Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/709fc9-68ef-411e-a1cc-e1e807ecd4df/1/jW0XSykajVTVlLa3ZzFC5RLoHF4.roa
File: jW0XSykajVTVlLa3ZzFC5RLoHF4.roa (raw, json)
Hash identifier: kG/fbhI9Z4s+urSbmUKlyBwF5u93oxF0oZlyPq8Ic44=
Subject key identifier: 8D:6D:17:4B:29:1A:8D:54:D5:94:B6:B7:67:31:42:E5:12:E8:1C:5E
Certificate issuer: /CN=2c40fcd53987b209f8af39ca1211f27060a8902e
Certificate serial: 0188B92D244A297134049B4EE8FD5AFA6060
Authority key identifier: 2C:40:FC:D5:39:87:B2:09:F8:AF:39:CA:12:11:F2:70:60:A8:90:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LED81TmHsgn4rznKEhHycGCokC4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/709fc9-68ef-411e-a1cc-e1e807ecd4df/1/jW0XSykajVTVlLa3ZzFC5RLoHF4.roa
Signing time: Wed 14 Jun 2023 09:12:03 +0000
ROA not before: Wed 14 Jun 2023 09:12:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208800
IP address blocks: 188.116.28.0/22 maxlen: 22
77.242.240.0/24 maxlen: 24
77.242.240.0/22 maxlen: 22
77.242.240.0/23 maxlen: 23
77.242.240.0/21 maxlen: 21
77.242.242.0/23 maxlen: 23
77.242.242.0/24 maxlen: 24
77.242.241.0/24 maxlen: 24
77.242.245.0/24 maxlen: 24
77.242.244.0/22 maxlen: 22
77.242.244.0/23 maxlen: 23
77.242.244.0/24 maxlen: 24
77.242.243.0/24 maxlen: 24
77.242.246.0/24 maxlen: 24
77.242.246.0/23 maxlen: 23
77.242.253.0/24 maxlen: 24
77.242.249.0/24 maxlen: 24
77.242.248.0/24 maxlen: 24
77.242.247.0/24 maxlen: 24
77.242.251.0/24 maxlen: 24
77.242.250.0/24 maxlen: 24
77.242.255.0/24 maxlen: 24
91.201.4.0/24 maxlen: 24
91.201.4.0/22 maxlen: 22
91.201.7.0/24 maxlen: 24
91.201.6.0/24 maxlen: 24
91.201.5.0/24 maxlen: 24
2a0e:6e80::/44 maxlen: 44
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:b9:2d:24:4a:29:71:34:04:9b:4e:e8:fd:5a:fa:60:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2c40fcd53987b209f8af39ca1211f27060a8902e
Validity
Not Before: Jun 14 09:12:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8d6d174b291a8d54d594b6b7673142e512e81c5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:3a:02:73:cd:b3:97:e2:94:f6:68:15:2b:01:
cd:d4:13:f1:d7:cd:fe:df:75:b9:a0:af:7c:0b:64:
b8:29:b5:2e:23:7b:19:ee:c2:74:68:3f:be:08:37:
99:05:3f:cd:1b:02:5d:35:6e:fc:6a:a1:d5:91:25:
37:9f:98:ee:67:cc:4c:6c:6b:4d:36:40:14:28:38:
3f:70:12:12:23:36:45:aa:da:f5:73:5b:b3:9d:f3:
8b:d5:4e:56:2c:2f:01:a1:7a:1f:df:99:c6:78:e1:
fa:b5:b5:b3:fb:54:ff:d9:df:ce:f7:37:72:6b:aa:
fa:f9:39:29:13:58:5b:5b:49:78:e1:53:57:14:c5:
9f:11:29:a7:48:e2:de:94:31:14:e5:14:95:61:62:
14:a3:65:ad:14:bc:22:a2:c4:fa:e4:c1:f8:55:4d:
d2:fa:08:66:cc:67:67:3c:c6:03:85:e6:31:29:86:
a2:9c:f6:81:79:fc:60:10:13:cb:89:74:ea:08:28:
ce:76:ab:4a:5b:35:b4:f2:2a:e7:10:6b:77:9d:53:
39:bc:cf:2b:c7:37:7e:c8:0c:f4:87:d8:6f:92:11:
69:eb:e7:66:99:99:bd:f4:a4:79:25:61:d9:a4:95:
5d:5e:a7:62:c0:6c:5b:99:3a:c2:be:90:51:94:04:
6d:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:6D:17:4B:29:1A:8D:54:D5:94:B6:B7:67:31:42:E5:12:E8:1C:5E
X509v3 Authority Key Identifier:
keyid:2C:40:FC:D5:39:87:B2:09:F8:AF:39:CA:12:11:F2:70:60:A8:90:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LED81TmHsgn4rznKEhHycGCokC4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/709fc9-68ef-411e-a1cc-e1e807ecd4df/1/jW0XSykajVTVlLa3ZzFC5RLoHF4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/709fc9-68ef-411e-a1cc-e1e807ecd4df/1/LED81TmHsgn4rznKEhHycGCokC4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.242.240.0-77.242.251.255
77.242.253.0/24
77.242.255.0/24
91.201.4.0/22
188.116.28.0/22
IPv6:
2a0e:6e80::/44
Signature Algorithm: sha256WithRSAEncryption
8e:b2:58:82:2a:9e:28:40:86:68:7e:21:7d:03:b1:a8:5f:35:
ff:c6:9b:71:1f:b4:ad:8a:2a:e6:4a:46:60:d6:b6:91:00:67:
9d:de:6c:d5:f6:15:6f:d7:51:85:a0:98:6d:4e:83:7a:5d:54:
ee:e5:d9:bf:01:83:dd:f9:0e:27:72:09:dd:88:49:61:9e:76:
e6:f7:27:4b:1f:78:51:f1:9e:d0:83:8c:03:73:7e:f2:d7:bf:
7f:42:d7:44:76:9e:39:d7:8a:0b:d4:00:b8:05:7f:49:55:1e:
e9:82:9b:ae:27:11:51:e5:83:c6:af:03:c3:6a:b5:b6:d9:b6:
f6:f2:3b:a0:2a:82:11:bf:2c:7f:88:3a:b2:49:cf:e2:ae:a5:
d1:5c:4e:8f:3f:00:cb:43:df:af:28:26:1f:a0:f4:18:86:64:
fc:f6:a0:c4:59:3b:8a:02:7e:a9:2f:be:2d:15:82:9f:09:45:
ab:bc:b1:5e:3a:ee:4c:3e:82:44:f4:71:63:94:86:35:29:66:
08:b2:10:ef:66:a3:d3:31:44:23:19:5e:52:a3:9d:d8:24:55:
f2:10:50:af:74:59:37:bd:d6:6d:fa:fc:5b:d9:d0:82:ed:b2:
bf:5f:8c:43:c2:30:5a:a7:4e:0a:73:65:28:14:47:4a:1e:62:
99:f5:b7:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:41 2023 by rpki-client on console-fra.rpki-client.org