Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/7abdef-91ab-46fb-82e2-56085c9e522e/1/qCHbPqfKyCeLCzrQO97FsWSZbAY.roa
File: qCHbPqfKyCeLCzrQO97FsWSZbAY.roa (raw, json)
Hash identifier: l0lLH5BkQNYNT4DfwbkSnjEkmBcwC3OVlJG7gCCPi38=
Subject key identifier: A8:21:DB:3E:A7:CA:C8:27:8B:0B:3A:D0:3B:DE:C5:B1:64:99:6C:06
Certificate issuer: /CN=d8d6064186490d8cea2347ff7a3a82492d1f7977
Certificate serial: 01856EA6B217E97ADFC3FDD73A306E8EF723
Authority key identifier: D8:D6:06:41:86:49:0D:8C:EA:23:47:FF:7A:3A:82:49:2D:1F:79:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2NYGQYZJDYzqI0f_ejqCSS0feXc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/7abdef-91ab-46fb-82e2-56085c9e522e/1/qCHbPqfKyCeLCzrQO97FsWSZbAY.roa
Signing time: Sun 01 Jan 2023 18:44:56 +0000
ROA not before: Sun 01 Jan 2023 18:44:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42907
IP address blocks: 77.245.224.0/20 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:29:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:a6:b2:17:e9:7a:df:c3:fd:d7:3a:30:6e:8e:f7:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8d6064186490d8cea2347ff7a3a82492d1f7977
Validity
Not Before: Jan 1 18:44:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a821db3ea7cac8278b0b3ad03bdec5b164996c06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:63:3f:ed:d7:e1:ec:67:b1:65:32:99:39:a3:
4f:8e:60:90:ef:91:8e:20:d3:5f:30:52:55:63:03:
f2:ef:c1:90:b1:eb:9b:54:72:db:14:28:25:a9:e3:
30:44:dd:8b:c7:27:77:d6:4f:ff:34:08:49:5a:6c:
64:ec:fc:05:11:d9:85:dd:2c:e5:5e:f5:2f:2d:ea:
69:8e:f6:29:9c:f8:d7:06:8b:0d:26:dc:a0:fd:27:
6a:70:1f:cd:b6:d6:37:95:77:10:ef:ac:1d:7b:cf:
4b:0f:36:31:a3:6c:ba:be:85:28:44:98:20:b0:93:
8a:98:74:9f:04:b8:81:3e:9e:93:51:28:43:cc:dd:
f5:9d:41:35:f3:49:fa:82:f1:01:5d:08:9a:c3:39:
5a:33:ce:6a:a0:0f:02:15:da:13:26:f5:b1:bf:dc:
f9:c7:47:d8:44:4b:a8:32:65:dd:3b:2e:da:12:e5:
42:c9:a9:5f:9c:97:23:32:4e:c9:b1:8a:ff:20:a0:
91:7d:a6:1a:e2:dd:87:0a:bd:c2:9c:b2:ae:ad:d3:
a5:b5:4f:7d:01:46:9c:9a:4a:dc:bc:99:f8:92:31:
01:47:ef:3c:28:4c:9d:f9:5e:89:f4:12:1a:bd:4f:
9e:8d:40:47:5f:55:59:ba:9f:92:2b:16:ce:59:be:
95:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:21:DB:3E:A7:CA:C8:27:8B:0B:3A:D0:3B:DE:C5:B1:64:99:6C:06
X509v3 Authority Key Identifier:
keyid:D8:D6:06:41:86:49:0D:8C:EA:23:47:FF:7A:3A:82:49:2D:1F:79:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2NYGQYZJDYzqI0f_ejqCSS0feXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/7abdef-91ab-46fb-82e2-56085c9e522e/1/qCHbPqfKyCeLCzrQO97FsWSZbAY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/7abdef-91ab-46fb-82e2-56085c9e522e/1/2NYGQYZJDYzqI0f_ejqCSS0feXc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.245.224.0/20
Signature Algorithm: sha256WithRSAEncryption
3a:44:af:ce:1d:1c:8e:f1:8e:39:c8:8c:0d:c6:ba:e9:78:2f:
06:00:ff:34:fd:ea:c3:08:eb:69:17:31:d6:f4:23:b1:2c:05:
2d:37:6d:37:bb:14:d3:95:a1:57:d8:e1:8d:58:94:7e:0c:b6:
62:4c:00:f6:18:68:a9:55:8f:ff:1a:9e:b0:c7:a4:8f:d7:46:
f4:e3:80:6c:43:fc:75:7d:f2:5e:fe:4c:55:17:1d:86:24:70:
4e:04:75:f0:21:f9:a4:62:f3:84:4c:b5:ca:34:b7:01:4e:c6:
a7:9d:4e:35:db:a2:23:8d:61:84:fc:fb:ca:16:ff:36:d7:70:
77:91:1c:5a:91:68:06:4d:94:c5:a6:4f:57:bd:0d:79:37:25:
73:88:11:22:07:d2:07:50:12:19:30:70:ac:d3:47:3e:f4:1e:
c4:65:75:6e:1a:dd:9b:7f:52:df:15:bd:e1:6f:a8:7d:20:6c:
ad:69:cf:8d:7f:dc:d2:ee:be:fb:50:81:d3:ec:ac:7f:81:87:
d9:2b:47:7c:bb:ad:76:7a:a4:39:e4:5e:d1:92:42:30:50:17:
13:2b:5f:31:a5:cd:90:4b:10:59:50:9d:4a:6a:40:09:5a:e2:
27:aa:8c:15:e5:4d:f3:58:22:8b:0d:77:18:e5:ad:6c:25:65:
a1:7a:9d:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:41 2024 by rpki-client on console-ams.rpki-client.org