Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/MqQKY2gSnDrd0rQX8cVF7R1RFyw.roa
File: MqQKY2gSnDrd0rQX8cVF7R1RFyw.roa (raw, json)
Hash identifier: c2T6L550cFj1BbViiVuKX1ksq21+JGoLyVx7nUqToRI=
Subject key identifier: 32:A4:0A:63:68:12:9C:3A:DD:D2:B4:17:F1:C5:45:ED:1D:51:17:2C
Certificate issuer: /CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Certificate serial: 018572BA75ECE2FBEA3B29B31E7508DA57CC
Authority key identifier: 68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/MqQKY2gSnDrd0rQX8cVF7R1RFyw.roa
Signing time: Mon 02 Jan 2023 13:45:00 +0000
ROA not before: Mon 02 Jan 2023 13:45:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 24929
IP address blocks: 77.79.237.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:35:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:ba:75:ec:e2:fb:ea:3b:29:b3:1e:75:08:da:57:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Validity
Not Before: Jan 2 13:45:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=32a40a6368129c3addd2b417f1c545ed1d51172c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:61:a3:18:33:cf:96:e7:8b:76:85:47:b8:7c:
99:f3:0c:5d:07:c2:41:8d:de:d8:e4:9c:26:b4:a5:
d5:81:91:a3:d9:e4:d9:6c:d2:cd:af:1f:b8:47:91:
91:0f:0a:07:2a:90:ae:11:45:81:1d:26:31:31:cb:
fb:c9:b1:1f:ef:14:2c:33:82:16:e5:8d:0a:7e:d0:
de:81:af:65:de:52:0e:47:6c:7c:90:58:32:88:70:
e4:d8:70:27:b2:86:14:00:b9:0c:41:3d:52:20:9c:
5a:c4:3d:21:f8:c1:0e:ed:c8:eb:db:04:09:ad:ff:
a6:43:53:c4:ee:ae:95:14:65:0d:1a:2a:8f:86:09:
09:c3:71:87:5c:54:76:ed:ad:71:67:4f:17:01:8b:
a1:10:75:91:c7:00:b4:72:64:e7:f8:4f:b8:5d:77:
a9:50:9e:6e:f7:86:c8:8b:08:2a:22:9a:a4:da:7a:
66:b3:7d:58:8f:65:d3:ea:dd:d6:3e:38:4d:41:58:
67:80:67:18:48:c3:9c:bb:d5:ed:ed:73:ea:4e:f3:
18:08:80:b6:ed:d7:5d:38:7e:7d:b0:61:be:91:1b:
68:52:84:a9:54:c5:f7:47:9b:f3:5f:5e:81:99:ea:
1d:e9:4b:ae:b0:36:e0:ed:b6:83:85:4d:7e:69:6d:
5d:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:A4:0A:63:68:12:9C:3A:DD:D2:B4:17:F1:C5:45:ED:1D:51:17:2C
X509v3 Authority Key Identifier:
keyid:68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/MqQKY2gSnDrd0rQX8cVF7R1RFyw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/aMUQ_JuGXZbjr8fFYFbvrZozDFs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.79.237.0/24
Signature Algorithm: sha256WithRSAEncryption
b5:2a:55:d5:e6:87:8b:f6:65:40:7c:63:f9:58:af:27:4e:80:
ec:57:51:06:d4:0c:04:a6:ca:00:7c:2c:06:9c:e1:2c:23:9c:
f4:ca:51:66:9a:a1:72:51:5c:61:90:97:48:5b:6a:35:c0:1c:
59:b1:e8:c3:80:2e:58:0c:b0:16:f1:c7:18:07:1d:cc:d9:24:
49:c4:c2:ef:1a:cd:cf:73:8b:c6:ba:08:ca:7c:e0:0a:c4:94:
ff:3e:35:ec:8a:90:1b:41:82:dd:36:2c:20:d2:e1:cf:80:4e:
c8:12:20:56:2e:ac:55:cc:bf:fb:c3:5c:9a:79:8a:78:18:8b:
c4:87:8b:f2:58:dd:35:f5:05:5b:99:92:03:82:20:26:b1:d5:
b1:8e:23:46:9d:18:a5:37:a9:7c:df:0c:d9:51:c2:d6:ac:04:
c2:53:cf:a1:91:48:09:3f:6a:eb:3e:c7:36:4c:6e:70:7b:af:
f5:9e:d7:b2:31:e9:4f:d2:86:7c:85:32:50:a1:1a:75:d8:b6:
cc:5e:a9:80:31:73:8d:4b:08:e9:42:79:7a:5d:52:43:26:21:
37:99:66:83:d9:29:80:22:04:b9:71:a2:6c:7a:42:ca:6c:86:
39:df:c9:c4:f6:db:af:06:08:e4:72:57:9a:41:1f:f2:67:d3:
49:09:f7:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:52 2024 by rpki-client on console-ams.rpki-client.org