Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/ELdTz7sHZWat48HYIfMwSKUh8c8.roa
File: ELdTz7sHZWat48HYIfMwSKUh8c8.roa (raw, json)
Hash identifier: pIDGlj4bWiZiwqvfAk3f6OwalmeG21WZBd+zDC84+y8=
Subject key identifier: 10:B7:53:CF:BB:07:65:66:AD:E3:C1:D8:21:F3:30:48:A5:21:F1:CF
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 01856CE65944E1F8C70E2A01DAEC348909F9
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/ELdTz7sHZWat48HYIfMwSKUh8c8.roa
Signing time: Sun 01 Jan 2023 10:35:13 +0000
ROA not before: Sun 01 Jan 2023 10:35:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43202
IP address blocks: 77.85.174.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:e6:59:44:e1:f8:c7:0e:2a:01:da:ec:34:89:09:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: Jan 1 10:35:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=10b753cfbb076566ade3c1d821f33048a521f1cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:09:70:86:13:fe:cf:b3:6f:72:5c:eb:29:09:
a9:47:97:ee:28:38:76:34:9f:78:41:ad:06:7e:9e:
7f:2b:60:94:d6:88:79:b2:77:ca:9c:bd:49:e7:f2:
90:7d:a9:fd:1f:ed:56:59:cd:8c:93:db:23:12:b1:
b2:d0:b7:99:f3:94:fb:90:a4:a8:6b:36:ce:49:75:
7e:37:6e:17:05:c7:5b:47:26:f6:23:25:42:07:ff:
72:2b:cb:0c:53:6f:ed:9f:2b:e1:6b:9b:93:da:44:
5c:eb:dd:73:73:eb:5b:79:2c:f4:18:6a:5b:fe:df:
55:21:c7:0d:97:ba:2c:4e:eb:6c:67:67:77:7b:fc:
0b:be:0a:45:22:5b:e1:3b:a6:07:16:45:82:88:54:
de:65:39:47:9e:be:7a:80:57:9e:84:37:91:2b:19:
57:63:f3:bc:78:d1:7d:08:07:b0:00:af:53:69:7c:
ed:5c:65:8a:ea:bc:76:31:1e:eb:09:40:85:29:65:
5c:50:a8:c9:b7:70:1e:18:9f:c5:50:80:66:88:6d:
ef:44:c1:e6:2e:70:3b:87:bf:dc:0d:74:f6:95:50:
a4:31:78:f6:db:6e:43:ce:f1:11:cd:7e:0e:b6:a5:
73:dc:66:26:42:dc:6d:f2:77:cb:c7:5b:6b:5a:73:
8e:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:B7:53:CF:BB:07:65:66:AD:E3:C1:D8:21:F3:30:48:A5:21:F1:CF
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/ELdTz7sHZWat48HYIfMwSKUh8c8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.85.174.0/24
Signature Algorithm: sha256WithRSAEncryption
65:bb:06:2b:1b:e6:d5:6e:03:99:68:2d:f0:7c:fd:9b:97:65:
08:e8:cd:61:18:f7:89:18:f8:e6:52:4b:bf:f2:8d:97:8e:f8:
bb:6a:60:67:2c:f3:e3:2b:0e:b6:1d:3c:c6:32:a3:43:3d:6b:
e0:b7:17:91:4f:85:99:86:7f:c4:df:ad:ea:68:d2:fe:70:84:
a9:2f:86:12:fb:43:d0:e5:0f:fd:e3:92:bd:cf:27:04:00:ac:
c9:0b:5c:33:9c:8f:1b:81:f7:98:ca:d3:fa:90:e2:6b:10:09:
6f:0e:89:79:fb:c3:15:c0:b6:3f:44:f4:71:00:86:90:e7:6d:
05:d5:23:fc:1c:a5:08:44:8c:0a:5f:b2:f3:5d:90:dd:38:26:
36:49:38:42:0d:3f:95:17:dd:a4:24:57:77:72:3f:65:6f:dd:
45:4f:bc:f7:38:c0:d2:83:d4:8c:ce:f1:50:ca:42:3e:d6:4e:
d1:92:50:d1:8b:30:23:0d:d6:32:43:06:4c:d9:b5:65:0b:95:
3b:7c:c9:ed:07:91:92:92:31:54:fc:ca:9d:17:1b:fb:22:8a:
81:c9:0a:ee:9c:5a:97:03:92:df:ae:9d:71:36:d5:94:0d:de:
84:d3:4e:d8:63:6d:a5:50:c6:bc:07:ff:9b:ea:2f:cb:fa:b3:
40:ae:54:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:04 2024 by rpki-client on console-fra.rpki-client.org