Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/6_iCLdq6Y2xVe2XGnHsD-LpO3S8.roa
File: 6_iCLdq6Y2xVe2XGnHsD-LpO3S8.roa (raw, json)
Hash identifier: IwMweNFZInFK7jLuf9rFoCNZ5h+bjSQ7Vd8pqJ4pLrk=
Subject key identifier: EB:F8:82:2D:DA:BA:63:6C:55:7B:65:C6:9C:7B:03:F8:BA:4E:DD:2F
Certificate issuer: /CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
Certificate serial: 018F5F6D68648C8E32832E8C96E8095026F6
Authority key identifier: AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/6_iCLdq6Y2xVe2XGnHsD-LpO3S8.roa
Signing time: Thu 09 May 2024 22:15:56 +0000
ROA not before: Thu 09 May 2024 22:15:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7018
IP address blocks: 77.81.79.0/24 maxlen: 24
77.81.80.0/23 maxlen: 24
128.65.172.0/22 maxlen: 24
188.214.234.0/23 maxlen: 24
194.26.2.0/24 maxlen: 24
194.26.21.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 01 Jun 2024 17:07:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:5f:6d:68:64:8c:8e:32:83:2e:8c:96:e8:09:50:26:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
Validity
Not Before: May 9 22:15:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ebf8822ddaba636c557b65c69c7b03f8ba4edd2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:75:38:7a:ea:0a:de:c8:87:52:2a:6b:4e:8c:
ea:50:9c:f8:0a:76:2c:a1:67:fb:01:bb:5c:24:6a:
9a:18:08:aa:d2:ef:be:1a:6b:bd:83:e4:3d:30:c0:
05:86:cb:20:fc:6c:83:dc:07:53:df:cc:e9:a6:ff:
c5:a5:b6:df:a9:0e:40:67:b5:e9:11:26:36:10:93:
70:fe:d1:d2:10:21:2e:17:56:55:8f:83:96:6c:0a:
b4:ab:92:59:59:81:0b:fa:98:21:b5:a6:7c:ea:fa:
b8:8c:1a:b7:61:bb:de:18:a2:f5:77:e8:c8:b2:8f:
be:b9:16:d8:1a:ca:c7:d5:33:89:36:4f:81:fa:48:
66:d1:b2:e3:72:19:c0:fd:dd:00:15:ff:f0:5c:9a:
23:6b:19:4b:14:58:e6:e7:c0:6a:16:20:d2:c3:91:
53:3a:46:58:86:c1:63:06:73:9a:60:34:ba:7f:85:
4a:fe:d5:39:e6:09:c5:e1:05:af:7e:98:c0:92:78:
62:90:f8:80:e8:d5:49:a1:96:76:13:40:ab:c4:f1:
95:52:69:08:41:fc:70:a9:ac:a3:3b:ce:49:df:bb:
e4:56:50:40:00:8a:bc:7d:dd:0f:f1:9a:4c:e0:5d:
09:2f:d1:58:6d:50:d6:32:bd:1b:5c:98:a7:70:5d:
13:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:F8:82:2D:DA:BA:63:6C:55:7B:65:C6:9C:7B:03:F8:BA:4E:DD:2F
X509v3 Authority Key Identifier:
keyid:AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/6_iCLdq6Y2xVe2XGnHsD-LpO3S8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/ry8uht18yRAWWP-NWlJBRF_NHWo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.81.79.0-77.81.81.255
128.65.172.0/22
188.214.234.0/23
194.26.2.0/24
194.26.21.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:b3:0e:bb:a3:89:d9:4d:25:dd:20:0f:bc:e9:f7:32:4b:57:
e7:65:5a:1c:2f:d2:a9:63:70:4e:fa:47:43:aa:b3:a7:8a:dc:
5c:cd:9e:86:1a:05:6b:22:5c:ee:86:b9:41:14:dc:9b:bc:52:
ba:80:4a:90:30:1a:33:1f:ec:0f:dd:84:c4:55:05:aa:e8:ef:
2e:ef:45:d3:2a:da:bd:f7:bd:1c:59:35:21:47:50:fe:22:59:
ba:df:57:91:f8:79:8f:8b:ff:b1:fd:3f:a5:0c:ad:21:d2:59:
cc:9d:51:23:2c:c2:43:b9:c8:36:42:13:1e:e3:e8:6f:10:62:
15:71:3d:b8:75:46:8a:67:2b:ea:b6:56:63:74:01:81:63:03:
49:ca:20:8f:a2:9f:f4:0b:d8:3e:c3:35:3f:bb:dc:aa:42:0f:
46:73:5c:1d:9b:9e:69:08:7b:cb:dd:29:4d:76:c3:17:1a:c2:
d7:e8:ec:49:8e:fa:ce:11:a7:d6:82:70:ed:c0:56:72:49:41:
e4:b6:ed:e3:4b:91:4c:bf:aa:bb:5c:6d:12:36:61:3f:65:26:
c1:65:b4:98:ec:50:d7:8f:0c:a3:48:be:ed:b2:74:ce:d5:b7:
ae:68:65:a9:e2:71:c0:b7:86:a6:aa:f6:91:cc:b9:db:0b:d8:
5c:88:dd:83
-----BEGIN CERTIFICATE-----
MIIFHTCCBAWgAwIBAgISAY9fbWhkjI4ygy6MlugJUCb2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFmMmYyZTg2ZGQ3Y2M5MTAxNjU4ZmY4ZDVhNTI0MTQ0NWZj
ZDFkNmEwHhcNMjQwNTA5MjIxNTU2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlYmY4ODIyZGRhYmE2MzZjNTU3YjY1YzY5YzdiMDNmOGJhNGVkZDJmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv3U4euoK3siHUiprTozqUJz4CnYs
oWf7AbtcJGqaGAiq0u++Gmu9g+Q9MMAFhssg/GyD3AdT38zppv/FpbbfqQ5AZ7Xp
ESY2EJNw/tHSECEuF1ZVj4OWbAq0q5JZWYEL+pghtaZ86vq4jBq3YbveGKL1d+jI
so++uRbYGsrH1TOJNk+B+khm0bLjchnA/d0AFf/wXJojaxlLFFjm58BqFiDSw5FT
OkZYhsFjBnOaYDS6f4VK/tU55gnF4QWvfpjAknhikPiA6NVJoZZ2E0CrxPGVUmkI
QfxwqayjO85J37vkVlBAAIq8fd0P8ZpM4F0JL9FYbVDWMr0bXJincF0T0QIDAQAB
o4ICKTCCAiUwHQYDVR0OBBYEFOv4gi3aumNsVXtlxpx7A/i6Tt0vMB8GA1UdIwQY
MBaAFK8vLobdfMkQFlj/jVpSQURfzR1qMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcnk4dWh0MTh5UkFXV1AtTldsSkJSRl9OSFdvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNC9lMDhiOGUtYmYyMi00MzVjLThiMWYt
NDZiYjdhZWMxZjMwLzEvNl9pQ0xkcTZZMnhWZTJYR25Ic0QtTHBPM1M4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNC9lMDhiOGUtYmYyMi00MzVjLThiMWYtNDZiYjdhZWMxZjMw
LzEvcnk4dWh0MTh5UkFXV1AtTldsSkJSRl9OSFdvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMD8GCCsGAQUFBwEHAQH/BDAwLjAsBAIAATAmMAwDBABNUU8D
BAFNUVADBAKAQawDBAG81uoDBADCGgIDBADCGhUwDQYJKoZIhvcNAQELBQADggEB
AI2zDrujidlNJd0gD7zp9zJLV+dlWhwv0qljcE76R0Oqs6eK3FzNnoYaBWsiXO6G
uUEU3Ju8UrqASpAwGjMf7A/dhMRVBaro7y7vRdMq2r33vRxZNSFHUP4iWbrfV5H4
eY+L/7H9P6UMrSHSWcydUSMswkO5yDZCEx7j6G8QYhVxPbh1RopnK+q2VmN0AYFj
A0nKII+in/QL2D7DNT+73KpCD0ZzXB2bnmkIe8vdKU12wxcawtfo7EmO+s4Rp9aC
cO3AVnJJQeS27eNLkUy/qrtcbRI2YT9lJsFltJjsUNePDKNIvu2ydM7Vt65oZani
ccC3hqaq9pHMudsL2FyI3YM=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:24 2024 by rpki-client on console-ams.rpki-client.org