Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/ad7662-73ff-4594-8e30-59a7efd384c0/1/jfYDFu70KXKCLkaAGCQulJuyea8.roa
File: jfYDFu70KXKCLkaAGCQulJuyea8.roa (raw, json)
Hash identifier: Q+auscLvgVC+hG2ezers/qZ+CwvZ2WPBhfSnd0Bzn6Q=
Subject key identifier: 8D:F6:03:16:EE:F4:29:72:82:2E:46:80:18:24:2E:94:9B:B2:79:AF
Certificate issuer: /CN=5393ab93e85701a73ef4d5e00ed6eb9893937394
Certificate serial: 018572A7E2ACD284412DCEAEBC2B589EF526
Authority key identifier: 53:93:AB:93:E8:57:01:A7:3E:F4:D5:E0:0E:D6:EB:98:93:93:73:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U5Ork-hXAac-9NXgDtbrmJOTc5Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/ad7662-73ff-4594-8e30-59a7efd384c0/1/jfYDFu70KXKCLkaAGCQulJuyea8.roa
Signing time: Mon 02 Jan 2023 13:24:43 +0000
ROA not before: Mon 02 Jan 2023 13:24:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31638
IP address blocks: 185.77.161.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:31:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:a7:e2:ac:d2:84:41:2d:ce:ae:bc:2b:58:9e:f5:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5393ab93e85701a73ef4d5e00ed6eb9893937394
Validity
Not Before: Jan 2 13:24:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8df60316eef42972822e468018242e949bb279af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:53:eb:83:65:11:64:d3:86:7d:de:5c:8d:29:
7c:b5:9c:ba:f7:68:28:3b:c4:06:82:b0:77:0a:d5:
ff:71:ea:7d:9d:38:c3:65:cb:aa:1e:c5:7f:0b:48:
19:6a:27:30:e7:8a:bf:90:e6:a1:0a:1f:0a:6e:93:
e3:8d:61:fd:f3:28:77:31:ca:45:12:3b:3e:90:dd:
72:16:86:e3:b6:d5:15:ff:05:26:f1:7e:67:51:e4:
43:98:24:4f:e0:6b:87:a3:cc:8a:d3:96:69:ec:85:
e0:21:8a:46:04:19:8e:4c:86:01:b3:65:9a:41:92:
e6:57:a3:75:d2:a5:ab:9b:65:08:84:e2:83:10:67:
82:20:93:4d:e9:a0:7b:f4:1d:9e:1e:9d:72:dd:91:
4a:92:8e:63:8d:ab:0b:13:af:60:65:21:a4:3a:3c:
33:f8:39:9d:d4:c3:52:7b:47:6c:bf:3f:b2:d8:d9:
a5:8f:05:db:71:fd:be:05:07:df:9a:19:b3:57:9a:
75:b7:04:52:dc:e5:dd:36:a5:1f:ee:f8:ca:bc:db:
0b:ab:89:7e:88:84:c1:45:96:ed:7c:46:0f:73:da:
cf:c2:08:87:02:6b:36:24:62:c1:3a:90:dc:04:53:
cb:1d:2a:98:2a:4c:e3:17:ac:d3:2f:ae:56:a0:c2:
c4:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:F6:03:16:EE:F4:29:72:82:2E:46:80:18:24:2E:94:9B:B2:79:AF
X509v3 Authority Key Identifier:
keyid:53:93:AB:93:E8:57:01:A7:3E:F4:D5:E0:0E:D6:EB:98:93:93:73:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U5Ork-hXAac-9NXgDtbrmJOTc5Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/ad7662-73ff-4594-8e30-59a7efd384c0/1/jfYDFu70KXKCLkaAGCQulJuyea8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/ad7662-73ff-4594-8e30-59a7efd384c0/1/U5Ork-hXAac-9NXgDtbrmJOTc5Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.77.161.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:b0:e3:e8:62:37:fc:6e:29:be:12:85:fc:d2:0c:dd:7d:14:
00:72:69:f0:a8:0f:1f:f4:7c:c6:b3:bf:e2:b5:69:e5:87:7a:
34:eb:c7:4a:26:a7:08:87:f8:bd:3d:71:eb:dd:ec:a3:34:48:
c4:d1:5a:19:4f:02:29:8d:ca:98:6b:69:71:69:f4:de:75:26:
b9:fb:b4:41:98:a0:8f:68:9b:29:e0:f7:2e:60:0f:34:50:ac:
e8:19:74:04:57:3d:e4:07:e9:71:1c:8c:9d:58:6e:cd:71:be:
ff:78:e1:87:20:53:fb:63:57:b5:cf:28:19:63:b0:e2:dd:5b:
04:12:6a:40:11:07:6f:33:78:38:df:ad:ee:a5:95:3d:c4:c1:
e8:3e:e9:b9:09:71:ad:ca:c0:2f:d3:8a:f3:85:fd:2d:9e:a3:
c7:d9:56:79:01:f1:5d:0b:7b:f8:57:5d:64:57:7f:d5:82:0a:
1e:99:ee:9b:7d:a1:d0:37:ad:d4:99:b2:70:ff:f3:84:33:98:
16:da:4e:2c:a0:36:27:e3:1f:e5:7b:32:b8:4f:ff:f0:9e:97:
d7:8f:aa:e5:94:df:23:d6:fa:79:62:37:f7:40:b9:8c:40:f2:
ab:86:d6:02:2a:58:ed:d0:b1:31:bd:d4:0d:05:84:8e:3d:52:
27:2b:2a:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:28 2024 by rpki-client on console-ams.rpki-client.org