Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/J9ckjHuwcrnmK9M9TQyw989YndE.roa
File: J9ckjHuwcrnmK9M9TQyw989YndE.roa (raw, json)
Hash identifier: 9QwGB0wN/8HXWACF8gwZiK11IHDWkjGrvlKLliXIrh0=
Subject key identifier: 27:D7:24:8C:7B:B0:72:B9:E6:2B:D3:3D:4D:0C:B0:F7:CF:58:9D:D1
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 018CAD870D0572771C803529C455F6D83440
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/J9ckjHuwcrnmK9M9TQyw989YndE.roa
Signing time: Wed 27 Dec 2023 23:05:58 +0000
ROA not before: Wed 27 Dec 2023 23:05:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44714
IP address blocks: 77.83.37.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ad:87:0d:05:72:77:1c:80:35:29:c4:55:f6:d8:34:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: Dec 27 23:05:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=27d7248c7bb072b9e62bd33d4d0cb0f7cf589dd1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:7d:27:70:1a:de:e8:fe:3b:e2:17:de:68:bb:
d1:12:a2:7b:6f:8a:be:79:51:b7:4d:6d:cc:d1:28:
07:69:27:e0:0b:c0:e2:38:a3:7f:26:4f:4c:af:39:
22:97:b5:6d:1d:2d:25:7d:c7:1c:94:1b:27:14:3e:
58:37:64:e3:97:36:ab:87:6d:7c:eb:7a:25:fa:3e:
5d:00:6f:0b:2a:2b:fd:6c:ba:11:90:28:42:ec:bc:
0c:1b:75:b2:90:6b:6a:f6:e1:c0:e1:23:03:2b:6a:
7a:51:25:78:e8:e7:f8:75:ad:54:d6:db:a1:ee:2d:
9b:f2:61:bb:92:e1:2f:10:d9:79:28:f7:10:48:63:
35:a7:b9:ef:cd:95:f2:f7:59:a7:ad:51:ce:8a:73:
fc:46:46:fc:57:4e:29:10:8e:55:bd:24:6b:26:52:
e2:9e:af:bb:c7:13:15:a8:75:f9:aa:72:0c:d5:cc:
d1:b0:73:17:c8:4d:2b:c2:9a:f1:e2:61:e1:33:bd:
f9:12:d7:ce:8f:f8:a5:fd:4e:fb:9d:7d:a6:e3:ff:
b1:b7:81:fe:e0:23:2c:4f:01:35:86:3d:a4:e4:5f:
85:6c:92:0b:78:06:a9:6a:f0:60:31:8e:28:ba:a0:
da:5b:22:80:94:d5:4a:14:09:42:20:d6:e3:3c:20:
17:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:D7:24:8C:7B:B0:72:B9:E6:2B:D3:3D:4D:0C:B0:F7:CF:58:9D:D1
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/J9ckjHuwcrnmK9M9TQyw989YndE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.83.37.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:e0:3d:e3:18:1d:16:72:ed:2b:18:db:26:6e:e2:55:0d:29:
b9:75:f6:de:3b:49:06:9a:8d:d2:cd:95:5f:10:82:9e:ef:fb:
14:fb:bc:ed:24:c0:d4:76:e3:91:ad:6a:73:09:b1:61:ec:f9:
4f:b0:80:83:8f:04:93:73:1a:3a:36:54:8d:2e:c2:2e:61:3f:
14:99:24:a4:6c:5f:9f:69:3e:97:db:bb:d7:1e:e7:c9:b9:fe:
23:e4:25:1d:fa:ae:95:c6:78:ec:2a:9c:cf:61:a5:75:2e:8f:
27:a7:aa:3c:06:af:9e:d9:5e:f8:e0:4a:02:d9:d9:1b:ac:80:
21:8f:51:d6:07:b1:b2:8e:82:36:10:ef:1b:3c:c6:a3:04:b3:
44:24:f3:eb:d2:40:da:29:67:2e:bd:a2:f4:6a:be:e4:05:cf:
52:c8:42:69:4e:d6:5f:bf:5b:5d:d2:48:7e:44:45:d2:be:49:
96:b4:d4:3c:d3:dd:46:da:56:cd:31:c5:ed:8f:9d:21:cd:51:
c3:55:8f:2d:23:43:6d:68:e4:34:c5:39:cc:87:e7:0a:47:7f:
30:73:2e:2e:54:a0:ed:68:6f:3c:3d:db:71:68:69:ab:76:53:
e7:24:b0:53:c6:6d:f0:8b:c0:3e:ae:d3:15:24:fa:b7:56:05:
f9:e5:24:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:49:45 2024 by rpki-client on console-fra.rpki-client.org