ae:cf:63:d4:
98:53:a8:89:ac:8d:0d:79:b5:77:ba:0e:08:8c:ec:
a2:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:B8:61:9D:68:51:6F:32:35:B6:ED:CD:B0:26:4C:3A:1F:D6:4D:B0
X509v3 Authority Key Identifier:
keyid:00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/B7hhnWhRbzI1tu3NsCZMOh_WTbA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/AHddlHG4XZY_720oNZDi2ULdXCE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.12.64.0/23
81.12.90.0/23
87.107.31.0-87.107.33.255
87.107.85.0/24
87.107.142.0/23
Signature Algorithm: sha256WithRSAEncryption
19:90:e7:11:fb:7d:49:56:a9:ac:fe:5b:b4:97:d6:22:25:8d:
26:63:b0:67:4e:b2:20:f8:a3:b2:68:cf:a6:74:0d:bd:fd:fd:
4e:58:16:e1:60:3e:94:7e:8a:e0:fc:4f:5e:84:96:17:c9:2c:
2e:35:d3:d9:92:30:bd:4a:b4:7e:14:15:3e:af:70:80:c8:90:
cc:09:5e:b1:88:15:bf:64:be:3e:6a:cb:3e:d4:94:4d:90:0f:
c8:20:75:aa:60:b1:41:ad:48:14:b4:cb:66:bc:c1:a5:04:ad:
50:e1:3a:e9:bb:85:bb:f5:ec:73:e9:e2:00:a8:19:11:06:a0:
f9:49:ef:68:95:df:91:5a:e6:fe:70:55:9e:c4:40:c5:67:e8:
1b:b8:54:d6:12:5f:bf:f6:77:37:91:0e:33:da:6a:de:fc:3e:
f4:50:07:d5:84:6a:e4:1d:9d:a8:98:1b:56:d5:fb:a5:12:af:
52:5e:46:2f:dc:44:32:cb:43:88:c2:12:6f:70:20:d6:f9:b2:
0f:3a:89:49:87:af:97:63:42:1b:ef:d2:53:98:cb:67:e2:8e:
f3:15:00:95:29:17:b1:ab:67:ec:e8:cd:1b:ba:da:13:b5:4c:
5c:4d:0b:2b:71:42:15:05:ba:b5:48:de:72:14:10:0a:65:de:
45:67:bb:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:33 2023 by rpki-client on console-ams.rpki-client.org