Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/aaElieAJpmwI9ro3K649TQm7Ijs.roa
File: aaElieAJpmwI9ro3K649TQm7Ijs.roa (raw, json)
Hash identifier: k7LsbKejKarfpKagNza1j8JMNMCRHjzY0NfDa/vEeNE=
Subject key identifier: 69:A1:25:89:E0:09:A6:6C:08:F6:BA:37:2B:AE:3D:4D:09:BB:22:3B
Certificate issuer: /CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Certificate serial: 018572BA8E1EFCA29A3DF1109D2FF0CF1204
Authority key identifier: 68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/aaElieAJpmwI9ro3K649TQm7Ijs.roa
Signing time: Mon 02 Jan 2023 13:45:06 +0000
ROA not before: Mon 02 Jan 2023 13:45:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209409
IP address blocks: 77.79.200.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:35:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:ba:8e:1e:fc:a2:9a:3d:f1:10:9d:2f:f0:cf:12:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Validity
Not Before: Jan 2 13:45:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=69a12589e009a66c08f6ba372bae3d4d09bb223b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:e5:14:de:27:3f:be:7d:28:ef:a7:b3:01:08:
21:48:58:e0:77:84:10:bf:64:78:fc:d6:e8:8e:65:
eb:74:b6:f1:e8:4c:94:c7:a8:b8:be:77:30:77:1f:
f6:fd:f6:3b:cf:10:36:dc:cf:c4:dd:95:5d:ac:e7:
c4:92:00:33:a7:b1:98:5e:9e:e7:59:29:12:c4:ba:
88:08:62:38:c5:19:a5:c0:97:c8:8f:a4:cd:63:7f:
82:04:ab:90:ab:4f:a3:3a:71:c7:4e:a8:c9:ac:70:
37:f0:ad:7d:8d:92:b7:73:33:70:e7:b9:66:c9:32:
97:bf:d6:12:37:0b:c7:ef:ef:b3:1b:db:0d:a1:06:
36:5d:64:b1:bc:b0:07:a3:9c:06:2e:cf:61:6c:70:
13:b1:58:68:52:16:c8:08:3d:09:c9:b6:73:1b:0c:
0f:e0:f3:f2:7f:6b:36:98:00:fb:6b:dc:93:f3:d5:
8a:2c:25:b1:0a:eb:b6:e1:cd:0a:0a:be:c9:ad:29:
5a:41:ae:04:fd:b3:15:ce:65:a1:16:dd:d7:20:97:
eb:33:6c:86:87:fa:37:37:e6:a3:c1:25:ff:93:3e:
04:89:f0:d5:b8:cb:ff:73:0b:c1:df:27:2a:51:72:
2a:0b:50:b6:a2:9b:f1:0b:3b:ca:fb:8a:c0:bd:d5:
d4:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:A1:25:89:E0:09:A6:6C:08:F6:BA:37:2B:AE:3D:4D:09:BB:22:3B
X509v3 Authority Key Identifier:
keyid:68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/aaElieAJpmwI9ro3K649TQm7Ijs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/aMUQ_JuGXZbjr8fFYFbvrZozDFs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.79.200.0/24
Signature Algorithm: sha256WithRSAEncryption
37:72:66:2f:c5:72:9d:27:9e:72:78:d0:7e:7f:06:d9:d2:70:
b7:75:1a:2f:ed:86:d9:72:90:e3:20:ce:f1:88:90:dc:61:f2:
0d:58:62:aa:d5:ae:cf:27:07:bd:6b:68:d7:0b:a6:6f:5e:30:
5c:f3:79:84:9a:40:ae:10:e2:2e:04:de:7e:d9:c8:3b:ae:95:
c5:80:c2:12:9c:6c:3a:03:ca:5c:a7:40:b6:47:fb:20:ac:fd:
86:93:5f:56:5f:1e:38:d5:bb:d4:13:3b:a6:b1:89:5b:02:0c:
36:f6:79:cf:af:c5:1f:67:49:a2:fb:ec:90:bf:d1:a9:6e:46:
44:19:2a:b9:f1:9a:02:35:ec:fc:4d:67:25:9c:79:5e:76:47:
48:8a:8a:35:17:8a:12:68:0e:1a:da:dc:38:58:4a:ba:a2:e9:
01:bf:cf:72:21:6f:2c:94:b7:14:2d:ac:9b:f8:57:51:5c:c2:
22:bf:8d:2f:fd:a4:0e:27:9d:e8:04:8e:64:b5:c4:51:66:0d:
d9:96:f3:bd:d8:f2:9c:ab:7d:a5:c1:0a:7b:62:0e:cc:8d:59:
78:bf:bf:90:5b:5f:c3:8a:f9:72:60:8d:df:f8:7b:43:23:75:
1e:70:88:96:e5:25:fe:2e:2c:76:dc:b0:01:60:2a:14:9b:7f:
80:f7:5a:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:57 2024 by rpki-client on console-fra.rpki-client.org