Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/536758-6ba5-4fce-b774-5c45a4ac2f46/1/6bgkm9sq2cnahzgOfgezWqLeuBg.roa
File: 6bgkm9sq2cnahzgOfgezWqLeuBg.roa (raw, json)
Hash identifier: 8yzP42KOSsBA8cuPeoWJm5gimx/ohOXSERhSnTvJSYk=
Subject key identifier: E9:B8:24:9B:DB:2A:D9:C9:DA:87:38:0E:7E:07:B3:5A:A2:DE:B8:18
Certificate issuer: /CN=7630eee64d6c18b84f9c8b7f38525e62c15da18c
Certificate serial: 018C15EE345E2B946DAEA9BB11FEAF5A032D
Authority key identifier: 76:30:EE:E6:4D:6C:18:B8:4F:9C:8B:7F:38:52:5E:62:C1:5D:A1:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/djDu5k1sGLhPnIt_OFJeYsFdoYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/536758-6ba5-4fce-b774-5c45a4ac2f46/1/6bgkm9sq2cnahzgOfgezWqLeuBg.roa
Signing time: Tue 28 Nov 2023 12:36:21 +0000
ROA not before: Tue 28 Nov 2023 12:36:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29684
IP address blocks: 77.95.219.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:29:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:15:ee:34:5e:2b:94:6d:ae:a9:bb:11:fe:af:5a:03:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7630eee64d6c18b84f9c8b7f38525e62c15da18c
Validity
Not Before: Nov 28 12:36:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e9b8249bdb2ad9c9da87380e7e07b35aa2deb818
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:22:af:48:fa:c7:b7:0e:f3:7f:a1:a3:d1:32:
d3:d1:b4:f9:cf:d2:f4:c7:86:7d:82:34:58:f8:f5:
51:b6:34:a8:d4:0d:5f:76:eb:21:b8:11:15:8b:22:
fd:24:7d:9e:59:1d:07:4f:8f:05:a7:ab:94:14:51:
4d:1d:e5:23:4c:f7:e7:10:0b:47:4f:29:2c:a4:12:
14:7b:99:6b:81:85:4b:5f:61:0e:d4:51:a5:86:73:
66:83:7b:93:7e:e2:7b:80:cc:9a:71:3c:52:cd:19:
e5:8f:1d:10:62:1c:d3:34:7d:eb:ee:f9:f0:8f:87:
1d:b0:75:ec:f4:13:7b:1a:ce:83:c8:d7:ac:21:cc:
e1:c5:d9:2f:c0:c2:c1:ca:de:9a:66:81:ce:00:30:
38:5f:9a:22:c5:99:20:a1:b4:d9:26:43:46:c6:a2:
84:27:cf:d5:ca:40:b8:93:fe:66:5a:e7:f5:df:48:
1e:d9:32:f0:60:ef:a9:ef:ed:19:48:96:f1:85:5e:
fd:c8:ae:96:c7:c7:bc:a3:25:43:c8:19:7c:55:f7:
9b:bd:0a:74:f4:9e:68:03:f2:bc:b6:ff:37:c6:fe:
66:49:77:68:9b:aa:b0:1c:59:d4:53:1c:b3:2f:25:
15:3e:b2:18:14:20:ce:82:e9:eb:a7:4b:1b:37:be:
b9:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:B8:24:9B:DB:2A:D9:C9:DA:87:38:0E:7E:07:B3:5A:A2:DE:B8:18
X509v3 Authority Key Identifier:
keyid:76:30:EE:E6:4D:6C:18:B8:4F:9C:8B:7F:38:52:5E:62:C1:5D:A1:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/djDu5k1sGLhPnIt_OFJeYsFdoYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/536758-6ba5-4fce-b774-5c45a4ac2f46/1/6bgkm9sq2cnahzgOfgezWqLeuBg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/536758-6ba5-4fce-b774-5c45a4ac2f46/1/djDu5k1sGLhPnIt_OFJeYsFdoYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.95.219.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:fc:bd:a2:8d:05:eb:3f:ea:dc:6f:10:35:c4:a8:9f:57:96:
93:19:45:96:fa:f9:58:57:21:69:73:f3:5f:04:c2:1b:5f:c1:
25:a3:28:a9:a5:d1:8b:0d:c7:9e:d4:29:e9:8d:70:da:72:99:
27:1c:94:c6:35:47:2c:68:58:07:e0:f7:4f:f4:83:18:cf:0e:
4c:f1:45:9f:5e:c9:ab:d1:91:12:be:5e:89:2d:f2:6c:1b:77:
e1:92:62:c6:a2:5a:fd:1d:40:b5:0f:0b:d3:15:f8:b4:28:18:
5e:5a:f2:b3:9f:0e:a3:44:e7:58:c6:c2:5f:50:7b:a0:cc:15:
04:a7:2f:00:a6:3c:6b:82:df:dd:87:6c:25:b3:b8:81:42:36:
ff:8a:c2:b2:a5:73:1a:0b:c8:91:07:72:ca:5c:7b:fe:ca:85:
9b:dc:ca:07:7f:40:e4:b0:76:4e:45:bf:e3:5e:56:34:53:2f:
cc:a6:ae:8b:1f:f6:fb:30:d2:5e:6e:62:8b:64:48:da:73:dd:
3a:87:b2:27:47:3e:33:25:1a:b1:87:13:a1:88:ee:3f:54:fd:
ff:eb:fb:24:64:07:c3:4b:0d:b5:80:ec:eb:37:af:55:1b:c2:
02:65:71:b5:cb:f5:98:9a:b7:41:19:f2:dd:77:69:ad:c6:f1:
4e:9d:d4:7e
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYwV7jReK5Rtrqm7Ef6vWgMtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc2MzBlZWU2NGQ2YzE4Yjg0ZjljOGI3ZjM4NTI1ZTYyYzE1
ZGExOGMwHhcNMjMxMTI4MTIzNjIxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlOWI4MjQ5YmRiMmFkOWM5ZGE4NzM4MGU3ZTA3YjM1YWEyZGViODE4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2CKvSPrHtw7zf6Gj0TLT0bT5z9L0
x4Z9gjRY+PVRtjSo1A1fdushuBEViyL9JH2eWR0HT48Fp6uUFFFNHeUjTPfnEAtH
TykspBIUe5lrgYVLX2EO1FGlhnNmg3uTfuJ7gMyacTxSzRnljx0QYhzTNH3r7vnw
j4cdsHXs9BN7Gs6DyNesIczhxdkvwMLByt6aZoHOADA4X5oixZkgobTZJkNGxqKE
J8/VykC4k/5mWuf130ge2TLwYO+p7+0ZSJbxhV79yK6Wx8e8oyVDyBl8VfebvQp0
9J5oA/K8tv83xv5mSXdom6qwHFnUUxyzLyUVPrIYFCDOgunrp0sbN765+QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOm4JJvbKtnJ2oc4Dn4Hs1qi3rgYMB8GA1UdIwQY
MBaAFHYw7uZNbBi4T5yLfzhSXmLBXaGMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZGpEdTVrMXNHTGhQbkl0X09GSmVZc0Zkb1l3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy81MzY3NTgtNmJhNS00ZmNlLWI3NzQt
NWM0NWE0YWMyZjQ2LzEvNmJna205c3EyY25haHpnT2ZnZXpXcUxldUJnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNy81MzY3NTgtNmJhNS00ZmNlLWI3NzQtNWM0NWE0YWMyZjQ2
LzEvZGpEdTVrMXNHTGhQbkl0X09GSmVZc0Zkb1l3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQATV/bMA0G
CSqGSIb3DQEBCwUAA4IBAQBt/L2ijQXrP+rcbxA1xKifV5aTGUWW+vlYVyFpc/Nf
BMIbX8EloyippdGLDcee1CnpjXDacpknHJTGNUcsaFgH4PdP9IMYzw5M8UWfXsmr
0ZESvl6JLfJsG3fhkmLGolr9HUC1DwvTFfi0KBheWvKznw6jROdYxsJfUHugzBUE
py8Apjxrgt/dh2wls7iBQjb/isKypXMaC8iRB3LKXHv+yoWb3MoHf0DksHZORb/j
XlY0Uy/Mpq6LH/b7MNJebmKLZEjac906h7InRz4zJRqxhxOhiO4/VP3/6/skZAfD
Sw21gOzrN69VG8ICZXG1y/WYmrdBGfLdd2mtxvFOndR+
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:41 2024 by rpki-client on console-fra.rpki-client.org