Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/_OVLBo8ay7vOnBQKpuYLmNgq_3M.roa
File: _OVLBo8ay7vOnBQKpuYLmNgq_3M.roa (raw, json)
Hash identifier: MmMGSzshht3MOoJaZBjyMhSpOn/mmSqHTaqgqc+W5Vo=
Subject key identifier: FC:E5:4B:06:8F:1A:CB:BB:CE:9C:14:0A:A6:E6:0B:98:D8:2A:FF:73
Certificate issuer: /CN=affa13f1ae053916280ec68ee1b0976f9ebd3ea8
Certificate serial: 01865F0E98643140885ED76503B1095C532D
Authority key identifier: AF:FA:13:F1:AE:05:39:16:28:0E:C6:8E:E1:B0:97:6F:9E:BD:3E:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r_oT8a4FORYoDsaO4bCXb569Pqg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/_OVLBo8ay7vOnBQKpuYLmNgq_3M.roa
Signing time: Fri 17 Feb 2023 11:07:17 +0000
ROA not before: Fri 17 Feb 2023 11:07:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201814
IP address blocks: 77.73.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:30:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:5f:0e:98:64:31:40:88:5e:d7:65:03:b1:09:5c:53:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=affa13f1ae053916280ec68ee1b0976f9ebd3ea8
Validity
Not Before: Feb 17 11:07:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fce54b068f1acbbbce9c140aa6e60b98d82aff73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:37:cf:9d:50:36:2d:fd:98:18:9c:3c:0a:c6:
69:7c:7f:c7:a2:f4:9d:ce:be:89:1f:9b:d9:ce:f3:
ff:54:5a:ec:31:bf:9a:0a:d3:e3:36:cc:d9:25:a3:
48:9c:ff:14:02:7f:dd:ca:73:28:be:27:04:f8:33:
f6:2e:06:aa:8c:b5:eb:18:da:b7:8f:90:24:46:04:
7c:fe:48:8d:57:a7:ee:67:89:d4:6d:0c:a2:e6:4f:
53:e8:f2:57:69:20:11:04:6c:b9:62:2b:39:bc:c7:
a0:2f:0d:84:1b:36:b5:97:b5:cb:0c:63:2c:12:4d:
fd:89:83:9b:25:40:b0:bd:6b:9c:59:c0:36:5b:97:
66:db:08:68:9d:5c:d5:e1:4a:dc:a8:da:72:60:71:
dc:19:fa:04:a0:32:61:b3:39:a7:c2:6a:c2:f4:58:
9b:e2:71:54:81:f9:b2:9b:6d:aa:42:82:aa:4f:fa:
2a:08:ab:54:65:b0:3d:8e:b0:33:20:ff:08:f0:5b:
49:6d:29:5a:3e:91:76:36:a3:b0:e6:ec:66:c0:3a:
35:49:77:4b:eb:3c:5e:09:00:52:fb:48:97:e9:2d:
0e:7c:f4:aa:a4:25:69:3d:db:ca:ce:f3:39:3e:b2:
89:12:db:62:5c:f8:22:73:14:e7:4d:3d:5e:ad:24:
34:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:E5:4B:06:8F:1A:CB:BB:CE:9C:14:0A:A6:E6:0B:98:D8:2A:FF:73
X509v3 Authority Key Identifier:
keyid:AF:FA:13:F1:AE:05:39:16:28:0E:C6:8E:E1:B0:97:6F:9E:BD:3E:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r_oT8a4FORYoDsaO4bCXb569Pqg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/_OVLBo8ay7vOnBQKpuYLmNgq_3M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/r_oT8a4FORYoDsaO4bCXb569Pqg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.73.129.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:22:4e:a3:7a:ab:64:00:66:2d:1a:77:20:2d:68:71:9c:54:
f3:10:ac:04:de:d8:f3:0a:50:63:57:ce:00:5c:3b:39:35:5c:
98:54:a1:d0:f4:08:5f:3a:44:fb:c9:0d:a5:9e:38:f0:13:f6:
1e:9e:8b:0f:ad:8b:08:9a:a1:bb:89:20:ff:c7:ad:e2:0d:60:
4d:20:c4:98:f9:2a:68:2e:f2:55:64:5b:e5:8f:61:94:24:7e:
5b:0d:99:4b:e9:c1:9b:ef:7e:14:c3:a1:31:8c:17:f6:cd:6e:
04:17:7d:3c:c5:39:0b:0b:ee:e5:99:b7:f4:ff:2b:e6:e7:3e:
f6:ba:8c:f5:25:92:41:4f:e7:0d:5a:fa:40:25:ee:f1:87:b4:
5d:d4:b1:c3:93:fa:71:01:46:cc:28:b0:8e:4e:b0:f6:3c:81:
14:67:99:13:33:b4:b9:95:b2:15:04:6a:d3:85:84:79:33:1c:
2c:a5:fb:6a:88:f5:07:cf:a4:a0:a4:6f:b1:ff:a9:85:6c:8c:
37:b0:fb:bb:28:95:ec:bb:fd:48:da:63:c9:f1:66:1a:64:d8:
3e:25:de:a5:c4:07:54:03:c9:16:83:3e:28:db:4f:97:7a:9c:
85:61:34:47:ac:de:19:32:25:25:d5:11:88:f3:76:ed:fd:ee:
4e:9a:a6:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:23 2024 by rpki-client on console-fra.rpki-client.org