Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/1n-9rMZkEttVHZxvREihuqk5KSs.roa
File: 1n-9rMZkEttVHZxvREihuqk5KSs.roa (raw, json)
Hash identifier: nK65cbhvax1JZ2TL6Afn7xmDovjH6F8R3wFJvzLGLPU=
Subject key identifier: D6:7F:BD:AC:C6:64:12:DB:55:1D:9C:6F:44:48:A1:BA:A9:39:29:2B
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 018A06D1C35936F4D5A7B2BD91234D26022A
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/1n-9rMZkEttVHZxvREihuqk5KSs.roa
Signing time: Fri 18 Aug 2023 04:05:24 +0000
ROA not before: Fri 18 Aug 2023 04:05:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 77.83.37.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 18 Aug 2023 07:45:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:06:d1:c3:59:36:f4:d5:a7:b2:bd:91:23:4d:26:02:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: Aug 18 04:05:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d67fbdacc66412db551d9c6f4448a1baa939292b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:96:8e:32:63:f2:37:eb:28:7c:1a:21:28:82:
f6:df:b4:82:8d:cc:a4:36:d2:2c:95:cb:21:2b:5f:
88:3a:e6:7e:31:28:61:b3:15:e2:09:0b:fd:9a:6a:
1e:99:66:18:20:46:ca:05:df:fe:cf:89:58:31:67:
29:24:c7:c4:c7:d1:00:20:25:03:be:f7:23:34:f6:
b8:b4:f1:32:63:3d:31:16:80:56:36:c9:05:af:1c:
d0:9f:77:a0:b3:70:cc:26:e4:23:c1:4a:df:d2:0e:
3e:41:70:93:3f:bb:c2:98:56:bf:37:ba:07:6c:32:
41:39:4a:dc:ec:f3:9b:07:54:63:98:ff:fa:f2:7d:
7a:2d:37:6a:2e:83:a2:b2:00:07:7d:44:79:17:11:
7e:6b:23:f2:4a:28:26:14:ec:88:af:f2:9b:13:8d:
4b:62:a3:e4:45:cf:57:82:62:e1:10:f5:70:55:83:
1d:da:55:34:52:f2:4b:9a:79:08:0b:f7:cc:c7:3b:
9e:55:de:9d:90:a5:19:bc:bf:a3:29:98:d0:18:19:
d3:44:a9:3d:6e:b4:b0:09:19:4f:1b:79:ae:36:2f:
94:1e:ed:9e:9f:18:cc:0b:a2:fa:ea:4f:5d:72:10:
f8:86:e4:23:ab:13:ef:8f:49:17:ac:c9:c2:97:14:
ce:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:7F:BD:AC:C6:64:12:DB:55:1D:9C:6F:44:48:A1:BA:A9:39:29:2B
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/1n-9rMZkEttVHZxvREihuqk5KSs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.83.37.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:63:13:db:3c:c3:25:2a:dc:2f:84:e0:5b:56:7f:9f:40:e5:
8a:97:fd:a6:92:41:a5:fe:9e:40:6d:1d:ac:ef:28:43:71:e9:
bb:a5:f7:33:9d:7e:93:21:00:d6:96:d1:a8:e5:3f:d8:0d:5a:
35:4f:7f:7e:55:97:71:d3:80:69:44:dc:71:f9:fe:fd:ac:39:
58:e3:82:98:a5:a8:05:0f:04:6c:a1:83:19:7e:de:94:7e:30:
93:0e:0d:f6:3a:f7:d9:97:cc:e7:f3:2d:06:31:1d:cb:c8:90:
5f:a0:a2:e7:e7:ff:52:93:13:66:56:5e:93:82:5d:34:f3:f0:
d0:25:3a:60:a5:cf:70:f4:60:ee:4f:70:78:97:02:d7:e0:4b:
11:5c:fd:d3:97:c6:04:a0:14:55:10:6f:e8:e1:d5:24:c8:13:
42:62:af:3c:a7:f5:a5:93:04:5b:b3:0b:a4:fa:1c:44:e7:17:
2a:f4:23:1f:fc:44:60:23:dc:49:9c:cd:8c:36:db:60:59:7e:
9a:5e:aa:e2:72:30:b5:78:db:08:4e:6d:e5:c9:61:27:40:09:
b8:4f:9e:f6:ff:a8:ce:12:23:2d:9c:45:4f:fc:21:4a:dc:90:
2b:6b:26:6b:24:3b:f2:3c:5d:e3:dd:61:10:8b:c8:ac:38:7c:
f2:26:59:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:17 2024 by rpki-client on console-ams.rpki-client.org