Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/fe0306-af84-4e8e-8885-b84a9819ead6/1/mEZk-nR54gKAFeJhWXUAJ-S5Bf8.roa
File: mEZk-nR54gKAFeJhWXUAJ-S5Bf8.roa (raw, json)
Hash identifier: hmLtAfp6XHZQtA6mMzdBxIdqcrpaG02OPD+qmE394pc=
Subject key identifier: 98:46:64:FA:74:79:E2:02:80:15:E2:61:59:75:00:27:E4:B9:05:FF
Certificate issuer: /CN=da4a3ec07b97858e6834a5a1f88eb8fe31bf7b20
Certificate serial: 018B6B10F81861DBC2F7239E22DFF6A51C11
Authority key identifier: DA:4A:3E:C0:7B:97:85:8E:68:34:A5:A1:F8:8E:B8:FE:31:BF:7B:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2ko-wHuXhY5oNKWh-I64_jG_eyA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/fe0306-af84-4e8e-8885-b84a9819ead6/1/mEZk-nR54gKAFeJhWXUAJ-S5Bf8.roa
Signing time: Thu 26 Oct 2023 08:19:15 +0000
ROA not before: Thu 26 Oct 2023 08:19:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42838
IP address blocks: 77.87.16.0/21 maxlen: 21
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:6b:10:f8:18:61:db:c2:f7:23:9e:22:df:f6:a5:1c:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da4a3ec07b97858e6834a5a1f88eb8fe31bf7b20
Validity
Not Before: Oct 26 08:19:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=984664fa7479e2028015e26159750027e4b905ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:e5:c0:a0:ab:dc:86:9a:69:b5:33:57:15:37:
0a:3c:54:ca:6e:0f:99:2e:fc:b4:e4:35:86:e8:cd:
f3:cd:55:61:c5:d8:8f:9a:a6:b5:dc:16:8e:14:03:
df:6e:4a:a2:26:5e:75:01:77:6b:8b:8a:11:5d:1c:
d5:a5:f7:90:84:2a:1b:39:60:18:2a:2d:b6:f0:9f:
9a:71:87:c0:47:b0:17:70:d6:29:28:be:f0:b2:8e:
ef:67:bb:43:78:28:3c:80:ed:4d:4a:ba:18:4c:7a:
00:71:43:22:89:ab:4f:e2:1d:6e:16:31:89:f3:87:
fc:f0:4d:a8:23:39:02:e1:f3:b2:07:bd:9a:f6:d9:
6b:ff:5a:e5:f7:6c:37:d7:6e:02:58:e2:28:1d:15:
d0:ca:43:02:43:1b:15:3c:1e:48:4f:c4:60:07:94:
e3:07:3e:38:bf:8d:7a:e3:2a:30:b0:55:a1:f9:3f:
b7:8e:85:84:12:19:30:cc:76:13:5b:c1:13:e3:e0:
55:59:2e:ae:1a:8e:2c:9d:cc:b8:d2:41:17:8d:7b:
37:03:31:f3:80:74:bd:2d:81:49:be:03:16:63:ca:
37:d5:19:5a:4f:68:2b:03:00:90:e3:e3:3b:6c:7a:
f7:3c:b6:99:d4:af:b0:ba:f6:03:33:47:9c:33:f3:
02:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:46:64:FA:74:79:E2:02:80:15:E2:61:59:75:00:27:E4:B9:05:FF
X509v3 Authority Key Identifier:
keyid:DA:4A:3E:C0:7B:97:85:8E:68:34:A5:A1:F8:8E:B8:FE:31:BF:7B:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2ko-wHuXhY5oNKWh-I64_jG_eyA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/fe0306-af84-4e8e-8885-b84a9819ead6/1/mEZk-nR54gKAFeJhWXUAJ-S5Bf8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/fe0306-af84-4e8e-8885-b84a9819ead6/1/2ko-wHuXhY5oNKWh-I64_jG_eyA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.87.16.0/21
Signature Algorithm: sha256WithRSAEncryption
87:fa:58:cc:6f:3b:3c:04:88:a2:01:95:55:e7:19:aa:b8:a6:
9b:d9:cd:46:6f:03:ba:98:3d:83:5e:ff:74:09:71:db:be:36:
1e:f5:b5:cd:3b:90:fd:74:5c:3b:d1:e1:a4:fd:8c:3e:c4:47:
f5:f9:29:3a:03:75:3b:8a:c6:7e:6b:3a:fd:73:aa:78:f2:a5:
ba:5b:d4:1a:0b:84:22:5e:6e:08:df:a9:be:66:fd:03:04:31:
50:55:6d:28:f0:94:2c:e9:0b:50:e9:5e:29:73:9f:98:41:71:
40:3c:8e:9b:e7:0e:a0:c5:1b:a5:b1:d6:c1:7d:69:1f:96:96:
43:4d:bd:f7:7c:6e:db:c0:a7:fe:f4:75:b0:d9:28:48:c0:c5:
3e:e8:01:ed:dc:c7:b3:e8:76:77:cd:49:52:16:e7:3d:c0:7c:
b2:47:72:1c:46:19:3b:e4:a5:0b:4d:f5:c6:ba:a0:24:66:90:
4e:f5:ff:8b:6c:74:a9:ff:86:37:64:37:a0:23:3a:a9:6c:97:
74:a2:da:3a:fc:2c:70:02:0d:85:db:2d:8a:9b:54:ff:ee:bb:
75:60:b3:43:a6:f0:6c:37:d4:a1:c0:bb:d0:e9:ee:29:81:ba:
a3:5f:76:de:3f:19:76:f5:c6:0e:54:af:6d:1e:b8:1c:72:ef:
f2:b9:4e:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:19 2024 by rpki-client on console-ams.rpki-client.org