Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/b9dab8-d084-4b73-99b2-ee5b5168bf2f/1/HiqRcxyaRpb-4iNzBpPTrHOI1gA.roa
File: HiqRcxyaRpb-4iNzBpPTrHOI1gA.roa (raw, json)
Hash identifier: wpWOOBPRBRrKFakbyy5l+VTHqY+XuEQNtzWX74Z5vz4=
Subject key identifier: 1E:2A:91:73:1C:9A:46:96:FE:E2:23:73:06:93:D3:AC:73:88:D6:00
Certificate issuer: /CN=bbba8eccd97e96189ff6e33cf110a6c9a477459c
Certificate serial: 0185729EEC104A1198FB94F662EB398D1CDF
Authority key identifier: BB:BA:8E:CC:D9:7E:96:18:9F:F6:E3:3C:F1:10:A6:C9:A4:77:45:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u7qOzNl-lhif9uM88RCmyaR3RZw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/b9dab8-d084-4b73-99b2-ee5b5168bf2f/1/HiqRcxyaRpb-4iNzBpPTrHOI1gA.roa
Signing time: Mon 02 Jan 2023 13:14:55 +0000
ROA not before: Mon 02 Jan 2023 13:14:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9121
IP address blocks: 77.72.184.0/24 maxlen: 24
77.72.185.0/24 maxlen: 24
77.72.186.0/24 maxlen: 24
77.72.187.0/24 maxlen: 24
77.72.188.0/24 maxlen: 24
77.72.189.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:31:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:9e:ec:10:4a:11:98:fb:94:f6:62:eb:39:8d:1c:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bbba8eccd97e96189ff6e33cf110a6c9a477459c
Validity
Not Before: Jan 2 13:14:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1e2a91731c9a4696fee223730693d3ac7388d600
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:99:cd:54:a3:22:16:a9:ab:9e:14:1d:77:fe:
b7:b9:c8:08:4c:45:15:b8:b3:57:c3:22:22:b0:f8:
fa:76:d6:4a:80:41:3c:b6:fb:e1:83:04:92:d4:aa:
2e:b3:84:51:4f:0d:9b:d8:02:a5:2d:df:8d:18:d6:
ca:a2:fd:62:c9:f1:a7:18:45:fa:41:72:46:3f:ea:
df:fd:ac:ce:f9:b9:be:1c:58:f1:e9:39:a8:35:b6:
3a:43:6e:fd:9a:b3:6c:f1:6c:20:f1:b8:89:56:47:
9c:a7:2c:8a:49:28:db:99:bf:dd:37:bc:14:d1:04:
89:69:1a:2f:b9:5b:25:b9:bc:78:26:ea:95:aa:81:
9c:a5:1a:c2:86:4e:c9:f0:ff:13:1e:40:ab:f2:7b:
69:d9:49:5b:63:d6:3d:83:9e:b9:63:1b:85:2d:ff:
56:5b:9c:2b:f4:20:7d:4d:67:44:74:66:3f:9a:9d:
c0:e9:cf:be:07:46:6e:cd:0d:17:1e:3e:36:08:45:
bf:37:e1:bd:37:52:80:3f:f7:af:eb:e8:30:5b:55:
3e:60:ad:c8:1e:d6:d8:62:3c:0b:c5:c9:32:15:d5:
53:3f:df:a1:9b:26:2a:bc:91:e5:cb:3d:dc:e8:6e:
cc:7f:00:f1:3a:5f:af:1d:11:3e:34:19:ba:78:2c:
04:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:2A:91:73:1C:9A:46:96:FE:E2:23:73:06:93:D3:AC:73:88:D6:00
X509v3 Authority Key Identifier:
keyid:BB:BA:8E:CC:D9:7E:96:18:9F:F6:E3:3C:F1:10:A6:C9:A4:77:45:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u7qOzNl-lhif9uM88RCmyaR3RZw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/b9dab8-d084-4b73-99b2-ee5b5168bf2f/1/HiqRcxyaRpb-4iNzBpPTrHOI1gA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/b9dab8-d084-4b73-99b2-ee5b5168bf2f/1/u7qOzNl-lhif9uM88RCmyaR3RZw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.72.184.0-77.72.189.255
Signature Algorithm: sha256WithRSAEncryption
5a:f3:55:7e:85:02:ef:2d:27:1e:0f:d6:9c:ee:8b:39:09:f8:
af:c0:26:1e:40:8e:54:0d:0b:9f:6c:76:06:57:cb:ed:97:27:
c9:9d:06:a9:23:a3:a9:45:f0:24:86:76:35:30:96:9a:00:49:
1f:73:02:86:39:0c:78:da:3d:e5:3d:ce:ed:3a:d5:36:ad:31:
8c:37:c6:a0:ed:91:61:0f:35:d7:f3:e3:b4:0a:a5:94:f8:df:
fe:dd:45:e8:af:68:b7:f7:ae:9e:20:d8:11:bc:c4:1e:07:c4:
e4:61:e9:d4:23:5d:a0:67:6f:93:c8:0a:10:e7:4e:98:24:87:
d3:cf:06:9c:ac:a8:a6:03:7d:1c:9a:01:b6:15:a8:2d:b7:db:
d4:2f:a9:67:6e:1a:55:2f:de:db:ae:ec:6f:4c:57:a1:10:89:
69:f4:ce:0b:e7:29:67:d1:f5:0a:45:07:d1:bc:47:78:de:22:
67:81:b7:bf:92:45:89:fd:35:f8:00:4f:48:b0:04:74:11:6e:
1b:52:1b:64:28:21:60:85:0d:d4:4e:63:20:5c:c5:bb:05:7a:
28:d6:5d:09:cf:c4:3b:8d:cf:4b:26:ab:f1:8b:49:0c:9a:20:
02:e6:34:6f:88:a1:7d:44:39:20:42:d8:a9:d3:60:e1:e7:46:
52:ae:f4:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:13 2024 by rpki-client on console-fra.rpki-client.org