Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/X0IIJa_ugcpCIp3D_rmjrX98rcI.roa
File: X0IIJa_ugcpCIp3D_rmjrX98rcI.roa (raw, json)
Hash identifier: BzaW/T0nBq3R76MKtPYhv/fNlEht7mftY6BYjurpfoo=
Subject key identifier: 5F:42:08:25:AF:EE:81:CA:42:22:9D:C3:FE:B9:A3:AD:7F:7C:AD:C2
Certificate issuer: /CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
Certificate serial: 0189D0C32CDD58811106CA62B93DA338986D
Authority key identifier: AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/X0IIJa_ugcpCIp3D_rmjrX98rcI.roa
Signing time: Mon 07 Aug 2023 16:09:59 +0000
ROA not before: Mon 07 Aug 2023 16:09:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 77.81.77.0/24 maxlen: 24
188.214.234.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:d0:c3:2c:dd:58:81:11:06:ca:62:b9:3d:a3:38:98:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
Validity
Not Before: Aug 7 16:09:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5f420825afee81ca42229dc3feb9a3ad7f7cadc2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:ec:42:92:44:8c:28:84:41:f7:93:37:d6:5c:
b5:b3:c1:de:23:4f:5d:63:dc:57:ca:2b:0b:37:9c:
6c:d1:8d:e0:4f:af:82:59:6b:01:1b:20:6e:e6:df:
85:3c:d6:04:b6:92:eb:f8:22:e7:59:08:8c:71:ea:
47:f3:33:d2:4d:6e:0a:60:e0:9e:10:87:5c:60:18:
45:79:f8:89:a0:9c:e5:f7:cd:9e:ff:70:81:1c:ed:
ec:aa:2b:04:06:e6:64:29:c1:e1:d6:35:d4:5f:9d:
f8:d4:b7:52:30:cb:a1:f3:b2:94:3d:5d:a9:25:63:
d2:61:8e:de:ab:82:60:f3:1b:ac:77:23:1c:cb:fa:
d0:e8:3f:8e:01:30:b9:3f:ee:5d:a9:fb:a6:3b:cf:
c8:ee:46:c0:09:41:8e:a8:39:db:3a:04:e9:c7:26:
3e:2f:3f:81:64:4f:20:2f:b2:1f:34:ee:1c:4e:24:
95:89:5b:09:d0:cd:a5:46:c4:c7:94:f0:1e:ee:ec:
90:64:43:5c:7c:16:93:db:93:a4:65:02:5f:de:a8:
26:82:39:49:6e:31:d8:08:08:e8:32:d9:0a:72:c4:
41:04:39:f8:fa:fd:64:55:8a:63:b9:c0:82:ca:84:
f7:bf:ce:d9:3c:f2:02:3c:3f:bb:6b:68:b0:ba:35:
3e:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:42:08:25:AF:EE:81:CA:42:22:9D:C3:FE:B9:A3:AD:7F:7C:AD:C2
X509v3 Authority Key Identifier:
keyid:AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/X0IIJa_ugcpCIp3D_rmjrX98rcI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/ry8uht18yRAWWP-NWlJBRF_NHWo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.81.77.0/24
188.214.234.0/23
Signature Algorithm: sha256WithRSAEncryption
8e:03:c7:d2:48:f6:f3:f0:08:7e:8a:ef:cc:26:54:50:70:64:
b4:11:ac:a2:93:57:05:9e:e1:6e:24:43:74:c2:2d:d8:88:46:
49:94:e5:a4:1e:99:48:4b:8e:02:d1:6b:f9:c8:3c:3a:25:cf:
1f:d4:f5:ae:4a:c2:3a:ba:2f:96:c7:49:fa:14:65:42:cc:de:
a3:2d:3d:f6:f9:d2:ed:bc:68:2c:9b:9f:f6:83:a3:2a:25:8c:
f8:49:66:76:c5:ed:48:00:56:02:a6:72:3e:1e:94:2d:cd:9b:
ea:14:cf:05:ba:5b:65:80:ff:ec:5c:fb:1c:9f:36:9d:0d:4c:
a6:52:8b:df:37:4c:e1:61:09:57:e2:6a:d5:15:37:16:e2:f7:
50:87:a8:ce:d3:88:97:ef:c2:15:93:3a:89:13:03:93:79:51:
97:1b:55:d7:b6:db:96:0d:18:72:62:3a:c1:ac:56:9d:27:ac:
2c:25:23:65:f4:76:f5:2c:3a:34:10:14:ec:ba:7e:2c:9c:8a:
ec:74:05:5b:93:ef:3e:8a:38:f2:01:7d:79:8d:cd:a6:fd:17:
2f:8c:13:36:03:d2:27:f6:20:f8:04:82:2a:98:b0:5d:28:53:
d1:64:11:1b:71:5c:7d:b2:70:30:82:bb:fb:b0:f4:db:3a:dc:
59:08:99:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:23 2024 by rpki-client on console-fra.rpki-client.org