Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/6C-UM7QFTrgZgGv24iLPOj4IdTI.roa
File: 6C-UM7QFTrgZgGv24iLPOj4IdTI.roa (raw, json)
Hash identifier: MjSTRGJqBNJbuQvxnXZ1nYx/k9UQmDF5sHVkiEmtHWw=
Subject key identifier: E8:2F:94:33:B4:05:4E:B8:19:80:6B:F6:E2:22:CF:3A:3E:08:75:32
Certificate issuer: /CN=affa13f1ae053916280ec68ee1b0976f9ebd3ea8
Certificate serial: 0186DA38610223E46DB2A5F8D72F76492FE3
Authority key identifier: AF:FA:13:F1:AE:05:39:16:28:0E:C6:8E:E1:B0:97:6F:9E:BD:3E:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r_oT8a4FORYoDsaO4bCXb569Pqg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/6C-UM7QFTrgZgGv24iLPOj4IdTI.roa
Signing time: Mon 13 Mar 2023 09:06:13 +0000
ROA not before: Mon 13 Mar 2023 09:06:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57043
IP address blocks: 77.73.132.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:30:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:da:38:61:02:23:e4:6d:b2:a5:f8:d7:2f:76:49:2f:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=affa13f1ae053916280ec68ee1b0976f9ebd3ea8
Validity
Not Before: Mar 13 09:06:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e82f9433b4054eb819806bf6e222cf3a3e087532
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:55:0a:b8:ab:31:e2:c6:f4:4d:be:5a:2e:d7:
95:ab:ca:cc:ce:d2:68:4c:7c:46:20:bd:31:2b:fb:
15:fa:61:f2:df:3e:8f:38:14:8f:c9:9c:d5:3b:aa:
db:0b:c8:75:f9:b7:3d:ba:c6:3d:b3:1f:00:53:39:
57:cc:5e:f1:81:9a:96:a1:a6:f7:c6:00:07:fa:08:
b0:7b:6e:3b:37:28:15:68:33:af:de:b5:f1:4e:44:
a0:f8:6d:58:f2:f8:9e:eb:39:de:7c:9e:5e:d6:7c:
f2:70:df:96:04:67:3a:c9:17:bf:d8:e6:5e:5d:34:
dc:55:b2:02:cd:03:23:2f:1e:25:17:5c:80:e2:67:
63:f0:cd:cf:f0:35:e4:e5:dc:de:66:49:eb:32:19:
18:03:fe:b2:24:0e:f8:ae:e2:10:7a:21:15:f4:7c:
f7:b4:6b:9d:73:65:c8:28:79:71:aa:71:ee:14:56:
79:a3:30:d1:11:0b:bb:0d:26:09:8a:a8:47:f6:bd:
a0:7e:7f:b4:83:d8:00:d5:fd:2b:1d:c4:f1:4d:6e:
ba:37:f3:e4:97:fe:6d:5d:36:d9:f1:a6:32:60:57:
9e:39:b0:af:ca:1f:05:42:57:5b:7b:3e:07:89:7c:
de:72:af:4a:76:9e:95:64:89:cb:e4:e0:66:39:4d:
d9:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:2F:94:33:B4:05:4E:B8:19:80:6B:F6:E2:22:CF:3A:3E:08:75:32
X509v3 Authority Key Identifier:
keyid:AF:FA:13:F1:AE:05:39:16:28:0E:C6:8E:E1:B0:97:6F:9E:BD:3E:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r_oT8a4FORYoDsaO4bCXb569Pqg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/6C-UM7QFTrgZgGv24iLPOj4IdTI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/r_oT8a4FORYoDsaO4bCXb569Pqg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.73.132.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:76:d1:f1:b0:d1:1e:c1:69:f5:17:f7:23:68:0b:70:42:bc:
85:9f:26:0c:1a:cf:3a:93:0a:a7:3b:42:83:76:b9:7c:9e:3f:
a4:ac:98:d7:7b:64:44:c5:bc:77:7f:92:e6:3d:1e:de:d8:07:
78:c0:8b:cb:bb:bf:98:4a:b7:36:d3:b7:b5:4b:31:64:22:c7:
ec:bf:dc:eb:77:43:a6:a4:23:6d:8e:90:15:97:7c:42:ac:94:
f4:7b:82:d2:c0:ad:19:05:77:c7:0e:35:e9:60:d1:c5:f0:7c:
27:7b:e1:57:53:ce:54:ca:d5:d2:c8:37:a0:af:0e:82:f0:a1:
c1:cc:52:d1:b7:c9:12:09:d0:24:ac:95:0b:b8:3a:da:1c:88:
ad:f0:86:60:8f:f7:41:e8:6d:f8:27:68:ae:fc:77:df:6f:42:
83:54:6b:55:3e:7b:08:18:6d:a0:26:39:eb:d0:41:ca:e4:83:
da:82:da:ae:35:0f:e3:31:ea:25:10:e1:43:6d:c9:ef:49:7b:
20:d5:8d:08:a1:22:3e:13:d8:0f:52:fd:5b:07:59:cb:14:e5:
6f:80:33:de:fc:8c:ea:0d:b8:c6:d3:23:c6:fc:9a:56:bf:7e:
11:33:57:5e:07:90:77:7c:c6:fd:53:2b:0b:79:55:e2:8d:68:
a9:e3:05:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:18 2024 by rpki-client on console-ams.rpki-client.org