Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/k3UF_jXa1Vx1f5BzEcKhXj9RLRg.roa
File: k3UF_jXa1Vx1f5BzEcKhXj9RLRg.roa (raw, json)
Hash identifier: 9CFxZaV4iJ43sAm5ENAL1TGa8879wr9tWaPIHcMSz50=
Subject key identifier: 93:75:05:FE:35:DA:D5:5C:75:7F:90:73:11:C2:A1:5E:3F:51:2D:18
Certificate issuer: /CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Certificate serial: 018968DF8A62A017EB51D5EF80CF2F173E0E
Authority key identifier: B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/k3UF_jXa1Vx1f5BzEcKhXj9RLRg.roa
Signing time: Tue 18 Jul 2023 12:00:27 +0000
ROA not before: Tue 18 Jul 2023 12:00:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210997
IP address blocks: 77.65.217.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:68:df:8a:62:a0:17:eb:51:d5:ef:80:cf:2f:17:3e:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Validity
Not Before: Jul 18 12:00:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=937505fe35dad55c757f907311c2a15e3f512d18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:09:16:34:d7:52:ea:a9:c2:3f:5e:72:5b:fa:
ab:fd:ad:0b:91:dc:c7:8d:25:47:7f:5c:d6:3e:78:
02:99:72:b3:0c:e6:41:60:7a:f2:af:ea:1f:b7:43:
e3:32:47:e6:c5:b1:14:8f:fa:fe:18:bf:ca:c6:25:
2a:b2:b3:32:96:e6:5b:9b:ff:fa:4e:5e:2c:fb:35:
00:b8:3d:02:b6:f1:6a:58:72:7a:ed:6e:24:04:4a:
90:dc:c9:63:ee:3a:0e:f8:78:5a:1d:fb:73:0a:a3:
5d:91:65:75:00:f4:65:e2:44:55:50:21:44:13:f7:
fd:c2:ea:16:47:59:74:19:bb:dd:47:52:c6:6d:b5:
c5:85:66:14:8b:2d:5e:c3:ba:46:3a:c4:98:ee:af:
1d:73:7c:b1:4e:2d:ba:bc:f4:28:e5:ca:e8:fb:d6:
e9:61:c1:dd:3e:ed:32:b5:88:99:e3:19:ac:02:28:
7b:df:c2:23:18:78:c9:ba:1c:dd:52:d2:69:8b:88:
86:e4:83:7b:85:b3:09:db:c3:c2:44:a1:35:6e:90:
4b:be:54:94:ee:5d:89:74:49:f4:61:12:4c:1b:4a:
a8:dd:f1:ad:4a:a6:cd:0b:ff:96:4e:3d:c8:ef:23:
fe:e5:ea:a0:f5:10:39:56:99:64:c4:e0:b5:75:be:
fd:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:75:05:FE:35:DA:D5:5C:75:7F:90:73:11:C2:A1:5E:3F:51:2D:18
X509v3 Authority Key Identifier:
keyid:B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/k3UF_jXa1Vx1f5BzEcKhXj9RLRg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/uZVEmZdyeKdVcLNAP006oAsbNug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.65.217.0/24
Signature Algorithm: sha256WithRSAEncryption
60:75:5a:42:bc:14:23:8e:9d:3b:45:75:3c:c8:da:8e:29:96:
81:76:6d:6f:b7:27:28:28:71:5e:78:22:2e:45:20:1c:75:cc:
63:d9:45:ec:6b:2b:68:3d:fc:b7:23:32:ea:e8:58:d4:d9:ef:
4a:5b:95:fc:90:c8:f1:12:24:d5:32:f6:ce:47:9c:1a:3f:47:
24:81:67:b2:5d:43:ef:a0:92:28:91:b1:01:c2:0a:32:3f:31:
a8:17:a6:aa:8c:92:a9:fb:b2:1f:ec:ef:c9:83:7c:c0:b1:b2:
b8:e0:50:f3:7a:1c:bf:e0:20:ce:a1:80:a3:ea:ce:8d:a0:c5:
a7:75:2a:ba:cb:7b:b3:e9:c7:f0:7f:64:e7:6f:24:38:e6:c8:
44:a6:00:55:49:ff:7f:d3:aa:49:b8:0f:57:3b:63:43:2e:49:
87:f9:09:e0:da:2d:73:d5:bb:24:3a:4b:ce:08:ed:28:c3:1d:
5c:28:53:fc:78:e3:50:cc:90:20:b1:69:1f:1b:48:10:7f:56:
d7:2f:9f:7a:00:d0:e5:6f:44:94:ad:37:fe:fd:a9:14:8c:41:
1d:28:6a:f0:52:89:52:82:7a:79:c9:ee:b0:5e:d4:5c:07:24:
73:1b:cd:b6:88:69:cf:7e:cd:aa:a6:23:93:cd:9f:f0:69:f3:
4e:5f:72:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:47 2024 by rpki-client on console-fra.rpki-client.org