Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/fRyJ1uTxdz8kqbHnsW1T2P9RTeA.roa
File: fRyJ1uTxdz8kqbHnsW1T2P9RTeA.roa (raw, json)
Hash identifier: LfMH+OPYqDo5mqICyiSmMSVqWMg60IVtxsmJg9ctuRo=
Subject key identifier: 7D:1C:89:D6:E4:F1:77:3F:24:A9:B1:E7:B1:6D:53:D8:FF:51:4D:E0
Certificate issuer: /CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
Certificate serial: 019137C5F04C03614B20CBE6E4D925C5244C
Authority key identifier: AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/fRyJ1uTxdz8kqbHnsW1T2P9RTeA.roa
Signing time: Fri 09 Aug 2024 15:33:24 +0000
ROA not before: Fri 09 Aug 2024 15:33:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 77.81.77.0/24 maxlen: 24
188.214.234.0/23 maxlen: 24
Validation: Failed, certificate revoked on Thu 22 Aug 2024 21:20:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:37:c5:f0:4c:03:61:4b:20:cb:e6:e4:d9:25:c5:24:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
Validity
Not Before: Aug 9 15:33:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7d1c89d6e4f1773f24a9b1e7b16d53d8ff514de0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:18:a1:81:24:73:5b:ef:3e:da:b7:f7:41:37:
6d:eb:cc:8e:14:33:9f:35:f7:1e:88:c2:3f:1b:6a:
05:9f:aa:d2:af:03:c9:cd:53:32:dd:eb:77:14:05:
05:a3:53:e4:de:07:80:a4:28:aa:1f:34:e9:97:68:
09:a3:24:62:71:19:af:25:51:19:e7:56:ac:e0:39:
ce:16:56:f3:b3:e4:72:85:98:b3:b6:42:07:07:79:
9d:e4:d2:63:a8:c3:1a:a6:56:a6:8a:e4:32:f1:d6:
a5:0a:40:20:86:b0:9a:2f:71:cc:d6:00:09:56:f2:
e6:d5:3c:9d:46:1b:fd:3a:d2:bf:33:e8:eb:91:ca:
0b:7b:a7:34:9e:6c:31:cf:50:a4:fb:5b:52:31:87:
32:64:db:ca:30:42:2a:e7:91:cc:60:f3:f4:a3:25:
5d:95:c2:fe:22:26:01:b5:21:c6:95:ed:1f:0a:c7:
08:5e:cd:f4:b6:43:6c:29:31:5c:2a:83:7e:eb:4c:
bf:b6:79:4a:fc:67:21:da:d3:ea:24:fc:93:6a:a3:
7d:4f:b5:c7:77:43:65:88:ed:69:ff:79:66:df:19:
8c:d4:3f:10:97:dc:a4:85:be:4a:ec:43:23:d4:ef:
31:a7:bf:23:48:fe:e0:59:bd:28:f0:88:8a:c5:07:
d1:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:1C:89:D6:E4:F1:77:3F:24:A9:B1:E7:B1:6D:53:D8:FF:51:4D:E0
X509v3 Authority Key Identifier:
keyid:AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/fRyJ1uTxdz8kqbHnsW1T2P9RTeA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/ry8uht18yRAWWP-NWlJBRF_NHWo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.81.77.0/24
188.214.234.0/23
Signature Algorithm: sha256WithRSAEncryption
06:b6:c8:c8:89:e2:ed:d5:35:87:0a:bc:4a:e1:62:63:85:d6:
06:ec:5f:fe:7d:cc:27:02:3c:ea:15:56:96:1e:2d:ce:02:8e:
07:93:fc:39:e4:fd:ab:ce:74:bb:dc:35:2f:65:90:5e:2b:5a:
f7:11:3c:18:0f:64:7d:80:10:c9:66:69:9f:77:07:8a:89:c6:
0a:2e:2b:20:70:17:87:99:1f:df:41:bc:b7:95:8c:90:c8:56:
39:71:ae:36:5c:f2:1d:9a:b9:a6:0a:a0:89:68:4f:24:b1:19:
42:2f:42:12:97:b9:9b:0a:8c:36:51:0d:87:36:85:74:dd:1b:
09:77:ce:ff:4c:83:54:81:64:09:77:c8:f0:d9:74:7a:85:7e:
0e:f1:ee:fc:bc:91:73:6e:52:c3:bb:85:c7:f2:5f:f0:d3:45:
50:d1:27:d6:92:f2:d6:4a:c6:b3:ee:97:96:9e:1e:5c:47:38:
cc:8b:54:01:52:41:7e:59:b2:f4:80:1d:32:a0:ab:13:2f:38:
ea:e9:0f:2a:f3:7b:9c:32:55:c7:e3:34:b4:53:3f:c8:55:a8:
db:db:80:bd:ba:ce:f3:f8:ab:d0:ca:a8:99:b8:69:89:df:67:
d8:bf:c3:ff:9b:dc:1f:7d:8e:03:94:8d:60:58:9b:53:85:d9:
6b:27:6a:e3
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAZE3xfBMA2FLIMvm5NklxSRMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFmMmYyZTg2ZGQ3Y2M5MTAxNjU4ZmY4ZDVhNTI0MTQ0NWZj
ZDFkNmEwHhcNMjQwODA5MTUzMzI0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3ZDFjODlkNmU0ZjE3NzNmMjRhOWIxZTdiMTZkNTNkOGZmNTE0ZGUwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxRihgSRzW+8+2rf3QTdt68yOFDOf
NfceiMI/G2oFn6rSrwPJzVMy3et3FAUFo1Pk3geApCiqHzTpl2gJoyRicRmvJVEZ
51as4DnOFlbzs+RyhZiztkIHB3md5NJjqMMaplamiuQy8dalCkAghrCaL3HM1gAJ
VvLm1TydRhv9OtK/M+jrkcoLe6c0nmwxz1Ck+1tSMYcyZNvKMEIq55HMYPP0oyVd
lcL+IiYBtSHGle0fCscIXs30tkNsKTFcKoN+60y/tnlK/Gch2tPqJPyTaqN9T7XH
d0NliO1p/3lm3xmM1D8Ql9ykhb5K7EMj1O8xp78jSP7gWb0o8IiKxQfR3QIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFH0cidbk8Xc/JKmx57FtU9j/UU3gMB8GA1UdIwQY
MBaAFK8vLobdfMkQFlj/jVpSQURfzR1qMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcnk4dWh0MTh5UkFXV1AtTldsSkJSRl9OSFdvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNC9lMDhiOGUtYmYyMi00MzVjLThiMWYt
NDZiYjdhZWMxZjMwLzEvZlJ5SjF1VHhkejhrcWJIbnNXMVQyUDlSVGVBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNC9lMDhiOGUtYmYyMi00MzVjLThiMWYtNDZiYjdhZWMxZjMw
LzEvcnk4dWh0MTh5UkFXV1AtTldsSkJSRl9OSFdvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQATVFNAwQB
vNbqMA0GCSqGSIb3DQEBCwUAA4IBAQAGtsjIieLt1TWHCrxK4WJjhdYG7F/+fcwn
AjzqFVaWHi3OAo4Hk/w55P2rznS73DUvZZBeK1r3ETwYD2R9gBDJZmmfdweKicYK
LisgcBeHmR/fQby3lYyQyFY5ca42XPIdmrmmCqCJaE8ksRlCL0ISl7mbCow2UQ2H
NoV03RsJd87/TINUgWQJd8jw2XR6hX4O8e78vJFzblLDu4XH8l/w00VQ0SfWkvLW
Ssaz7peWnh5cRzjMi1QBUkF+WbL0gB0yoKsTLzjq6Q8q83ucMlXH4zS0Uz/IVajb
24C9us7z+KvQyqiZuGmJ32fYv8P/m9wffY4DlI1gWJtThdlrJ2rj
-----END CERTIFICATE-----
Generated at Thu Aug 22 23:44:01 2024 by rpki-client on console-fra.rpki-client.org