Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/381d69-2c41-45a8-90d4-6ae90b247592/1/WB7JKxumVNqw2XBRSR1rHXW5g7o.roa
File: WB7JKxumVNqw2XBRSR1rHXW5g7o.roa (raw, json)
Hash identifier: GojqWi6grIHaI+WzkDvQ7lje4lDbYUgZ8ElTv0dgXpw=
Subject key identifier: 58:1E:C9:2B:1B:A6:54:DA:B0:D9:70:51:49:1D:6B:1D:75:B9:83:BA
Certificate issuer: /CN=22fb528aba018f142f4444cccc9723736cd4e4b6
Certificate serial: 01856EEFF18ADA22F1B8877BFF4023524B2D
Authority key identifier: 22:FB:52:8A:BA:01:8F:14:2F:44:44:CC:CC:97:23:73:6C:D4:E4:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IvtSiroBjxQvRETMzJcjc2zU5LY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/381d69-2c41-45a8-90d4-6ae90b247592/1/WB7JKxumVNqw2XBRSR1rHXW5g7o.roa
Signing time: Sun 01 Jan 2023 20:04:56 +0000
ROA not before: Sun 01 Jan 2023 20:04:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205718
IP address blocks: 77.83.144.0/22 maxlen: 22
2a09:fcc0::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:ef:f1:8a:da:22:f1:b8:87:7b:ff:40:23:52:4b:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22fb528aba018f142f4444cccc9723736cd4e4b6
Validity
Not Before: Jan 1 20:04:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=581ec92b1ba654dab0d97051491d6b1d75b983ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:77:fd:2d:b5:03:5b:ac:e7:9d:3d:fa:5b:c2:
ed:39:82:b2:a9:01:62:8d:b4:8c:d0:35:98:35:4f:
5c:db:4b:6e:1d:2b:f7:02:9b:65:8f:bf:70:eb:82:
6c:f3:ab:97:5c:58:23:08:05:e4:a4:69:96:69:a3:
d6:b7:91:60:7c:e1:95:d3:f0:e8:59:bd:f5:cf:b8:
ba:83:3f:92:70:48:16:f2:78:9f:ef:18:5b:c4:52:
72:a4:eb:01:86:ef:dd:06:de:11:e3:7b:65:08:94:
28:0c:5d:35:da:f5:c6:9f:d2:de:8c:65:9f:69:9a:
ed:f0:a4:3f:9a:d5:e8:88:d4:62:8b:66:e8:83:e9:
47:31:bd:25:65:8f:92:c9:da:62:2e:b4:db:56:d5:
a4:63:9b:aa:cf:73:e2:2b:23:92:98:a9:7f:86:9e:
6b:3a:97:60:56:8a:61:42:05:61:c3:c7:2d:19:20:
39:73:fe:24:35:a7:3d:ce:ee:68:04:af:70:f5:87:
fe:77:71:a0:bf:7b:3c:eb:3e:62:52:02:6e:a2:56:
b8:17:aa:09:17:5b:fd:45:76:21:5d:50:58:a5:51:
f6:91:27:14:88:26:cf:6c:12:c3:b0:77:7f:af:4e:
b3:4c:48:24:45:31:dd:5a:26:16:90:8f:3e:17:b9:
df:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:1E:C9:2B:1B:A6:54:DA:B0:D9:70:51:49:1D:6B:1D:75:B9:83:BA
X509v3 Authority Key Identifier:
keyid:22:FB:52:8A:BA:01:8F:14:2F:44:44:CC:CC:97:23:73:6C:D4:E4:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IvtSiroBjxQvRETMzJcjc2zU5LY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/381d69-2c41-45a8-90d4-6ae90b247592/1/WB7JKxumVNqw2XBRSR1rHXW5g7o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/381d69-2c41-45a8-90d4-6ae90b247592/1/IvtSiroBjxQvRETMzJcjc2zU5LY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.83.144.0/22
IPv6:
2a09:fcc0::/32
Signature Algorithm: sha256WithRSAEncryption
01:63:65:8c:1e:c5:55:4b:5e:45:77:aa:a0:8c:aa:b3:7d:bd:
03:9e:bf:2d:a4:48:3b:98:21:52:5f:fe:a9:76:a4:51:14:5c:
f1:0f:be:f2:bb:7b:fb:31:3f:ec:15:d5:95:2c:d2:e6:77:ec:
ea:a8:d7:bd:db:d4:c9:80:cd:16:2e:6f:45:9c:46:c3:ee:29:
f8:3c:43:76:49:73:24:18:41:a0:c6:54:6d:46:6a:c1:05:30:
86:77:ab:fa:b4:7e:8f:2c:2c:40:46:f8:aa:bd:84:3b:43:fc:
95:26:f4:df:2c:ee:79:b6:ee:31:58:8d:1e:7b:80:9d:b3:5b:
10:c0:3a:f6:71:59:4f:e6:2f:9e:b7:1b:7f:32:e9:4d:38:ff:
40:21:4e:ce:68:a5:cf:c2:55:b6:00:7f:46:77:4d:64:60:a2:
09:f0:b1:38:7f:7e:8f:86:62:fd:08:62:6c:a8:7a:24:47:76:
b0:eb:6a:ef:05:90:f3:f8:7c:cb:61:c4:be:d3:49:17:29:d8:
fb:ef:79:66:1a:bd:bc:28:c9:b9:55:3c:20:33:e8:10:34:62:
08:c6:1a:09:a9:12:58:74:ab:b6:c5:89:63:52:0e:53:57:57:
12:cb:b7:c1:ca:35:52:cd:b4:5d:1a:5e:fa:73:1c:d4:e2:7b:
75:e8:20:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 11:52:43 2024 by rpki-client on console-fra.rpki-client.org