Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/LcKhc2Vgj0T0YnqyODmIPlWVZ2A.roa
File: LcKhc2Vgj0T0YnqyODmIPlWVZ2A.roa (raw, json)
Hash identifier: WaX98YHmpBh2825MyqR6BWiDK02k6MI/kh8k69t/Aoc=
Subject key identifier: 2D:C2:A1:73:65:60:8F:44:F4:62:7A:B2:38:39:88:3E:55:95:67:60
Certificate issuer: /CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
Certificate serial: 018CCA2A3FA264D368542F5B9D1AB41AF5D0
Authority key identifier: AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/LcKhc2Vgj0T0YnqyODmIPlWVZ2A.roa
Signing time: Tue 02 Jan 2024 12:33:35 +0000
ROA not before: Tue 02 Jan 2024 12:33:35 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 5065
IP address blocks: 77.81.79.0/24 maxlen: 24
188.214.232.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 06 Feb 2024 14:55:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2a:3f:a2:64:d3:68:54:2f:5b:9d:1a:b4:1a:f5:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
Validity
Not Before: Jan 2 12:33:35 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2dc2a17365608f44f4627ab23839883e55956760
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:03:92:90:47:d2:7e:32:6d:c4:6a:98:d7:41:
e6:16:4e:60:54:c1:4a:5d:70:b5:54:03:2c:e2:2e:
be:5f:6f:ed:74:36:dd:f1:f9:d8:50:a6:81:63:f3:
53:c5:89:57:66:e6:8e:dd:9a:59:be:8d:a0:bb:22:
cd:16:f0:b0:28:a8:e3:68:5c:94:06:85:2f:17:64:
22:f1:6d:30:fd:09:ce:fa:f5:2c:e4:47:e4:3f:b4:
c6:24:05:7f:2d:a6:e4:74:e4:b2:7c:c1:f5:9a:fc:
39:99:5f:8b:79:77:96:ea:9b:94:e1:31:03:2a:14:
94:25:7a:c5:0d:e0:71:8b:4c:b7:c7:2b:53:51:c1:
b2:15:d1:34:8f:94:9e:e1:85:a6:90:cc:78:b4:a7:
cf:f5:a4:8c:19:7d:6e:45:0e:f0:e6:c1:25:ab:8f:
73:2b:a5:56:e9:9b:59:93:af:1f:ef:1e:7b:6d:b7:
c0:bc:49:3d:0a:3a:f6:2d:a7:d3:29:6e:33:d6:61:
b9:78:4a:5d:7a:43:df:af:60:aa:82:db:5f:37:3c:
4b:3e:ab:46:9f:e0:59:10:25:2e:c0:5f:4d:16:44:
13:b0:62:c7:8c:b5:b5:3d:db:c0:1b:44:d5:54:31:
da:11:fb:a7:9f:64:fa:d8:f9:e0:af:d5:6d:f1:77:
9b:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:C2:A1:73:65:60:8F:44:F4:62:7A:B2:38:39:88:3E:55:95:67:60
X509v3 Authority Key Identifier:
keyid:AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/LcKhc2Vgj0T0YnqyODmIPlWVZ2A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/ry8uht18yRAWWP-NWlJBRF_NHWo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.81.79.0/24
188.214.232.0/23
Signature Algorithm: sha256WithRSAEncryption
57:da:0b:cc:cd:9e:5d:3f:f7:31:b4:44:89:a5:3f:85:b1:4e:
4d:5d:81:6f:fa:26:41:a8:82:9d:bc:76:1d:70:f9:a4:5d:87:
ff:f2:c0:c9:e4:7a:17:36:90:f0:da:79:ae:fa:cf:f3:b6:75:
cb:32:d0:54:8e:6e:3b:a8:3f:55:16:c0:f9:24:d7:38:de:4a:
22:10:65:25:6a:d0:21:2e:d7:24:70:92:f5:46:d4:28:c8:af:
78:01:8d:96:ce:32:0b:23:39:24:e9:4c:07:23:b3:14:3e:b5:
64:25:d7:b0:80:08:a9:fc:96:c6:3f:67:64:3f:a3:16:17:5f:
c0:14:eb:2b:b4:4e:1f:49:8b:7d:3c:b1:d6:9e:78:e5:36:24:
78:f4:3d:29:34:91:bc:84:fb:00:96:34:7a:bd:ac:70:de:40:
50:c8:61:fd:d3:57:f7:39:97:47:81:77:ec:91:52:ab:5c:23:
57:46:38:42:48:4e:df:2f:72:39:e0:5f:c3:1c:aa:58:2f:3a:
7a:e3:04:f8:ff:62:cd:42:86:fb:20:49:ae:cf:15:ce:b5:96:
50:e9:4f:95:06:c2:05:d6:ab:e7:93:09:23:84:9d:29:1e:6a:
77:a1:c4:a6:b2:da:b3:21:7f:30:15:00:7f:46:7a:e1:95:f8:
13:d6:e9:af
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYzKKj+iZNNoVC9bnRq0GvXQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFmMmYyZTg2ZGQ3Y2M5MTAxNjU4ZmY4ZDVhNTI0MTQ0NWZj
ZDFkNmEwHhcNMjQwMTAyMTIzMzM1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyZGMyYTE3MzY1NjA4ZjQ0ZjQ2MjdhYjIzODM5ODgzZTU1OTU2NzYwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhAOSkEfSfjJtxGqY10HmFk5gVMFK
XXC1VAMs4i6+X2/tdDbd8fnYUKaBY/NTxYlXZuaO3ZpZvo2guyLNFvCwKKjjaFyU
BoUvF2Qi8W0w/QnO+vUs5EfkP7TGJAV/LabkdOSyfMH1mvw5mV+LeXeW6puU4TED
KhSUJXrFDeBxi0y3xytTUcGyFdE0j5Se4YWmkMx4tKfP9aSMGX1uRQ7w5sElq49z
K6VW6ZtZk68f7x57bbfAvEk9Cjr2LafTKW4z1mG5eEpdekPfr2CqgttfNzxLPqtG
n+BZECUuwF9NFkQTsGLHjLW1PdvAG0TVVDHaEfunn2T62Pngr9Vt8XebYwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFC3CoXNlYI9E9GJ6sjg5iD5VlWdgMB8GA1UdIwQY
MBaAFK8vLobdfMkQFlj/jVpSQURfzR1qMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcnk4dWh0MTh5UkFXV1AtTldsSkJSRl9OSFdvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNC9lMDhiOGUtYmYyMi00MzVjLThiMWYt
NDZiYjdhZWMxZjMwLzEvTGNLaGMyVmdqMFQwWW5xeU9EbUlQbFdWWjJBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNC9lMDhiOGUtYmYyMi00MzVjLThiMWYtNDZiYjdhZWMxZjMw
LzEvcnk4dWh0MTh5UkFXV1AtTldsSkJSRl9OSFdvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQATVFPAwQB
vNboMA0GCSqGSIb3DQEBCwUAA4IBAQBX2gvMzZ5dP/cxtESJpT+FsU5NXYFv+iZB
qIKdvHYdcPmkXYf/8sDJ5HoXNpDw2nmu+s/ztnXLMtBUjm47qD9VFsD5JNc43koi
EGUlatAhLtckcJL1RtQoyK94AY2WzjILIzkk6UwHI7MUPrVkJdewgAip/JbGP2dk
P6MWF1/AFOsrtE4fSYt9PLHWnnjlNiR49D0pNJG8hPsAljR6vaxw3kBQyGH901f3
OZdHgXfskVKrXCNXRjhCSE7fL3I54F/DHKpYLzp64wT4/2LNQob7IEmuzxXOtZZQ
6U+VBsIF1qvnkwkjhJ0pHmp3ocSmstqzIX8wFQB/RnrhlfgT1umv
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:24 2024 by rpki-client on console-ams.rpki-client.org