Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/80c568-bd15-4f32-8dd4-066866f2ded0/1/dw6u4ZAMrXiUzrN_nB6G1LfuC9A.roa
File: dw6u4ZAMrXiUzrN_nB6G1LfuC9A.roa (raw, json)
Hash identifier: oYVmWo238porJK4jgFBCbCI3zW8s9EdxaMD2tAnFJm8=
Subject key identifier: 77:0E:AE:E1:90:0C:AD:78:94:CE:B3:7F:9C:1E:86:D4:B7:EE:0B:D0
Certificate issuer: /CN=c67e2a46e34f491433c8b62f319b902bddfde831
Certificate serial: 018DDBC970A4D27585E3451C661F1B640E40
Authority key identifier: C6:7E:2A:46:E3:4F:49:14:33:C8:B6:2F:31:9B:90:2B:DD:FD:E8:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xn4qRuNPSRQzyLYvMZuQK9396DE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/80c568-bd15-4f32-8dd4-066866f2ded0/1/dw6u4ZAMrXiUzrN_nB6G1LfuC9A.roa
Signing time: Sat 24 Feb 2024 15:43:48 +0000
ROA not before: Sat 24 Feb 2024 15:43:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216014
IP address blocks: 45.143.221.0/24 maxlen: 24
77.247.109.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 05 Mar 2024 11:19:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:db:c9:70:a4:d2:75:85:e3:45:1c:66:1f:1b:64:0e:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c67e2a46e34f491433c8b62f319b902bddfde831
Validity
Not Before: Feb 24 15:43:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=770eaee1900cad7894ceb37f9c1e86d4b7ee0bd0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:f6:71:50:e3:03:85:1d:87:23:35:f4:f0:4e:
d1:a0:e9:28:60:31:7a:68:17:de:7f:5d:e4:c5:36:
d4:9a:2c:46:6a:82:34:1f:e1:e2:13:9a:cb:d8:5e:
20:f9:83:60:29:df:98:55:82:c5:0b:9c:53:1c:43:
73:f5:a3:fc:54:e5:23:ce:18:e3:73:8b:f4:39:16:
fe:98:cf:66:27:6e:d6:5f:e4:00:c5:52:7a:cd:9c:
75:82:d5:73:ff:7e:e2:45:54:0a:20:21:bb:cd:eb:
77:19:be:c1:02:0b:dc:14:23:a0:5e:95:35:c8:6b:
bf:e2:70:4a:89:14:9b:9b:78:fb:fd:0a:3c:bc:61:
a7:68:3f:e5:c0:f5:71:9c:7d:e3:ea:3a:74:d5:0f:
95:d6:52:dc:9f:07:b5:24:fe:6b:8d:9c:dd:9b:88:
93:cd:75:c5:c3:80:d7:2a:6e:99:82:f3:45:a3:f4:
4b:bf:66:08:36:2f:ef:af:0b:36:83:e7:3d:bb:81:
b0:f3:f5:f6:15:6f:0c:a0:17:00:a2:ad:c3:9d:42:
83:0d:16:98:95:b5:65:b6:3d:64:33:17:c1:96:9f:
ed:c5:ab:b0:ca:70:25:b1:26:e6:a7:85:25:ba:fb:
84:1d:9f:a9:fb:f0:e7:e6:89:8c:92:cd:a0:40:4e:
e4:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:0E:AE:E1:90:0C:AD:78:94:CE:B3:7F:9C:1E:86:D4:B7:EE:0B:D0
X509v3 Authority Key Identifier:
keyid:C6:7E:2A:46:E3:4F:49:14:33:C8:B6:2F:31:9B:90:2B:DD:FD:E8:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xn4qRuNPSRQzyLYvMZuQK9396DE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/80c568-bd15-4f32-8dd4-066866f2ded0/1/dw6u4ZAMrXiUzrN_nB6G1LfuC9A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/80c568-bd15-4f32-8dd4-066866f2ded0/1/xn4qRuNPSRQzyLYvMZuQK9396DE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.143.221.0/24
77.247.109.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:56:ba:21:e2:43:49:59:bd:57:ec:89:dd:19:9d:df:27:e0:
ab:5f:d8:91:19:fc:cc:cf:94:68:34:f7:ff:a8:38:8b:52:b1:
a1:47:b9:b1:43:67:c7:e0:e7:d8:45:7c:30:2d:b2:56:df:ec:
9b:ce:01:ac:f4:17:6c:69:40:a9:ca:a1:73:46:02:b5:c8:58:
b4:51:d5:31:05:62:d9:f8:ec:c8:44:72:7c:80:de:da:9f:d5:
b7:37:b9:b0:7c:a7:59:9e:78:e0:17:8f:b5:2d:9d:d5:e0:8b:
15:b3:0d:7f:1d:ab:80:68:13:09:83:87:a1:8b:59:de:4e:d4:
bb:13:57:d9:0f:96:ea:eb:be:65:33:d1:52:cf:0d:aa:bd:c0:
dc:f2:32:13:8c:eb:50:2c:6b:d1:66:f3:3c:21:a1:5a:3d:c3:
21:31:ef:aa:ba:36:37:53:c5:75:b3:c2:e4:db:57:2c:24:7c:
b7:bc:a2:f1:1d:12:f8:77:4d:c6:0a:90:9b:8c:43:ea:de:75:
7e:83:22:ac:c0:e0:76:d2:03:70:38:fa:48:37:67:e2:a8:c4:
99:a9:dc:1f:21:ec:b7:ba:5e:e9:75:c7:6a:2f:47:a3:67:1e:
6f:80:e9:a5:ef:0c:b6:c6:74:76:6e:5b:ba:ca:86:be:90:d6:
2d:ac:86:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:50 2024 by rpki-client on console-ams.rpki-client.org