Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/e25239-6ab0-4919-a76a-4f4e71e32084/1/XJ3O807MB0Ep67GX6Yru0OLYDXE.roa
File: XJ3O807MB0Ep67GX6Yru0OLYDXE.roa (raw, json)
Hash identifier: iVAuUkj8MPjd97PXTc6c0YBQJsxntsOWWVc6JI4GQwU=
Subject key identifier: 5C:9D:CE:F3:4E:CC:07:41:29:EB:B1:97:E9:8A:EE:D0:E2:D8:0D:71
Certificate issuer: /CN=bdfad23e11cf0d24a477594eba09f99acc6f1fff
Certificate serial: 018CC9BCAE2F2CB4E5146597081B1E4DF2A6
Authority key identifier: BD:FA:D2:3E:11:CF:0D:24:A4:77:59:4E:BA:09:F9:9A:CC:6F:1F:FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vfrSPhHPDSSkd1lOugn5msxvH_8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/e25239-6ab0-4919-a76a-4f4e71e32084/1/XJ3O807MB0Ep67GX6Yru0OLYDXE.roa
Signing time: Tue 02 Jan 2024 10:33:54 +0000
ROA not before: Tue 02 Jan 2024 10:33:54 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44112
IP address blocks: 77.222.36.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 06 May 2024 10:46:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:ae:2f:2c:b4:e5:14:65:97:08:1b:1e:4d:f2:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bdfad23e11cf0d24a477594eba09f99acc6f1fff
Validity
Not Before: Jan 2 10:33:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5c9dcef34ecc074129ebb197e98aeed0e2d80d71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:67:83:28:6c:d9:c3:01:1c:cd:cb:92:9b:44:
5f:a8:73:3b:18:45:86:a9:49:d7:89:b2:a7:22:3c:
69:56:80:ce:a5:6f:fd:7e:5d:4d:e2:be:1e:6a:93:
23:c4:59:10:9e:35:1c:0f:c7:83:bb:3e:6d:4a:2b:
21:bd:2f:7e:27:82:5a:17:cf:db:0e:d9:b5:4a:f0:
a5:b1:31:20:3c:f4:ec:bd:5e:39:27:1f:a9:4c:b1:
ff:92:03:f9:9b:00:e1:20:5f:ed:77:74:54:5d:7d:
e8:ba:62:01:fa:90:76:73:2e:62:85:18:2a:00:58:
37:89:e8:a2:bd:0d:9c:6c:44:8a:11:0a:b3:91:35:
e1:bb:85:cf:9f:80:16:4b:27:6a:08:cb:76:f1:2a:
20:08:68:61:a3:56:7b:f1:90:bd:4c:64:2f:72:d1:
8d:ef:df:34:32:fa:6b:67:14:5c:8e:ba:6d:6f:02:
12:e5:9f:dc:ea:f6:ba:e7:24:f3:2d:65:9d:75:cf:
12:bf:68:8d:d0:ab:21:de:ff:7e:bc:3a:4e:a1:cb:
fd:21:af:6a:a2:f6:d3:07:ce:56:d2:f9:6b:70:bb:
9b:4a:e9:82:d2:a4:88:9c:3f:2a:07:ea:61:92:be:
32:4b:6f:5e:99:36:f9:31:b1:bb:ac:e4:fa:21:47:
95:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:9D:CE:F3:4E:CC:07:41:29:EB:B1:97:E9:8A:EE:D0:E2:D8:0D:71
X509v3 Authority Key Identifier:
keyid:BD:FA:D2:3E:11:CF:0D:24:A4:77:59:4E:BA:09:F9:9A:CC:6F:1F:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vfrSPhHPDSSkd1lOugn5msxvH_8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/e25239-6ab0-4919-a76a-4f4e71e32084/1/XJ3O807MB0Ep67GX6Yru0OLYDXE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/e25239-6ab0-4919-a76a-4f4e71e32084/1/vfrSPhHPDSSkd1lOugn5msxvH_8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.222.36.0/22
Signature Algorithm: sha256WithRSAEncryption
57:4f:77:e8:a4:82:55:ae:da:a5:4d:51:72:b5:a1:d8:3a:ed:
d0:31:c3:08:34:1e:a4:b6:09:1d:79:fa:43:32:9c:61:58:34:
c2:ed:dd:2e:76:8c:3f:32:9f:73:1e:0e:5b:96:85:d0:1b:73:
47:80:40:9f:c0:3b:ac:28:72:51:61:1a:08:16:92:67:b6:1a:
3a:22:ce:2d:35:a5:48:eb:1b:08:e8:9c:bb:c9:bf:3c:1c:a7:
6c:2f:72:fc:07:57:b3:5b:a2:d1:b0:58:a2:f6:ac:70:eb:7d:
f5:e6:30:53:87:ab:44:5f:5a:c6:89:1e:5f:27:26:a9:64:55:
87:64:c0:3f:ba:3e:04:f2:a0:7f:98:bc:8b:eb:16:33:dd:f7:
63:b9:4f:dd:27:13:63:6f:d1:9f:91:8e:e8:38:da:72:ad:b9:
57:9c:56:fd:cb:c2:dd:91:db:a7:a0:68:ce:3a:1c:02:64:c0:
51:61:50:68:8c:3f:3f:e0:b8:05:38:56:d1:97:a9:9f:be:e9:
45:d2:14:ca:7a:59:06:5d:3a:19:e8:40:c2:da:2e:6d:31:f3:
ff:66:ba:18:98:c8:a0:11:af:cd:2f:ef:6e:42:8d:bb:26:d0:
19:6e:63:6e:c6:14:13:f2:1c:e2:94:20:55:83:27:29:4a:c0:
ba:b6:28:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:13 2024 by rpki-client on console-ams.rpki-client.org