Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/TUy78t-K96fX2xzkAMjJqRHYfU0.roa
File: TUy78t-K96fX2xzkAMjJqRHYfU0.roa (raw, json)
Hash identifier: HmWCO2Qc8aKsKTXcHsrneO8QOXukhsSHcmyl2Z5Bxhg=
Subject key identifier: 4D:4C:BB:F2:DF:8A:F7:A7:D7:DB:1C:E4:00:C8:C9:A9:11:D8:7D:4D
Certificate issuer: /CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
Certificate serial: 0187A48F84B5B72651029782A899FD397898
Authority key identifier: AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/TUy78t-K96fX2xzkAMjJqRHYfU0.roa
Signing time: Fri 21 Apr 2023 16:04:41 +0000
ROA not before: Fri 21 Apr 2023 16:04:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 77.81.77.0/24 maxlen: 24
77.81.79.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 27 Apr 2023 15:58:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:a4:8f:84:b5:b7:26:51:02:97:82:a8:99:fd:39:78:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
Validity
Not Before: Apr 21 16:04:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4d4cbbf2df8af7a7d7db1ce400c8c9a911d87d4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:32:aa:d2:ac:57:c9:bb:2c:30:53:74:88:4e:
fe:6c:72:6e:47:0a:58:79:c6:c3:33:2a:ca:62:35:
15:30:9a:5a:d1:f7:3e:67:2e:bb:2a:92:37:49:67:
49:90:e1:cf:e3:48:a2:38:b0:c9:e2:32:09:17:e0:
3a:e2:1e:8f:1d:e1:0b:44:62:4f:05:04:cd:c4:83:
6c:f8:10:f8:ce:82:0a:bb:ec:4c:37:4b:e3:23:13:
b8:c9:1d:57:e9:bd:6f:cc:23:c7:bc:a8:2d:3e:d1:
a6:a1:5f:ba:b3:9d:0e:d1:9b:88:22:30:3c:ff:84:
5e:fd:ec:4d:65:4c:1a:3a:2e:ce:65:39:79:00:2f:
93:f7:93:8c:db:25:f0:f3:88:80:59:ce:08:93:61:
4f:bb:e5:c6:27:2d:70:03:47:f6:ed:52:49:5b:1b:
64:ea:b3:57:6f:73:dd:b0:d2:31:8c:f0:57:8e:44:
ae:bb:8e:66:e1:d6:4b:93:50:35:4b:15:50:fc:54:
4d:5a:a3:0d:cb:ee:2c:35:0b:85:0b:90:01:46:d4:
8a:ed:07:10:a9:03:1a:a4:7b:c7:67:76:7a:18:4c:
7d:c7:01:71:e7:6a:6d:b1:ed:42:60:0c:68:91:c4:
35:87:77:8f:f8:16:59:50:62:06:0d:0d:1f:84:8b:
0d:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:4C:BB:F2:DF:8A:F7:A7:D7:DB:1C:E4:00:C8:C9:A9:11:D8:7D:4D
X509v3 Authority Key Identifier:
keyid:AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/TUy78t-K96fX2xzkAMjJqRHYfU0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/ry8uht18yRAWWP-NWlJBRF_NHWo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.81.77.0/24
77.81.79.0/24
Signature Algorithm: sha256WithRSAEncryption
10:71:ce:6e:b6:21:5a:4b:fb:fc:10:16:b6:44:20:55:8b:46:
9f:51:19:b2:8e:74:af:f7:71:4a:16:eb:df:6d:10:65:6f:44:
0c:65:6d:47:e6:66:bf:09:a3:cd:26:3b:d3:9d:78:c1:1e:8b:
13:6f:79:fb:ea:bf:c4:1c:71:a8:e7:59:0c:f3:4c:2e:45:0b:
7b:f5:e8:29:04:01:93:f9:70:94:91:b3:b8:dd:09:0d:ac:26:
ae:3a:fa:46:bb:5b:22:2a:14:85:4d:4f:40:33:5f:93:bb:46:
20:f1:e0:74:78:c8:4b:3b:2f:7e:da:66:a8:1d:d9:a2:7f:03:
f4:52:bd:de:ab:9b:6c:d3:13:60:02:f9:96:88:1c:44:a7:6e:
23:b6:63:21:d5:e0:c6:b7:b3:b4:52:21:12:50:8d:c1:6d:48:
9c:0e:d9:d2:9b:52:12:91:50:08:ab:e7:a4:4e:47:11:a2:8d:
7c:43:c2:28:8e:9c:fe:20:e4:89:32:6e:6d:4c:30:a7:2d:d3:
13:be:d7:8f:88:ae:dc:75:48:4a:a7:61:41:1a:4b:ae:a4:c4:
03:79:88:ec:8e:01:dd:7d:ad:5c:3e:31:ec:71:54:b9:e1:7d:
00:26:ab:38:b5:88:00:c5:c7:9e:25:3c:33:7a:8d:e8:94:05:
73:be:11:b7
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYekj4S1tyZRApeCqJn9OXiYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFmMmYyZTg2ZGQ3Y2M5MTAxNjU4ZmY4ZDVhNTI0MTQ0NWZj
ZDFkNmEwHhcNMjMwNDIxMTYwNDQxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0ZDRjYmJmMmRmOGFmN2E3ZDdkYjFjZTQwMGM4YzlhOTExZDg3ZDRkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwDKq0qxXybssMFN0iE7+bHJuRwpY
ecbDMyrKYjUVMJpa0fc+Zy67KpI3SWdJkOHP40iiOLDJ4jIJF+A64h6PHeELRGJP
BQTNxINs+BD4zoIKu+xMN0vjIxO4yR1X6b1vzCPHvKgtPtGmoV+6s50O0ZuIIjA8
/4Re/exNZUwaOi7OZTl5AC+T95OM2yXw84iAWc4Ik2FPu+XGJy1wA0f27VJJWxtk
6rNXb3PdsNIxjPBXjkSuu45m4dZLk1A1SxVQ/FRNWqMNy+4sNQuFC5ABRtSK7QcQ
qQMapHvHZ3Z6GEx9xwFx52ptse1CYAxokcQ1h3eP+BZZUGIGDQ0fhIsNPQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFE1Mu/Lfiven19sc5ADIyakR2H1NMB8GA1UdIwQY
MBaAFK8vLobdfMkQFlj/jVpSQURfzR1qMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcnk4dWh0MTh5UkFXV1AtTldsSkJSRl9OSFdvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNC9lMDhiOGUtYmYyMi00MzVjLThiMWYt
NDZiYjdhZWMxZjMwLzEvVFV5Nzh0LUs5NmZYMnh6a0FNakpxUkhZZlUwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNC9lMDhiOGUtYmYyMi00MzVjLThiMWYtNDZiYjdhZWMxZjMw
LzEvcnk4dWh0MTh5UkFXV1AtTldsSkJSRl9OSFdvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQATVFNAwQA
TVFPMA0GCSqGSIb3DQEBCwUAA4IBAQAQcc5utiFaS/v8EBa2RCBVi0afURmyjnSv
93FKFuvfbRBlb0QMZW1H5ma/CaPNJjvTnXjBHosTb3n76r/EHHGo51kM80wuRQt7
9egpBAGT+XCUkbO43QkNrCauOvpGu1siKhSFTU9AM1+Tu0Yg8eB0eMhLOy9+2mao
HdmifwP0Ur3eq5ts0xNgAvmWiBxEp24jtmMh1eDGt7O0UiESUI3BbUicDtnSm1IS
kVAIq+ekTkcRoo18Q8Iojpz+IOSJMm5tTDCnLdMTvtePiK7cdUhKp2FBGkuupMQD
eYjsjgHdfa1cPjHscVS54X0AJqs4tYgAxceeJTwzeo3olAVzvhG3
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:23 2024 by rpki-client on console-fra.rpki-client.org