Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/KHddsrCRbqUHzJcEe8tTyINMe6A.roa
File: KHddsrCRbqUHzJcEe8tTyINMe6A.roa (raw, json)
Hash identifier: tBTXc7RgofSJ4lOtM6hJili1rTBYd7tgFOyJqyepPXE=
Subject key identifier: 28:77:5D:B2:B0:91:6E:A5:07:CC:97:04:7B:CB:53:C8:83:4C:7B:A0
Certificate issuer: /CN=a0ef5fbbfca7a93cfee965eeb6bdee6fb43c403e
Certificate serial: 01856D0ACD530F9442E8DD50FF82BB3202A9
Authority key identifier: A0:EF:5F:BB:FC:A7:A9:3C:FE:E9:65:EE:B6:BD:EE:6F:B4:3C:40:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oO9fu_ynqTz-6WXutr3ub7Q8QD4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/KHddsrCRbqUHzJcEe8tTyINMe6A.roa
Signing time: Sun 01 Jan 2023 11:15:02 +0000
ROA not before: Sun 01 Jan 2023 11:15:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21450
IP address blocks: 77.137.128.0/18 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:33:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:0a:cd:53:0f:94:42:e8:dd:50:ff:82:bb:32:02:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0ef5fbbfca7a93cfee965eeb6bdee6fb43c403e
Validity
Not Before: Jan 1 11:15:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=28775db2b0916ea507cc97047bcb53c8834c7ba0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:42:a8:bc:09:01:ef:33:6f:f1:cd:c9:55:f6:
3b:55:e8:68:f9:b9:05:a1:4e:97:e7:32:5d:d9:35:
75:b8:ef:04:74:34:95:50:8f:3e:d7:86:b4:82:41:
29:82:f9:e7:a6:b9:73:02:5e:cd:93:34:8a:f8:e1:
53:a6:ad:1b:d1:38:e7:2d:c6:15:bb:e3:71:f9:45:
d3:4d:a2:b0:2c:e0:b3:80:85:68:3f:06:c8:2a:ac:
14:d7:ae:d0:8f:d8:74:f3:b7:68:3f:38:59:a9:09:
9b:d9:8d:65:e7:90:69:4c:18:87:dc:cd:3e:7e:1b:
11:99:32:f1:95:b2:25:55:06:18:1e:03:ee:8d:83:
d3:33:24:6b:2d:5f:3e:bf:d1:87:bf:29:fd:10:e5:
dd:6a:fe:69:0d:29:56:99:07:13:89:23:52:d5:77:
58:79:b8:3e:26:7e:9d:60:a6:e2:6c:92:6b:29:fc:
d9:98:5b:5a:48:a4:32:3c:b7:a4:98:9f:c6:94:43:
db:7d:7c:e7:7a:d4:50:3f:06:c2:2d:10:64:86:c4:
69:59:55:7b:bd:f0:b1:b9:2d:2d:6e:3d:a0:e8:4c:
0d:92:35:76:a7:58:c4:c3:af:0b:32:b6:47:41:8e:
f0:5d:d0:d4:7f:35:07:90:53:aa:2f:8c:53:00:67:
6a:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:77:5D:B2:B0:91:6E:A5:07:CC:97:04:7B:CB:53:C8:83:4C:7B:A0
X509v3 Authority Key Identifier:
keyid:A0:EF:5F:BB:FC:A7:A9:3C:FE:E9:65:EE:B6:BD:EE:6F:B4:3C:40:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oO9fu_ynqTz-6WXutr3ub7Q8QD4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/KHddsrCRbqUHzJcEe8tTyINMe6A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/oO9fu_ynqTz-6WXutr3ub7Q8QD4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.137.128.0/18
Signature Algorithm: sha256WithRSAEncryption
4b:fc:16:04:18:c3:14:8f:8e:f2:ca:a5:a8:e6:a0:0d:40:5e:
d4:26:45:3d:85:9f:9e:40:e6:2a:36:4e:ae:8a:6a:b6:10:6b:
92:4c:17:7c:98:90:2e:18:70:3f:10:45:72:27:b2:14:5d:1b:
3b:18:95:61:91:d2:ee:42:de:9a:dd:b3:b8:1c:93:31:dc:db:
dc:1f:a8:24:dd:c1:90:88:2f:87:f7:44:5e:b3:9e:d3:fd:ac:
8b:1b:8a:1a:29:c7:4b:f3:13:09:64:8f:0e:cc:46:0e:75:85:
46:fc:67:51:18:de:9c:aa:f4:f4:44:2c:1b:98:e0:97:21:0d:
9e:1f:2c:86:2e:94:d5:b3:fb:dd:c1:bb:38:90:68:9f:3f:07:
1d:fe:83:27:24:2c:8a:64:be:03:50:2f:45:6b:a2:02:77:55:
49:3c:2f:f6:c1:e6:cd:d4:fb:6a:92:16:f4:b5:7c:02:af:34:
fd:ea:d7:b3:8c:a1:b1:4e:40:bc:80:a1:5a:31:24:61:32:1a:
89:d9:09:70:3a:29:0a:bd:1e:7e:50:02:9c:58:b1:67:d6:f7:
5f:97:fa:6f:e7:2a:4d:39:84:11:6d:12:2e:d6:4c:9a:a7:1e:
1b:8b:9e:e5:56:6f:63:65:a6:f3:c6:83:fc:8c:a8:a4:7c:fa:
c4:ba:2a:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:50 2024 by rpki-client on console-ams.rpki-client.org