Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/XZl3awLTaWsrw-I4fyiQ0ApvFKc.roa
File: XZl3awLTaWsrw-I4fyiQ0ApvFKc.roa (raw, json)
Hash identifier: xC6YQI5VmYBql4vnwkNYbqMr4M35RbZk0ITm+EFYvhE=
Subject key identifier: 5D:99:77:6B:02:D3:69:6B:2B:C3:E2:38:7F:28:90:D0:0A:6F:14:A7
Certificate issuer: /CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
Certificate serial: 0190E9F597772E94D96CDCAE6A183B39E964
Authority key identifier: AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/XZl3awLTaWsrw-I4fyiQ0ApvFKc.roa
Signing time: Thu 25 Jul 2024 12:55:04 +0000
ROA not before: Thu 25 Jul 2024 12:55:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7018
IP address blocks: 77.81.79.0/24 maxlen: 24
77.81.80.0/23 maxlen: 24
128.65.172.0/22 maxlen: 24
188.214.234.0/23 maxlen: 24
194.26.2.0/24 maxlen: 24
194.26.21.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 09 Aug 2024 15:33:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:e9:f5:97:77:2e:94:d9:6c:dc:ae:6a:18:3b:39:e9:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
Validity
Not Before: Jul 25 12:55:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5d99776b02d3696b2bc3e2387f2890d00a6f14a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:56:61:80:ad:6a:71:ae:83:0e:a5:c2:a6:ed:
c9:39:f0:98:e0:b6:be:9c:26:0e:b2:d3:65:c1:c6:
ad:d8:e9:cd:c0:8e:cc:9f:da:9e:8a:2a:60:c3:d5:
15:ab:de:02:d9:8f:44:5d:d4:0d:7a:25:f3:81:c8:
76:0c:aa:c2:4d:3d:17:ee:bb:a1:ee:c7:21:75:3b:
aa:7a:43:e0:35:35:d8:24:cc:05:86:62:85:04:3d:
23:80:c8:43:5c:d4:b6:56:f3:44:50:2e:50:40:04:
32:4e:e3:54:2e:9b:42:d4:a9:c3:83:9f:cf:43:8e:
99:ca:86:85:53:d6:62:a1:b8:86:a0:9d:55:db:f8:
b1:a2:06:1d:dc:fb:43:f7:99:d4:d6:61:3b:96:05:
c6:8e:6b:db:4a:5b:1e:90:88:81:27:63:e1:0e:5e:
24:bb:71:4b:d4:e9:de:26:74:3d:fc:e6:5a:ae:d9:
44:bb:34:40:d7:a0:2d:da:e4:35:1e:6a:9e:9f:8c:
2d:e5:f0:ad:ee:bf:1e:9e:bb:56:ea:4a:9c:01:c5:
c0:02:cf:dd:6f:d1:e6:e6:ec:27:74:b9:7a:30:a5:
d3:79:0d:72:c7:17:57:21:d0:bd:63:25:6d:76:c6:
e9:ac:88:7a:01:63:23:c8:0e:de:ca:21:6f:a6:c5:
59:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:99:77:6B:02:D3:69:6B:2B:C3:E2:38:7F:28:90:D0:0A:6F:14:A7
X509v3 Authority Key Identifier:
keyid:AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/XZl3awLTaWsrw-I4fyiQ0ApvFKc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/ry8uht18yRAWWP-NWlJBRF_NHWo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.81.79.0-77.81.81.255
128.65.172.0/22
188.214.234.0/23
194.26.2.0/24
194.26.21.0/24
Signature Algorithm: sha256WithRSAEncryption
48:e9:0a:87:99:d2:97:f8:85:a0:b7:ab:5a:b5:8b:4c:9a:a2:
e4:75:9b:b7:23:52:72:85:b0:d4:82:ed:76:b0:a4:35:46:0b:
64:4a:7f:df:f9:1b:aa:35:ad:e5:ca:fb:96:b5:61:c4:58:ea:
12:a2:4e:01:94:fa:2e:cc:ed:e3:19:b1:da:71:d4:e5:88:ff:
0c:cd:94:a3:6c:6b:6d:79:26:78:11:09:51:c2:41:67:fd:8e:
3a:9e:33:28:31:44:c7:b9:61:bb:6d:81:6a:ee:c9:21:6d:3a:
41:2e:f8:66:3e:e1:67:64:c9:3f:0a:93:e9:34:2f:90:e1:d5:
23:e0:8a:94:54:8b:e8:34:11:58:11:55:53:61:32:b2:94:96:
6f:6e:8a:25:71:38:78:38:7e:42:bf:f6:82:d4:6b:a6:70:05:
01:ac:20:6c:14:ce:62:26:3f:59:51:51:98:14:77:8d:b7:ae:
4f:bb:7f:81:cc:c4:33:44:2c:b9:a1:ce:1f:0a:43:f6:0a:cd:
18:05:0c:d9:83:b4:be:83:78:fc:a4:f2:f9:ac:b2:6d:73:dc:
a5:9d:9f:28:68:4f:91:55:7b:0c:bb:30:1b:82:81:d2:3c:95:
67:a0:01:50:80:ee:a6:b9:b8:ff:ee:8a:05:60:0d:bb:eb:58:
e8:a6:a8:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 9 17:43:46 2024 by rpki-client on console-fra.rpki-client.org