Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/52e0bc-9629-4a20-a002-909209356b2f/1/j4W2ZR9N4ewgeSoF5VYCnMJTywA.roa
File: j4W2ZR9N4ewgeSoF5VYCnMJTywA.roa (raw, json)
Hash identifier: mqqL4v5Q6m7PyCrfCHmgbR7QFFRVht8e603Do4v0cUc=
Subject key identifier: 8F:85:B6:65:1F:4D:E1:EC:20:79:2A:05:E5:56:02:9C:C2:53:CB:00
Certificate issuer: /CN=700002e9cd2c74a0ef8b51b40d44d141a932d283
Certificate serial: 01856C65C9BC2A6332368E8382ECE0851C62
Authority key identifier: 70:00:02:E9:CD:2C:74:A0:EF:8B:51:B4:0D:44:D1:41:A9:32:D2:83
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cAAC6c0sdKDvi1G0DUTRQaky0oM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/52e0bc-9629-4a20-a002-909209356b2f/1/j4W2ZR9N4ewgeSoF5VYCnMJTywA.roa
Signing time: Sun 01 Jan 2023 08:14:48 +0000
ROA not before: Sun 01 Jan 2023 08:14:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 13070
IP address blocks: 77.241.160.0/22 maxlen: 22
217.145.208.0/20 maxlen: 20
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:30:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:65:c9:bc:2a:63:32:36:8e:83:82:ec:e0:85:1c:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=700002e9cd2c74a0ef8b51b40d44d141a932d283
Validity
Not Before: Jan 1 08:14:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8f85b6651f4de1ec20792a05e556029cc253cb00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:28:9f:e7:53:1e:ab:52:44:cc:63:97:93:37:
0c:ee:c5:d6:33:66:00:d9:4a:89:b3:e8:e0:5a:7b:
56:38:3c:48:1b:f3:31:95:bd:cf:69:a0:62:c9:c5:
2a:fb:e2:9d:2e:fd:58:96:36:3c:d6:7b:de:c4:54:
a2:9f:c1:88:7c:76:b4:4d:2a:fc:71:d7:5d:07:ff:
8d:1d:c4:7e:97:c9:00:ba:a2:1b:6c:e1:cc:88:b5:
d9:3a:78:0a:d0:97:b0:f2:06:65:66:1e:31:cb:83:
71:4c:59:06:99:f6:0c:b5:93:b7:48:bd:2d:c6:81:
7f:8c:43:76:2f:e6:45:ab:57:37:28:ea:86:2f:3d:
dd:e9:90:90:df:16:3a:76:b2:11:eb:bb:8c:e9:99:
cd:b7:ee:ba:d7:b4:84:24:8c:13:18:1f:8a:25:60:
87:aa:1f:0e:59:38:01:5c:2b:f3:1d:41:6b:56:81:
6f:c8:c5:51:7f:51:17:44:52:d9:64:15:76:72:22:
62:e4:b7:f9:e6:95:8d:91:96:5b:ff:72:a2:22:0b:
c9:8c:0e:f0:c4:39:8b:36:a5:33:f6:81:cb:1b:c0:
f0:7b:c1:ca:a2:f4:c1:6d:ef:ed:73:d2:2c:17:1b:
58:ed:21:a8:5c:5d:aa:7d:1d:6d:4b:20:f6:fd:f6:
2a:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:85:B6:65:1F:4D:E1:EC:20:79:2A:05:E5:56:02:9C:C2:53:CB:00
X509v3 Authority Key Identifier:
keyid:70:00:02:E9:CD:2C:74:A0:EF:8B:51:B4:0D:44:D1:41:A9:32:D2:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cAAC6c0sdKDvi1G0DUTRQaky0oM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/52e0bc-9629-4a20-a002-909209356b2f/1/j4W2ZR9N4ewgeSoF5VYCnMJTywA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/52e0bc-9629-4a20-a002-909209356b2f/1/cAAC6c0sdKDvi1G0DUTRQaky0oM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.241.160.0/22
217.145.208.0/20
Signature Algorithm: sha256WithRSAEncryption
ae:6c:71:c9:0f:40:eb:aa:ba:93:b0:b7:a0:06:fd:43:93:6b:
3b:c8:51:e2:95:a5:b6:fc:99:4a:e6:85:0d:05:02:27:c7:ba:
d0:f7:42:28:78:ce:a2:c7:5b:29:2b:f7:a2:d7:58:52:8e:ad:
cd:b0:6d:77:f5:d7:87:84:f0:ef:80:52:eb:b3:a3:4e:01:fe:
de:c4:91:f9:0b:85:cd:d3:57:9d:fb:f4:8b:c1:0e:7a:8a:03:
9e:79:16:57:3d:98:09:f7:80:09:0d:a9:a6:e3:bc:d3:db:b0:
61:c0:fd:6c:4a:98:72:54:0c:69:08:9c:5a:2b:36:47:3b:2d:
5b:24:76:13:fa:8f:86:3d:d0:ff:67:37:98:ee:4d:be:d7:1a:
26:7f:a8:18:c4:2f:e4:b4:0c:a1:1f:32:a2:1d:dd:aa:26:61:
2c:6b:73:96:7a:f6:9b:59:90:70:5e:ae:3a:ff:88:df:e8:13:
4e:8b:ca:cb:c2:1a:ce:81:1c:b3:db:4a:10:6b:c2:b5:8f:4f:
da:5b:3a:fb:31:b0:0d:47:ec:91:b8:f1:a6:b2:2b:3f:5b:58:
3d:b6:dc:dd:69:4d:81:8b:5a:67:1d:34:29:5d:66:b3:61:8e:
62:1e:75:f5:99:f0:ba:3b:c6:99:7c:80:89:d9:8d:fb:a4:08:
04:3e:f9:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:41 2024 by rpki-client on console-fra.rpki-client.org