Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/bkStDsGAtSGQaSkjLJc2JafqAB0.roa
File: bkStDsGAtSGQaSkjLJc2JafqAB0.roa (raw, json)
Hash identifier: 8Ar+m86suPsKTxIBShTQozLPoijJ8duI2jcGGNonPUs=
Subject key identifier: 6E:44:AD:0E:C1:80:B5:21:90:69:29:23:2C:97:36:25:A7:EA:00:1D
Certificate issuer: /CN=c378bc3bd350eedc4f377c224556b250da6dde6f
Certificate serial: 018C4E7727E973B95409F1CE499C0C04A434
Authority key identifier: C3:78:BC:3B:D3:50:EE:DC:4F:37:7C:22:45:56:B2:50:DA:6D:DE:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w3i8O9NQ7txPN3wiRVayUNpt3m8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/bkStDsGAtSGQaSkjLJc2JafqAB0.roa
Signing time: Sat 09 Dec 2023 12:04:40 +0000
ROA not before: Sat 09 Dec 2023 12:04:40 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62336
IP address blocks: 77.37.100.0/22 maxlen: 22
185.171.78.0/23 maxlen: 23
185.171.76.0/23 maxlen: 23
77.37.106.0/23 maxlen: 23
Validation: Failed, certificate revoked on Sat 09 Dec 2023 12:05:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:4e:77:27:e9:73:b9:54:09:f1:ce:49:9c:0c:04:a4:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c378bc3bd350eedc4f377c224556b250da6dde6f
Validity
Not Before: Dec 9 12:04:40 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6e44ad0ec180b521906929232c973625a7ea001d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:99:46:b2:40:a0:a0:2f:02:dd:c0:d9:bb:30:
bd:0b:23:fe:69:b7:14:4e:50:d6:5a:fe:5c:ba:3c:
c7:9b:e9:fc:96:b9:97:e8:90:09:93:a1:a1:0e:be:
ad:5e:9d:bd:06:0e:7a:d2:4e:9e:6d:2f:4a:7f:e9:
56:3a:0d:c6:c6:e9:81:87:26:fd:f9:45:df:0c:98:
76:e0:1e:f0:f5:17:dc:4e:69:4d:81:fe:38:f9:30:
96:d6:60:e9:9a:5c:38:12:31:33:98:64:a9:3b:69:
87:df:97:73:8b:51:9d:f8:eb:f5:81:ba:b3:fd:29:
fc:c8:65:ff:12:ab:98:1b:6d:09:91:69:c4:66:46:
69:01:58:fb:60:a2:66:e5:c6:ce:1a:21:d2:b7:45:
6a:63:90:4f:6a:fd:f4:b1:f9:5e:cd:4e:f8:56:66:
c9:20:0e:3c:0b:4a:8e:f5:cb:05:49:4b:e5:95:65:
01:f4:9d:4c:5d:76:2b:6c:a3:3f:04:de:21:05:41:
81:52:61:a6:95:5f:04:60:62:eb:c5:82:65:cf:72:
9b:de:c5:f4:d8:c4:d1:25:be:a5:aa:2a:b1:a2:b4:
7b:34:2b:5f:ba:60:7f:59:bf:98:d4:d0:b9:f8:53:
16:15:fe:74:c5:b6:78:cf:2c:a0:3b:25:6a:8a:8a:
eb:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:44:AD:0E:C1:80:B5:21:90:69:29:23:2C:97:36:25:A7:EA:00:1D
X509v3 Authority Key Identifier:
keyid:C3:78:BC:3B:D3:50:EE:DC:4F:37:7C:22:45:56:B2:50:DA:6D:DE:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w3i8O9NQ7txPN3wiRVayUNpt3m8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/bkStDsGAtSGQaSkjLJc2JafqAB0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/w3i8O9NQ7txPN3wiRVayUNpt3m8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.37.100.0/22
77.37.106.0/23
185.171.76.0/22
Signature Algorithm: sha256WithRSAEncryption
87:2c:3a:d5:25:36:da:59:0e:b5:0c:c3:98:a7:06:98:64:02:
7b:a4:01:c7:d9:af:c4:b9:ac:80:07:b0:bf:0b:62:0d:4b:16:
f3:54:88:fa:27:54:14:6b:75:1e:85:b9:0d:f6:43:39:8d:f2:
fb:ac:99:16:2e:fd:d4:22:f0:ff:10:b3:fb:c4:ea:42:c7:20:
c4:b5:53:de:04:a9:72:a8:cf:c4:20:14:42:1d:28:47:bd:e6:
d4:42:b4:57:b5:0c:80:5e:3e:aa:64:8c:ad:69:5a:d0:7f:88:
5c:59:6d:26:a7:21:9f:9c:e9:73:f8:4b:df:5b:2c:d3:91:d2:
ba:35:71:96:b4:f9:bf:78:35:5c:46:b9:60:b4:1a:a5:4b:89:
c7:91:8d:95:88:fa:c8:63:85:d6:b2:bf:1a:01:a7:7d:7d:47:
fb:87:34:0a:2f:6a:15:fa:23:f7:a3:f4:96:f2:bc:bb:da:17:
bb:a9:8e:4b:f5:ad:eb:a5:44:08:42:2f:bd:4c:1f:62:fc:bd:
b9:fe:44:d2:db:4b:9e:b8:61:ca:7d:50:b2:23:28:f3:f0:b9:
12:6c:ee:74:81:f1:74:41:55:f9:8a:98:e4:33:bd:ed:be:b3:
a3:7f:2d:08:ca:ca:ca:91:f6:bc:50:75:02:bd:82:e4:bb:3e:
3c:e2:a4:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:00 2024 by rpki-client on console-fra.rpki-client.org