Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/7ZFtspCsbR4d903CcMgnPanTr8M.roa
File: 7ZFtspCsbR4d903CcMgnPanTr8M.roa (raw, json)
Hash identifier: t4VyQ9t7XdTVdaeQHuFxMywR/4q5JgCuYMDJK1hSpXA=
Subject key identifier: ED:91:6D:B2:90:AC:6D:1E:1D:F7:4D:C2:70:C8:27:3D:A9:D3:AF:C3
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 01856CE66E0EC8CEC53F2A2C75A67708B8AB
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/7ZFtspCsbR4d903CcMgnPanTr8M.roa
Signing time: Sun 01 Jan 2023 10:35:18 +0000
ROA not before: Sun 01 Jan 2023 10:35:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203390
IP address blocks: 77.85.222.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:e6:6e:0e:c8:ce:c5:3f:2a:2c:75:a6:77:08:b8:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: Jan 1 10:35:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ed916db290ac6d1e1df74dc270c8273da9d3afc3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:b6:25:a3:db:d5:ab:ab:44:2f:ed:ef:b1:29:
10:b8:97:ba:b9:1b:f0:fe:4d:44:4f:c4:e0:df:75:
31:2f:a1:0a:38:e1:7b:9a:6c:ed:da:9e:1a:0f:f0:
d6:50:01:95:06:9e:ab:60:22:28:8f:10:9e:14:dc:
71:b8:8e:61:fe:5e:70:02:dd:57:2b:e8:44:df:9c:
5d:7f:ca:c4:a6:a4:66:31:8c:1a:52:4c:95:45:d4:
7b:f1:a4:e3:fc:54:db:05:4b:cb:cc:49:15:0d:76:
56:73:f6:e1:52:a9:8e:99:17:0a:7e:cd:5e:ab:99:
71:cd:f0:25:76:ee:69:d8:92:9e:fb:fa:34:58:a8:
a9:39:b1:ab:b3:53:01:be:da:14:c9:f0:75:2d:42:
ea:81:ab:c2:50:47:a0:15:9c:1e:33:c6:e4:d4:5d:
fe:06:8c:f7:84:b1:6e:57:ac:d4:21:0b:29:dc:b1:
a0:20:f5:2a:3e:e7:3e:1b:48:96:a2:62:8a:c4:5c:
b9:8d:82:70:7b:b0:a4:99:1f:c8:06:1f:e3:45:70:
a7:d6:f3:cb:23:34:ba:8d:7c:17:ff:ca:5c:e2:e9:
5f:47:7a:07:36:ae:7f:1f:d3:da:06:77:28:21:a0:
29:13:45:dc:f7:af:7c:3a:cf:bb:23:a7:2c:6f:da:
71:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:91:6D:B2:90:AC:6D:1E:1D:F7:4D:C2:70:C8:27:3D:A9:D3:AF:C3
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/7ZFtspCsbR4d903CcMgnPanTr8M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.85.222.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:2a:cd:05:a3:0f:0c:74:98:a5:ec:a5:c6:ef:c6:b6:6f:9e:
a4:7c:07:b6:98:b2:2a:16:07:db:6b:4e:f1:e2:e8:38:e2:70:
77:60:bc:a3:3f:85:47:f4:dc:04:77:8f:a3:a0:88:2e:d5:a5:
0e:89:b9:b0:1f:68:8b:6e:96:e7:b1:03:6a:05:99:9e:98:96:
df:ee:e8:fb:1d:61:66:66:63:c3:86:8c:80:74:39:c6:c2:ee:
7b:27:10:41:bd:e4:1a:ab:0e:1f:bc:3a:70:41:45:58:59:ae:
e9:00:27:2d:60:d0:9d:d8:0f:82:2d:69:27:60:fe:ea:82:58:
0c:c8:83:e0:d5:4b:aa:df:f1:90:7b:9a:31:c2:1c:07:b3:10:
c4:e7:eb:52:c3:84:f2:b8:f0:41:b7:cc:db:e0:94:ca:d9:69:
8a:96:37:08:61:3b:67:3c:45:ff:6a:7f:08:9f:b2:be:42:19:
3c:e8:4e:39:85:58:2b:b7:77:ec:68:ed:e7:77:ac:fa:6c:90:
0e:a4:8c:de:0b:a7:d7:c3:59:1a:83:7c:d1:3d:e0:32:6f:20:
cd:45:fc:30:5c:7d:ff:ad:98:29:c2:09:d1:79:46:6e:a5:1d:
52:ed:fd:67:af:36:9a:c6:41:4a:82:2a:4b:d9:62:f1:fc:77:
21:8b:f1:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:04 2024 by rpki-client on console-fra.rpki-client.org