Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/j77n5SExYxA3qr5Rc-7EUUJ4Qv8.roa
File: j77n5SExYxA3qr5Rc-7EUUJ4Qv8.roa (raw, json)
Hash identifier: kjCdSkCgiK/cpmywr0qn/wpM/D8ufhZ3p/Nm/Y0usXY=
Subject key identifier: 8F:BE:E7:E5:21:31:63:10:37:AA:BE:51:73:EE:C4:51:42:78:42:FF
Certificate issuer: /CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
Certificate serial: 01856D5D1D32A8261E87DE1B469CA2B59CAA
Authority key identifier: AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/j77n5SExYxA3qr5Rc-7EUUJ4Qv8.roa
Signing time: Sun 01 Jan 2023 12:44:56 +0000
ROA not before: Sun 01 Jan 2023 12:44:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48592
IP address blocks: 128.65.160.0/22 maxlen: 22
77.81.78.0/24 maxlen: 24
77.81.76.0/24 maxlen: 24
185.39.180.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 16 Jan 2023 23:47:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:5d:1d:32:a8:26:1e:87:de:1b:46:9c:a2:b5:9c:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
Validity
Not Before: Jan 1 12:44:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8fbee7e52131631037aabe5173eec451427842ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:43:00:a6:04:98:7f:a0:39:41:ec:7c:42:ed:
b4:df:55:04:b9:f6:79:c1:2e:ec:67:82:fd:81:44:
b1:90:21:53:aa:03:5c:78:99:d8:10:b0:3f:cf:7e:
05:b2:8e:e2:4f:3a:88:be:aa:6b:46:01:21:ab:78:
12:79:1a:5b:e3:e0:96:b8:f8:29:ee:26:c0:06:5a:
47:02:cc:51:5b:da:5c:eb:ca:63:40:4b:92:a9:c9:
bd:99:22:4b:84:16:bf:46:2e:bd:3f:c2:32:8e:60:
91:e8:10:83:1b:d3:c5:cf:65:d8:02:fe:3f:4c:a9:
4f:39:d0:8e:75:7e:6d:f3:25:b8:69:a7:62:d3:e9:
a9:22:ae:72:d4:4e:fe:1b:48:45:40:e5:79:9e:c4:
7b:fa:e6:cc:39:55:32:c6:f3:38:89:8e:17:a2:96:
4a:70:0d:15:ae:3e:2b:7a:da:fe:14:7a:da:ec:7a:
50:7b:33:a1:60:bd:9e:4f:9a:cb:5f:f5:39:52:e5:
82:29:ae:a8:04:23:3d:51:4e:6c:62:bc:0e:b2:9a:
ee:f5:05:dc:e2:99:76:cc:ac:82:c5:e0:2c:99:fc:
f9:84:b7:46:7b:2b:5d:ff:e4:af:47:80:b5:18:d9:
de:f9:34:d6:0d:09:8c:29:bc:de:57:5a:4f:49:da:
a7:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:BE:E7:E5:21:31:63:10:37:AA:BE:51:73:EE:C4:51:42:78:42:FF
X509v3 Authority Key Identifier:
keyid:AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/j77n5SExYxA3qr5Rc-7EUUJ4Qv8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/ry8uht18yRAWWP-NWlJBRF_NHWo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.81.76.0/24
77.81.78.0/24
128.65.160.0/22
185.39.180.0/22
Signature Algorithm: sha256WithRSAEncryption
50:20:2b:3d:22:93:8b:a6:6b:29:03:e0:1f:d7:de:51:46:b4:
08:7c:58:3d:5e:54:8a:fd:82:a2:8e:20:39:fd:e6:1f:f3:0e:
be:d7:be:a3:85:4e:2f:52:62:93:6a:c3:48:d2:c4:a1:cf:3a:
21:83:17:e6:bf:52:48:97:b4:13:31:e2:66:cb:60:e7:e8:cb:
0e:c4:06:a8:cd:64:44:3d:1f:75:b7:01:4f:e1:3e:f2:0e:62:
16:77:58:08:67:17:1f:e5:ce:a9:b2:8e:16:98:dd:26:27:12:
37:e4:b4:31:8d:71:97:12:25:eb:65:f6:06:ab:60:25:59:a1:
ce:b5:36:1d:8f:2b:4d:e6:7d:a3:3a:34:23:57:4e:a4:00:e5:
62:cb:6b:4b:b4:13:42:ec:53:d0:fc:2f:e7:81:49:6e:4e:8d:
67:00:3b:58:79:b3:b4:fd:d1:72:f6:5b:f9:e0:3d:e8:a3:62:
82:77:d0:a5:ae:df:9d:de:14:45:a9:bd:f9:a2:60:46:25:17:
de:7c:c8:37:3f:ca:17:91:6e:9d:7a:a2:40:d5:20:ec:4d:4b:
8a:df:16:a1:70:09:f2:22:89:0b:e0:5f:4d:e9:71:e9:db:9d:
4a:81:43:92:f2:51:d5:3f:98:40:bf:3b:26:a6:8e:e3:bd:6f:
fa:69:14:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:23 2024 by rpki-client on console-fra.rpki-client.org