Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/4393e8-5f59-4d57-8198-5c0c46d04ee1/1/DuRtJk91LO2f0DWwkc42qktNUUM.roa
File: DuRtJk91LO2f0DWwkc42qktNUUM.roa (raw, json)
Hash identifier: VX+AJEc9HwYqsb5hSBYyZOy3Y+/iGSWQRKiHtNKZIE8=
Subject key identifier: 0E:E4:6D:26:4F:75:2C:ED:9F:D0:35:B0:91:CE:36:AA:4B:4D:51:43
Certificate issuer: /CN=e4ff5bbf540c65954b9913a68c24d174de97d829
Certificate serial: 0188BA77A565A33FA00AB4E3F98818043183
Authority key identifier: E4:FF:5B:BF:54:0C:65:95:4B:99:13:A6:8C:24:D1:74:DE:97:D8:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5P9bv1QMZZVLmROmjCTRdN6X2Ck.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/4393e8-5f59-4d57-8198-5c0c46d04ee1/1/DuRtJk91LO2f0DWwkc42qktNUUM.roa
Signing time: Wed 14 Jun 2023 15:13:03 +0000
ROA not before: Wed 14 Jun 2023 15:13:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49910
IP address blocks: 77.232.224.0/19 maxlen: 24
2a12:9940::/29 maxlen: 48
Validation: Failed, certificate revoked on Wed 14 Jun 2023 15:27:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:ba:77:a5:65:a3:3f:a0:0a:b4:e3:f9:88:18:04:31:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4ff5bbf540c65954b9913a68c24d174de97d829
Validity
Not Before: Jun 14 15:13:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0ee46d264f752ced9fd035b091ce36aa4b4d5143
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:cb:4e:4b:e9:55:24:bf:59:69:1a:f5:32:c8:
83:b6:c4:c7:c9:95:ce:7a:9d:ed:99:ba:e0:51:04:
72:49:64:c6:24:fe:af:10:d6:47:52:26:48:2b:35:
6c:b5:17:64:8e:e7:bc:2a:20:74:20:37:04:6d:b7:
cb:23:b5:a1:da:69:a4:39:bf:f1:26:d3:64:eb:97:
50:34:f8:ee:80:b9:99:ac:d5:ab:15:ef:50:9b:2a:
c1:b2:2e:8e:34:68:51:8e:84:f4:c2:4c:dc:9c:be:
49:62:48:69:33:64:2c:b6:dd:24:a2:db:9b:a2:4e:
65:39:a8:a4:3e:1e:40:ac:bb:1e:ab:cf:e2:63:c2:
91:9c:1c:ac:94:23:1e:88:34:11:7d:98:89:a8:46:
5c:c9:f8:79:2e:5b:65:07:a1:17:0c:94:32:51:23:
fd:f4:88:82:ea:a8:23:52:f1:3c:00:7b:ff:e8:4e:
cd:c0:b0:d2:27:c4:1c:ac:66:fc:40:8e:49:b7:34:
90:50:b8:d8:aa:db:1d:ee:f2:48:28:a3:76:18:9b:
d0:c6:ea:ca:34:3f:70:e3:6e:c0:a4:fe:6e:5b:1b:
74:d8:f6:fb:72:35:c6:cd:8b:ae:78:98:29:ed:56:
1b:39:5a:3c:1d:2b:c1:77:9c:b5:56:f1:58:b8:d2:
e7:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:E4:6D:26:4F:75:2C:ED:9F:D0:35:B0:91:CE:36:AA:4B:4D:51:43
X509v3 Authority Key Identifier:
keyid:E4:FF:5B:BF:54:0C:65:95:4B:99:13:A6:8C:24:D1:74:DE:97:D8:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5P9bv1QMZZVLmROmjCTRdN6X2Ck.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/4393e8-5f59-4d57-8198-5c0c46d04ee1/1/DuRtJk91LO2f0DWwkc42qktNUUM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/4393e8-5f59-4d57-8198-5c0c46d04ee1/1/5P9bv1QMZZVLmROmjCTRdN6X2Ck.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.232.224.0/19
IPv6:
2a12:9940::/29
Signature Algorithm: sha256WithRSAEncryption
86:86:f5:2f:78:b1:a9:f8:a1:b3:98:1f:3e:6c:8e:50:fa:75:
c9:22:4b:1a:73:77:0c:51:3d:de:39:1a:e3:4f:9d:41:81:88:
a8:10:97:1d:d6:79:a0:80:dd:8c:c4:ba:0d:a8:0d:cb:15:e5:
8e:d6:44:3e:59:9e:39:a2:1a:30:cd:41:d9:24:9a:8b:38:c9:
81:0a:d5:6b:e9:ed:61:bd:5c:fc:08:d1:1b:87:8c:4d:48:0f:
c6:ea:39:3d:b4:9c:28:b6:46:fd:25:6d:7b:5a:37:47:0c:24:
37:fd:96:58:14:81:bf:ad:7e:00:0d:66:3f:a7:99:ce:f7:b3:
ab:3e:3a:44:ae:69:ae:1a:25:e2:57:c6:dd:25:f4:b2:40:8f:
cb:ba:29:06:63:35:ae:b0:c6:67:c0:a0:9d:ed:44:39:d0:2e:
1d:de:79:3a:6a:27:69:47:f4:b5:a5:1e:35:9d:ea:87:72:4a:
1c:05:c1:3b:95:d3:01:ba:36:90:62:83:3e:01:a1:8f:89:2a:
11:e6:6d:5d:12:60:01:c5:5e:f0:31:ca:49:56:51:15:e7:67:
9e:e4:a6:d3:a6:52:26:12:2c:36:19:9e:de:b8:e3:59:29:8d:
2a:44:db:5f:f9:12:14:d3:5c:cc:4f:f1:56:e2:62:c0:d2:48:
f7:9d:3d:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:48 2024 by rpki-client on console-fra.rpki-client.org