Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/H0UbSPWzz5-oAWhz11-e47izOjw.roa
File: H0UbSPWzz5-oAWhz11-e47izOjw.roa (raw, json)
Hash identifier: ynU5L0pt2GsiAX/+l55iYEsr3veV63iHU8JpNSMH8tY=
Subject key identifier: 1F:45:1B:48:F5:B3:CF:9F:A8:01:68:73:D7:5F:9E:E3:B8:B3:3A:3C
Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10
Certificate serial: 018B22D0427C8284179282B8C9330CCB9971
Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/H0UbSPWzz5-oAWhz11-e47izOjw.roa
Signing time: Thu 12 Oct 2023 07:35:55 +0000
ROA not before: Thu 12 Oct 2023 07:35:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 54339
IP address blocks: 77.242.157.0/24 maxlen: 24
88.209.220.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 10 Nov 2023 08:23:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:22:d0:42:7c:82:84:17:92:82:b8:c9:33:0c:cb:99:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10
Validity
Not Before: Oct 12 07:35:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1f451b48f5b3cf9fa8016873d75f9ee3b8b33a3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:bb:8c:d0:4f:da:70:72:fd:83:ed:92:c6:67:
de:ae:7f:c9:11:51:79:91:70:4c:a5:8d:55:69:dc:
87:f5:c6:64:c6:38:0c:a5:7e:8d:a4:88:52:2c:59:
cd:14:e1:08:92:56:2a:52:2e:1f:8c:a7:52:f5:52:
7e:84:17:a2:e5:16:8f:cb:0e:f8:07:0a:f4:fe:fe:
0e:1c:fe:ba:c2:11:79:47:ca:46:d6:1c:4c:fe:b8:
9e:da:c4:7e:30:a9:8d:d3:d7:89:7b:94:58:f4:e5:
21:4f:40:ea:4b:7f:b8:75:2a:0f:6b:3b:ff:15:15:
e1:56:97:b8:44:f6:7a:15:bd:32:f4:d7:2a:c2:98:
d8:b1:ed:18:52:25:fa:9a:27:74:3e:76:d8:9e:4f:
71:53:ad:93:fd:b4:d4:eb:ec:80:8a:27:0d:d0:32:
c8:e0:87:90:8f:d3:e6:70:14:8c:32:2b:94:f2:79:
08:4e:31:eb:64:c8:f8:79:b5:49:6c:d3:be:61:70:
e3:d3:3b:42:76:7f:92:fb:84:fd:85:48:c0:dd:3c:
29:2f:43:26:48:09:df:5d:d6:25:ee:db:fc:4f:0a:
57:2c:28:87:ba:f5:26:6f:bb:bf:a9:12:f8:03:7a:
02:88:3a:0f:ff:90:e9:5b:03:51:68:9a:06:72:e3:
3a:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:45:1B:48:F5:B3:CF:9F:A8:01:68:73:D7:5F:9E:E3:B8:B3:3A:3C
X509v3 Authority Key Identifier:
keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/H0UbSPWzz5-oAWhz11-e47izOjw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.242.157.0/24
88.209.220.0/24
Signature Algorithm: sha256WithRSAEncryption
13:a1:d1:17:80:b3:96:2c:1e:d9:8b:24:fd:51:df:b1:52:ea:
1e:6c:64:ff:a7:d1:44:01:1b:0b:23:6f:f0:ba:16:d6:eb:88:
e4:09:cf:a7:68:bd:1b:2c:a2:8e:00:7c:96:86:12:ad:0b:24:
d6:5b:c6:3c:0e:69:b4:37:8c:06:a4:7c:44:d0:6d:c7:a5:57:
8d:8d:0d:b0:38:b5:b5:c8:57:20:c7:60:73:15:2f:f5:2b:4a:
df:4c:98:b8:b5:27:c3:d2:0f:72:76:c1:57:ff:de:f7:65:08:
67:43:4f:92:3b:02:11:07:fb:f5:bf:68:19:d2:35:74:de:11:
46:69:a9:c6:db:2d:a7:41:dd:d1:3b:d0:0b:ef:fb:8f:9c:cb:
db:60:93:3c:24:af:29:c0:ef:4f:05:f0:c4:de:d1:f8:56:29:
85:ff:98:d8:32:01:9e:89:34:67:b7:06:c6:41:ac:e4:92:e3:
6f:7d:a4:a5:88:e6:a9:2a:87:36:c8:c8:4d:a8:97:44:65:84:
3a:80:41:b4:bd:f2:93:3e:fd:06:f7:10:82:c4:d3:c6:f7:75:
ba:95:06:6a:3a:97:cc:d1:50:96:36:c3:94:99:38:eb:0a:11:
59:57:e7:8e:3d:35:70:fa:f7:f1:df:55:e5:3e:ce:89:76:bb:
b1:d2:ec:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:27 2024 by rpki-client on console-fra.rpki-client.org