Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/051035-200d-41e8-adf1-d33f08f3a48d/1/bi9NvLGVR2lm4RPlkulF3XsIf-8.roa
File: bi9NvLGVR2lm4RPlkulF3XsIf-8.roa (raw, json)
Hash identifier: 8TtIYzetqI5PagEgWXgxpDTwfP/y5hQGGxm/RLEvh6I=
Subject key identifier: 6E:2F:4D:BC:B1:95:47:69:66:E1:13:E5:92:E9:45:DD:7B:08:7F:EF
Certificate issuer: /CN=e2110acce33ac85011ca8c22d2001666e45b9377
Certificate serial: 01856B37D547A1A8994B53CFE8ED70F32C65
Authority key identifier: E2:11:0A:CC:E3:3A:C8:50:11:CA:8C:22:D2:00:16:66:E4:5B:93:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4hEKzOM6yFARyowi0gAWZuRbk3c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/051035-200d-41e8-adf1-d33f08f3a48d/1/bi9NvLGVR2lm4RPlkulF3XsIf-8.roa
Signing time: Sun 01 Jan 2023 02:44:59 +0000
ROA not before: Sun 01 Jan 2023 02:44:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 28747
IP address blocks: 77.241.95.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:37:d5:47:a1:a8:99:4b:53:cf:e8:ed:70:f3:2c:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2110acce33ac85011ca8c22d2001666e45b9377
Validity
Not Before: Jan 1 02:44:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6e2f4dbcb195476966e113e592e945dd7b087fef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:7c:b0:0b:2c:4c:a5:df:f9:47:82:51:10:f4:
50:8f:d6:5d:f4:1a:f6:13:1f:ff:82:c8:73:2e:6e:
71:db:4c:2b:07:de:86:87:38:a7:ae:c6:cc:67:86:
2f:c7:6b:97:fa:5e:77:51:e2:8f:53:14:5a:db:46:
8e:b6:91:b9:43:1a:9e:2b:23:2d:db:c9:bb:14:66:
98:fc:a6:81:9c:f3:ea:f5:64:31:63:a0:ce:1f:eb:
d9:4f:80:62:93:45:e6:a9:43:86:67:4b:3c:5f:01:
1c:54:ee:05:22:bd:6c:f9:37:23:95:3d:6c:cf:16:
19:3f:06:2e:35:2d:11:6e:ea:f7:b5:2b:0f:2e:2a:
7d:31:8f:e2:4a:41:83:53:fd:17:c0:b6:51:ff:81:
6c:85:ed:94:9b:74:37:57:14:fb:03:18:e3:68:6a:
c1:80:7d:aa:9d:38:26:ce:6c:60:c8:51:6f:f8:32:
0e:de:af:8b:f4:aa:15:d6:ad:a3:52:d8:f0:7c:80:
ba:b0:71:c8:b0:1f:19:94:cb:62:eb:3c:f8:3f:d2:
95:f2:12:fe:09:f9:5c:07:78:aa:e4:e0:e2:c9:75:
2e:82:a8:14:15:81:1a:71:6f:d8:2f:be:86:9b:88:
36:b4:f0:39:0b:33:61:0b:ac:f9:8f:71:75:a6:53:
be:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:2F:4D:BC:B1:95:47:69:66:E1:13:E5:92:E9:45:DD:7B:08:7F:EF
X509v3 Authority Key Identifier:
keyid:E2:11:0A:CC:E3:3A:C8:50:11:CA:8C:22:D2:00:16:66:E4:5B:93:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4hEKzOM6yFARyowi0gAWZuRbk3c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/051035-200d-41e8-adf1-d33f08f3a48d/1/bi9NvLGVR2lm4RPlkulF3XsIf-8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/051035-200d-41e8-adf1-d33f08f3a48d/1/4hEKzOM6yFARyowi0gAWZuRbk3c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.241.95.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:b3:86:b6:01:1a:e1:30:25:f2:08:7c:a3:ea:19:fb:ea:cd:
e0:ed:2f:3a:3b:e9:35:47:21:e9:b1:c9:12:d1:cf:1c:58:39:
cc:21:22:89:f2:b1:fa:e2:a4:58:2a:42:94:fa:45:73:87:df:
e4:a2:b9:0d:c9:7b:39:85:a3:f8:f8:a6:74:ca:8c:93:a5:35:
4b:fd:da:99:c1:43:da:13:cd:33:ba:70:b2:19:27:0a:9e:a3:
41:c4:0f:37:2e:7d:91:60:73:9c:21:66:bc:59:cc:87:92:a2:
1c:2c:87:4e:a0:5a:b7:8b:b4:91:12:ad:bb:d0:d9:3e:38:32:
43:f8:b2:17:de:30:20:d4:40:eb:d9:9a:cd:d4:de:9a:44:4b:
da:b4:c2:4b:70:24:50:eb:ff:a7:fe:5d:b1:e4:f8:87:ee:45:
dd:e1:21:65:7a:a5:da:9c:75:19:8a:fc:8c:12:17:b9:0a:b1:
bb:72:c0:0e:c9:00:38:e4:0b:be:c2:d0:c6:8b:14:fe:79:c2:
37:07:b3:9b:c9:c2:21:53:65:da:c3:0f:c5:65:67:7d:0c:76:
a8:e9:f2:a7:c7:b6:7c:7f:48:d0:c1:c5:a5:14:e1:e7:b4:1a:
97:a2:77:b9:99:2f:dc:2a:8b:c5:f8:37:3b:c3:b1:99:fc:98:
46:df:69:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 13:10:42 2024 by rpki-client on console-ams.rpki-client.org