Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/45u9XoNKg0Fw8hDcOdLZ3ZM0s9s.roa
File: 45u9XoNKg0Fw8hDcOdLZ3ZM0s9s.roa (raw, json)
Hash identifier: kLoYtw37EECaneEY/L5+AMee6/P5Jb/ZMicaPrgKXyc=
Subject key identifier: E3:9B:BD:5E:83:4A:83:41:70:F2:10:DC:39:D2:D9:DD:93:34:B3:DB
Certificate issuer: /CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Certificate serial: 018572BA870634FE8D25457CF579A7A77AB4
Authority key identifier: 68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/45u9XoNKg0Fw8hDcOdLZ3ZM0s9s.roa
Signing time: Mon 02 Jan 2023 13:45:04 +0000
ROA not before: Mon 02 Jan 2023 13:45:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201615
IP address blocks: 77.79.204.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:ba:87:06:34:fe:8d:25:45:7c:f5:79:a7:a7:7a:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Validity
Not Before: Jan 2 13:45:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e39bbd5e834a834170f210dc39d2d9dd9334b3db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:41:32:0c:81:c4:95:09:f1:5b:0b:bb:dc:a1:
56:a6:9d:75:1f:7f:a5:3b:5b:05:b7:f3:3b:7f:73:
d0:c5:59:9f:84:88:e3:92:c6:7a:42:e7:37:1d:b0:
2b:40:c6:7e:6e:dc:ab:af:8e:d7:6a:c7:a7:2b:48:
bc:ef:b7:8f:4b:24:96:59:5d:cc:ef:a5:3f:bc:50:
18:e2:9e:83:77:60:e8:53:b3:b8:a4:1f:37:87:6d:
0a:b5:3c:3c:b6:48:be:00:73:2b:0c:b2:e8:8a:7e:
a0:25:06:af:00:1e:3c:18:73:a2:e8:15:50:15:a1:
9f:bf:f5:88:dc:1c:d6:be:a6:d7:45:ff:ae:81:26:
d9:23:73:b8:b0:f7:8c:fc:b4:4e:96:98:5a:b4:dd:
72:1a:60:c5:c9:bb:af:1f:1d:9b:cd:e8:f7:00:88:
1c:d9:cb:be:7f:c0:29:50:dc:53:cd:ee:1c:9d:24:
0f:c0:43:c7:f1:0f:80:e3:a0:b7:22:dc:af:27:5c:
bf:0b:54:54:29:2a:c6:f5:24:df:ff:f3:52:8e:3d:
59:e8:b6:31:e5:fe:7a:df:52:88:ca:80:aa:be:cf:
60:96:cd:86:78:63:a2:6a:a2:4a:97:07:24:87:7e:
62:2a:f3:c1:a1:08:79:93:6a:5a:40:62:92:18:be:
45:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:9B:BD:5E:83:4A:83:41:70:F2:10:DC:39:D2:D9:DD:93:34:B3:DB
X509v3 Authority Key Identifier:
keyid:68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/45u9XoNKg0Fw8hDcOdLZ3ZM0s9s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/aMUQ_JuGXZbjr8fFYFbvrZozDFs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.79.204.0/24
Signature Algorithm: sha256WithRSAEncryption
70:10:43:c3:9d:18:6f:86:a8:d4:28:a9:e4:f1:c2:26:fd:55:
90:0e:a5:c4:4b:50:27:c4:a0:4b:c3:c7:c8:18:7c:a0:52:14:
e9:85:64:fa:25:64:19:31:c4:3a:c0:4b:f9:2a:87:4a:97:c4:
fa:c6:cf:d7:fd:14:f1:79:8c:ec:96:94:ee:c7:28:1b:58:c7:
b5:8c:88:06:9e:9b:70:de:10:6a:1f:8d:84:62:4e:76:ef:3e:
3c:01:1b:e9:11:43:d8:ff:f6:11:54:9a:f0:71:3a:1f:24:14:
5a:80:7d:46:9b:d7:1b:91:7e:b6:73:e9:39:20:92:fc:8d:30:
07:18:12:78:f6:f0:2b:96:15:6f:4d:23:c1:08:15:f4:e4:80:
30:90:45:64:96:34:39:12:c3:86:4a:00:42:66:3e:40:1b:d7:
c9:d2:ad:46:1f:08:ab:11:dd:a3:66:5c:8a:af:b4:40:17:83:
42:4b:6a:12:36:dc:f7:e6:ed:f6:6d:33:15:91:7b:a4:9b:cf:
f1:13:f1:02:ba:12:4d:24:29:44:7b:a7:07:28:63:e0:cc:5b:
3a:38:8f:f0:3a:0f:3d:24:5a:11:8b:09:d3:46:f4:24:99:06:
71:e0:da:44:58:6a:79:bb:de:3d:ac:3f:34:f2:88:a4:cd:27:
b3:79:c3:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 17:33:45 2024 by rpki-client on console-fra.rpki-client.org