Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/uMzaBRnt2TbDJk8Gs_IKEuf_RVc.roa
File: uMzaBRnt2TbDJk8Gs_IKEuf_RVc.roa (raw, json)
Hash identifier: QgC5Espo0fRzFaqNDOBcD6VNFxdmbOPXF24glqq5Nz4=
Subject key identifier: B8:CC:DA:05:19:ED:D9:36:C3:26:4F:06:B3:F2:0A:12:E7:FF:45:57
Certificate issuer: /CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
Certificate serial: 0185BCFAA7DA0F5059C9F2308381E475528F
Authority key identifier: AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/uMzaBRnt2TbDJk8Gs_IKEuf_RVc.roa
Signing time: Mon 16 Jan 2023 23:47:01 +0000
ROA not before: Mon 16 Jan 2023 23:47:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48592
IP address blocks: 128.65.160.0/22 maxlen: 22
77.81.78.0/24 maxlen: 24
77.81.76.0/24 maxlen: 24
77.81.82.0/24 maxlen: 24
185.39.180.0/22 maxlen: 22
Validation: Failed, certificate revoked on Sun 15 Oct 2023 18:37:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:bc:fa:a7:da:0f:50:59:c9:f2:30:83:81:e4:75:52:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
Validity
Not Before: Jan 16 23:47:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b8ccda0519edd936c3264f06b3f20a12e7ff4557
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:a9:cb:c4:a2:4a:96:fc:15:af:50:38:e3:94:
70:62:7a:2c:68:49:25:0f:2d:17:05:ef:17:66:b9:
7b:7b:03:8c:0f:b8:8e:98:b6:d4:bd:10:0c:70:06:
27:f8:fe:6b:74:c5:06:d3:9c:2b:9a:5f:7e:8c:25:
0e:b6:d2:36:10:41:84:ec:9d:0c:df:7e:75:e0:5b:
17:8c:b7:01:c1:85:d3:1c:23:02:bf:df:15:36:99:
b9:f7:7f:57:95:41:30:4b:e0:74:ca:13:d6:56:b7:
d5:9a:79:da:08:fa:16:60:e3:4f:40:00:9a:52:a5:
04:26:90:ca:69:c1:a8:88:8d:d0:cd:a8:16:62:71:
ff:b6:2e:c7:2e:4b:15:18:12:7c:46:df:f3:0c:a4:
96:9c:f7:df:17:c7:f1:f5:51:92:db:60:03:46:cf:
3a:40:45:e3:1e:4d:50:74:4d:ee:a2:b7:85:9b:4e:
89:2a:ab:a7:bc:d9:83:6c:1a:96:b7:2f:1d:74:2f:
08:da:a2:2e:64:85:63:e8:e0:80:8d:32:12:ae:da:
9b:29:b8:1f:06:8b:2b:9f:cc:e8:0c:f7:1f:1b:f7:
52:6d:9a:84:c6:b3:91:02:7d:10:de:67:a3:44:a6:
d4:64:ab:6c:55:48:05:2c:1d:81:9c:ef:c8:5e:82:
91:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:CC:DA:05:19:ED:D9:36:C3:26:4F:06:B3:F2:0A:12:E7:FF:45:57
X509v3 Authority Key Identifier:
keyid:AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/uMzaBRnt2TbDJk8Gs_IKEuf_RVc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/ry8uht18yRAWWP-NWlJBRF_NHWo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.81.76.0/24
77.81.78.0/24
77.81.82.0/24
128.65.160.0/22
185.39.180.0/22
Signature Algorithm: sha256WithRSAEncryption
22:d5:e8:46:51:1e:b5:ec:80:1b:15:e3:88:95:68:39:0b:f7:
39:98:a7:c3:d6:12:0a:80:6d:7d:56:a1:85:72:2f:b3:34:be:
ae:75:d3:0f:1e:d6:81:2d:82:31:0b:8d:c2:fe:dc:e1:5e:28:
ee:c6:21:ff:f9:5f:d4:ff:13:57:1a:ea:00:e4:7f:b5:78:74:
3b:c7:2c:0c:04:6c:e8:09:78:8b:a7:0a:ff:1d:6f:c2:cf:0b:
fd:cf:08:31:b9:a6:68:07:ae:1f:ad:0e:c2:44:b5:5b:cc:fe:
88:90:82:2c:1a:8a:02:52:e2:6f:3e:36:d2:39:c2:75:fa:c5:
9d:f3:bd:02:ed:78:72:82:6d:28:69:0e:d6:7c:c3:18:40:fd:
3e:1a:8e:df:86:b0:5b:35:fe:95:34:07:10:d1:ab:7d:99:a3:
ef:7b:4b:f0:68:8c:4b:8c:c1:b8:76:7f:99:0d:06:0d:47:6c:
21:61:a6:0e:ff:aa:15:5f:e1:e6:de:0d:e0:13:07:56:9e:ad:
1d:63:c6:7e:c6:c0:c9:9f:75:91:59:ec:d4:06:e4:c6:c1:09:
da:3d:af:15:7d:f8:94:5f:5e:a5:fa:16:dc:7b:88:cc:0c:c6:
29:cf:80:83:88:da:c6:a0:fa:ad:ef:55:f9:3b:c0:f3:e7:54:
f9:2c:1e:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:23 2024 by rpki-client on console-fra.rpki-client.org