Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/72AXIMOijkTymc85y0XTLmcRhHA.roa
File: 72AXIMOijkTymc85y0XTLmcRhHA.roa (raw, json)
Hash identifier: l3MfN4ymAsbgQiZQUO1SPn4fUgYNKX856WSClf0EMQQ=
Subject key identifier: EF:60:17:20:C3:A2:8E:44:F2:99:CF:39:CB:45:D3:2E:67:11:84:70
Certificate issuer: /CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Certificate serial: 018CC7275993B1FF816DBBFC48C2B192F484
Authority key identifier: 4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/72AXIMOijkTymc85y0XTLmcRhHA.roa
Signing time: Mon 01 Jan 2024 22:31:34 +0000
ROA not before: Mon 01 Jan 2024 22:31:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 201949
IP address blocks: 77.72.81.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:27:59:93:b1:ff:81:6d:bb:fc:48:c2:b1:92:f4:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Validity
Not Before: Jan 1 22:31:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ef601720c3a28e44f299cf39cb45d32e67118470
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:a7:c8:0b:a9:e9:6a:2b:f8:20:7a:52:75:53:
67:97:75:ed:f2:be:8e:b7:1e:be:40:a3:53:49:0b:
75:a2:03:c1:15:ce:1d:66:3b:17:83:24:e6:93:fe:
60:42:9f:95:a6:a0:84:a7:b1:e1:d3:01:b8:d7:aa:
23:02:c6:68:95:80:38:ed:18:42:d7:34:e6:a8:8d:
81:80:47:46:16:05:19:4e:e6:85:5f:f1:96:37:db:
0b:dc:ca:7a:b2:4d:6d:6f:11:55:69:c3:42:60:9e:
c7:60:c6:d5:35:71:21:18:25:9b:49:82:42:d9:38:
fe:b7:84:82:2d:37:c0:47:42:4c:d3:8a:a3:45:31:
ac:0d:02:21:f1:1f:c3:53:b1:ce:98:c2:6d:4c:47:
59:e4:3e:17:3a:95:7d:e2:8b:d2:28:7d:e3:5e:73:
42:a1:36:7f:58:fa:39:62:c9:fe:5d:83:6e:b6:11:
a1:aa:9d:41:40:02:d5:ba:7a:7f:41:a5:1d:35:87:
30:f0:b9:0c:ad:f8:76:dc:5c:1d:74:d2:af:ee:2a:
10:02:f7:56:8a:c2:bb:18:6c:05:44:c7:e6:00:15:
0b:69:1d:80:48:80:9c:06:b2:a4:fa:a8:00:e6:e2:
f4:4d:b7:1e:a6:3f:f7:49:35:d5:f4:ee:e7:a3:f3:
13:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:60:17:20:C3:A2:8E:44:F2:99:CF:39:CB:45:D3:2E:67:11:84:70
X509v3 Authority Key Identifier:
keyid:4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/72AXIMOijkTymc85y0XTLmcRhHA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/TxQRLQXp2HYUnSd41I7aqjJNsKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.72.81.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:59:60:d5:03:4e:0e:10:1c:2b:73:69:8b:6c:e7:48:c6:ba:
f4:50:a2:dc:7e:31:f4:fb:45:81:e4:c4:1b:36:91:aa:87:4f:
01:55:c4:e3:da:b7:fe:c1:da:2a:bf:e0:c0:33:e8:c5:97:4e:
1e:c1:35:bc:8e:f4:ca:ba:56:05:1a:a4:02:4a:da:31:5e:9c:
80:88:8b:72:40:08:09:8b:35:1f:7a:08:37:b1:4b:54:dc:36:
b4:97:b9:3b:d6:e4:f9:24:e0:ad:a9:e4:9b:08:7a:2c:5b:6e:
fe:4b:e7:77:d9:0f:c5:11:dd:5d:74:64:b5:b7:4b:c5:a0:19:
2a:32:e3:51:25:cf:9e:a1:e2:ee:ce:80:0e:90:0b:fb:6a:e6:
53:ba:f0:db:16:bc:22:0f:e2:1f:9c:71:0e:51:d0:91:4e:cc:
b6:36:ba:a1:e1:fd:83:d7:cf:de:e6:90:47:cc:e3:d7:7e:93:
b5:47:ca:a1:f4:b7:a9:90:f1:1c:25:1d:b9:df:db:bd:78:38:
5c:65:1f:81:6b:32:c8:47:87:f7:95:b6:79:67:9d:52:10:45:
f4:27:46:f5:5b:f7:c7:1f:23:82:d3:61:d2:14:89:ee:8c:0b:
a1:43:2b:43:87:ab:81:65:37:56:96:1d:dc:46:67:a3:00:18:
0d:ea:87:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jan 6 13:50:08 2024 by rpki-client on console-fra.rpki-client.org