Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/iDu3RuJMawGYwdVvr778j2Nw8cs.roa
File: iDu3RuJMawGYwdVvr778j2Nw8cs.roa (raw, json)
Hash identifier: 4nJcWUZs6CxaoUYlDrKdvD3zRYvY+1xyM5pQbcuidOQ=
Subject key identifier: 88:3B:B7:46:E2:4C:6B:01:98:C1:D5:6F:AF:BE:FC:8F:63:70:F1:CB
Certificate issuer: /CN=da00e981953061972c896bd6d27738d083aadb0e
Certificate serial: 018CD67B847E5875AA7C3820E9D78681B53F
Authority key identifier: DA:00:E9:81:95:30:61:97:2C:89:6B:D6:D2:77:38:D0:83:AA:DB:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2gDpgZUwYZcsiWvW0nc40IOq2w4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/iDu3RuJMawGYwdVvr778j2Nw8cs.roa
Signing time: Thu 04 Jan 2024 21:57:48 +0000
ROA not before: Thu 04 Jan 2024 21:57:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61317
IP address blocks: 94.177.27.0/24 maxlen: 24
89.42.215.0/24 maxlen: 24
86.104.209.0/24 maxlen: 24
84.247.59.0/24 maxlen: 24
176.223.181.0/24 maxlen: 24
77.81.1.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 26 Jul 2024 20:57:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:d6:7b:84:7e:58:75:aa:7c:38:20:e9:d7:86:81:b5:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da00e981953061972c896bd6d27738d083aadb0e
Validity
Not Before: Jan 4 21:57:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=883bb746e24c6b0198c1d56fafbefc8f6370f1cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:34:af:84:92:21:60:23:b6:59:2e:9a:66:02:
af:77:1f:bd:81:04:58:54:a0:56:26:16:5b:88:4e:
66:71:82:b6:79:f7:54:10:cb:38:97:fe:c2:33:f0:
05:17:07:9a:0e:fb:cb:3b:36:d0:c3:e5:67:f8:ae:
2a:28:b7:3c:38:85:2a:42:77:de:75:8d:a1:9e:18:
21:d9:9e:eb:8a:83:52:95:ff:29:9c:5c:82:8b:11:
93:d6:a8:14:97:98:6b:7e:bc:d0:ab:94:f7:8a:8a:
88:e1:df:c4:b5:78:0c:a0:db:96:01:00:53:9c:af:
97:df:60:70:5c:be:34:65:d5:92:5e:31:7b:4b:67:
3f:92:5f:65:56:13:ef:f9:c2:97:4f:4f:de:e4:06:
83:95:e7:fc:0c:90:85:0b:66:33:33:0a:21:ba:77:
7f:7e:fc:0d:39:fe:95:e4:ac:28:84:0a:46:41:3a:
55:d3:8a:d5:12:d7:06:20:81:25:09:70:5b:ea:77:
15:3d:03:e5:36:b9:44:9e:24:79:e9:b3:38:e8:a1:
cb:15:93:68:af:c7:1a:53:83:56:19:1c:3f:e1:15:
42:65:87:56:35:b9:24:a5:86:47:c8:10:43:f3:ed:
f2:1f:e7:4b:ad:27:01:22:2e:30:7a:17:21:be:07:
cd:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:3B:B7:46:E2:4C:6B:01:98:C1:D5:6F:AF:BE:FC:8F:63:70:F1:CB
X509v3 Authority Key Identifier:
keyid:DA:00:E9:81:95:30:61:97:2C:89:6B:D6:D2:77:38:D0:83:AA:DB:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2gDpgZUwYZcsiWvW0nc40IOq2w4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/iDu3RuJMawGYwdVvr778j2Nw8cs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/2gDpgZUwYZcsiWvW0nc40IOq2w4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.81.1.0/24
84.247.59.0/24
86.104.209.0/24
89.42.215.0/24
94.177.27.0/24
176.223.181.0/24
Signature Algorithm: sha256WithRSAEncryption
10:7e:ed:b5:7b:74:56:9b:0e:36:21:46:d0:0f:73:51:a7:c5:
8a:e6:68:ef:81:62:41:a9:94:50:ab:6d:e1:5b:72:89:5a:4f:
e6:bd:5f:af:a2:f3:4d:a6:02:ec:9c:52:bf:0a:11:3f:22:39:
51:3c:ec:7b:da:64:d0:48:b9:41:07:bc:0f:a3:8b:c0:34:4e:
e0:82:3f:ce:81:31:b7:e6:a1:81:70:1b:64:be:c7:ff:6e:a0:
9a:d0:f0:c5:ac:a6:d2:ae:6d:7e:ba:78:0c:2e:a3:f3:28:fe:
1f:c1:b3:e7:a6:99:c3:67:1f:da:e8:de:f0:f8:ac:aa:c8:a5:
52:39:85:d0:7d:5b:fa:50:54:01:8e:fc:43:b6:62:c9:78:a6:
23:46:23:74:11:b7:8b:07:2d:c3:3a:f4:cd:7b:42:58:77:c3:
87:81:da:3f:74:26:75:72:1e:8d:f8:3b:e8:e9:bf:44:3e:0c:
15:9d:f1:62:98:25:0e:00:8f:ba:83:57:10:bf:23:6d:ef:b1:
0a:ff:23:20:15:db:c2:83:89:af:5f:45:49:44:11:64:98:8a:
c3:06:76:4b:ca:cd:0c:c3:c9:04:38:49:e0:98:01:cd:bc:58:
b0:b4:03:99:d2:3e:53:3b:76:2a:85:07:2e:66:2a:41:b9:c0:
dc:e1:85:20
-----BEGIN CERTIFICATE-----
MIIFGzCCBAOgAwIBAgISAYzWe4R+WHWqfDgg6deGgbU/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRhMDBlOTgxOTUzMDYxOTcyYzg5NmJkNmQyNzczOGQwODNh
YWRiMGUwHhcNMjQwMTA0MjE1NzQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4ODNiYjc0NmUyNGM2YjAxOThjMWQ1NmZhZmJlZmM4ZjYzNzBmMWNiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6TSvhJIhYCO2WS6aZgKvdx+9gQRY
VKBWJhZbiE5mcYK2efdUEMs4l/7CM/AFFweaDvvLOzbQw+Vn+K4qKLc8OIUqQnfe
dY2hnhgh2Z7rioNSlf8pnFyCixGT1qgUl5hrfrzQq5T3ioqI4d/EtXgMoNuWAQBT
nK+X32BwXL40ZdWSXjF7S2c/kl9lVhPv+cKXT0/e5AaDlef8DJCFC2YzMwohund/
fvwNOf6V5KwohApGQTpV04rVEtcGIIElCXBb6ncVPQPlNrlEniR56bM46KHLFZNo
r8caU4NWGRw/4RVCZYdWNbkkpYZHyBBD8+3yH+dLrScBIi4wehchvgfNMQIDAQAB
o4ICJzCCAiMwHQYDVR0OBBYEFIg7t0biTGsBmMHVb6++/I9jcPHLMB8GA1UdIwQY
MBaAFNoA6YGVMGGXLIlr1tJ3ONCDqtsOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMmdEcGdaVXdZWmNzaVd2VzBuYzQwSU9xMnc0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZi84MmE3ZDYtOTJhOS00MjA0LTlhZTAt
OWE0OGVjZjllMTVlLzEvaUR1M1J1Sk1hd0dZd2RWdnI3NzhqMk53OGNzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZi84MmE3ZDYtOTJhOS00MjA0LTlhZTAtOWE0OGVjZjllMTVl
LzEvMmdEcGdaVXdZWmNzaVd2VzBuYzQwSU9xMnc0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMD0GCCsGAQUFBwEHAQH/BC4wLDAqBAIAATAkAwQATVEBAwQA
VPc7AwQAVmjRAwQAWSrXAwQAXrEbAwQAsN+1MA0GCSqGSIb3DQEBCwUAA4IBAQAQ
fu21e3RWmw42IUbQD3NRp8WK5mjvgWJBqZRQq23hW3KJWk/mvV+vovNNpgLsnFK/
ChE/IjlRPOx72mTQSLlBB7wPo4vANE7ggj/OgTG35qGBcBtkvsf/bqCa0PDFrKbS
rm1+ungMLqPzKP4fwbPnppnDZx/a6N7w+KyqyKVSOYXQfVv6UFQBjvxDtmLJeKYj
RiN0EbeLBy3DOvTNe0JYd8OHgdo/dCZ1ch6N+Dvo6b9EPgwVnfFimCUOAI+6g1cQ
vyNt77EK/yMgFdvCg4mvX0VJRBFkmIrDBnZLys0Mw8kEOEngmAHNvFiwtAOZ0j5T
O3YqhQcuZipBucDc4YUg
Generated at Fri Jul 26 23:04:27 2024 by rpki-client on console-fra.rpki-client.org