Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/HJIhMX0839HuL8Fiupm7fjfD6go.roa
File: HJIhMX0839HuL8Fiupm7fjfD6go.roa (raw, json)
Hash identifier: GsI98jOwTTJUSwfxqTIOyjvnO1dQ9aj/3evxrY8W0/Y=
Subject key identifier: 1C:92:21:31:7D:3C:DF:D1:EE:2F:C1:62:BA:99:BB:7E:37:C3:EA:0A
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 018571E88652A72C31BC13BD43135AFA7C09
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/HJIhMX0839HuL8Fiupm7fjfD6go.roa
Signing time: Mon 02 Jan 2023 09:55:42 +0000
ROA not before: Mon 02 Jan 2023 09:55:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35042
IP address blocks: 77.83.36.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:e8:86:52:a7:2c:31:bc:13:bd:43:13:5a:fa:7c:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: Jan 2 09:55:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1c9221317d3cdfd1ee2fc162ba99bb7e37c3ea0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:51:7e:ec:bb:e2:48:8a:4b:d7:f6:d4:48:8d:
75:b6:77:ed:c4:93:3d:82:db:b2:a9:e2:c7:68:e5:
dc:b1:3a:a6:53:69:dc:5c:25:0f:36:cb:d6:06:c6:
45:c3:11:b2:be:4b:04:d9:5a:6c:ee:32:fe:36:e0:
c1:44:82:39:e0:1f:4f:d2:28:3f:e8:9e:db:51:92:
78:f8:cf:bf:e6:fb:fc:be:6c:a1:53:ed:32:4a:31:
d5:60:c9:86:24:34:d6:0e:36:31:9a:5b:62:83:b3:
b8:4d:b6:ae:db:34:bd:8a:7f:b6:fe:1d:59:f5:3a:
c2:c0:e8:23:34:24:89:32:5c:6d:c0:ea:58:eb:d7:
9b:14:28:04:5a:e5:98:d5:72:42:45:e0:9f:39:14:
5c:8d:cd:0f:bd:e6:fd:8f:ec:3c:34:b7:e1:c5:22:
81:f7:a6:2a:c9:96:3b:6a:51:7d:27:ef:0a:f3:95:
d5:96:4a:ec:34:4c:54:91:4e:23:86:da:fc:ab:d3:
1f:f3:30:72:e3:e6:cf:11:f6:64:16:0e:1a:01:a7:
5f:83:16:e7:ea:e5:54:38:2f:a7:f1:ff:9f:0f:29:
ea:50:89:14:25:c9:98:b8:6d:2e:7d:c0:da:12:51:
32:3f:05:df:3f:bb:6d:70:64:16:5b:0f:63:f9:13:
24:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:92:21:31:7D:3C:DF:D1:EE:2F:C1:62:BA:99:BB:7E:37:C3:EA:0A
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/HJIhMX0839HuL8Fiupm7fjfD6go.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.83.36.0/24
Signature Algorithm: sha256WithRSAEncryption
20:2d:9e:8c:13:86:5a:8f:7c:a6:c3:8f:65:ed:a2:49:65:5f:
fb:76:c6:af:16:27:38:03:50:5b:cd:b6:23:f7:3b:68:bd:4c:
00:a6:fc:21:cc:84:83:dd:ad:eb:5c:4b:cf:ba:5c:db:6e:5c:
f8:6e:44:d4:3e:28:e2:40:65:91:5f:e0:7a:99:16:a3:ec:83:
76:c5:d4:77:f6:ed:ca:ba:5b:09:03:b9:10:7b:d3:a6:02:11:
c1:87:5d:3d:04:3a:8c:49:e1:c4:65:c7:1f:ed:09:a5:7f:94:
11:c6:e8:5d:f5:c9:34:a2:63:ec:2c:38:0a:e6:d6:64:b1:bc:
d6:c0:35:95:c3:54:ce:07:3a:5b:70:7e:8b:e2:93:91:67:bb:
65:e5:50:fb:dc:84:25:14:55:e1:37:10:99:1e:63:cb:6e:72:
d7:6e:13:de:ee:2e:3d:05:17:06:5b:07:32:5e:86:6d:b8:ae:
d6:14:9c:5c:65:f6:9f:43:8e:ee:00:40:0f:58:81:73:22:11:
ae:36:57:96:29:1e:a1:d1:de:3b:f2:58:e3:a2:8b:c6:98:b1:
90:be:4c:90:d1:4c:50:20:93:9f:1b:cf:a2:f5:c8:b1:f9:75:
f5:06:72:c8:58:68:e9:b8:cb:a1:9d:22:92:c0:95:a8:6f:6a:
cb:2a:7c:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:31 2024 by rpki-client on console-fra.rpki-client.org