Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/BUXXO9SlRxDSvCasRpu-fnAEzg4.roa
File: BUXXO9SlRxDSvCasRpu-fnAEzg4.roa (raw, json)
Hash identifier: 4qchOJDeLM+Q1JpBsh21pbGSFzXAH6erD8tHw1au0ds=
Subject key identifier: 05:45:D7:3B:D4:A5:47:10:D2:BC:26:AC:46:9B:BE:7E:70:04:CE:0E
Certificate issuer: /CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Certificate serial: 018DF1816FC46590A6F2B3959FFD9D29C818
Authority key identifier: 4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/BUXXO9SlRxDSvCasRpu-fnAEzg4.roa
Signing time: Wed 28 Feb 2024 20:56:48 +0000
ROA not before: Wed 28 Feb 2024 20:56:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 77.72.81.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 01 Mar 2024 16:43:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:f1:81:6f:c4:65:90:a6:f2:b3:95:9f:fd:9d:29:c8:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Validity
Not Before: Feb 28 20:56:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0545d73bd4a54710d2bc26ac469bbe7e7004ce0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:2a:45:6e:f7:52:8e:d6:03:5f:2a:eb:27:fe:
c4:56:56:ee:a8:e9:18:41:06:84:cd:a9:e9:4b:09:
e1:3f:39:cf:91:66:47:52:9a:fc:70:9f:a6:20:36:
64:86:2f:26:69:92:f8:4d:c9:de:6c:2d:2e:85:ce:
9e:c7:10:38:b4:b0:89:fb:02:50:42:dc:cf:03:96:
d0:f5:17:f5:37:0c:40:18:22:89:e0:fa:b2:12:13:
ff:5e:61:54:70:eb:9f:80:40:83:de:3c:f9:0a:37:
93:06:1d:22:64:54:e5:3f:fa:66:50:dc:a3:14:22:
3d:f8:42:69:6d:49:a0:c0:ee:d2:4c:a5:6e:40:08:
9a:ce:80:3d:25:de:86:9e:b5:ca:f7:59:9d:17:d0:
21:28:76:f3:dd:fd:f0:e4:1b:f4:5e:91:06:0b:24:
91:15:a6:c5:69:28:aa:06:af:09:81:84:49:c1:62:
fa:a5:6d:f9:00:dd:5a:43:30:1d:ec:77:88:8d:a8:
6c:4c:ac:6a:f2:11:22:1a:f6:b3:df:35:49:46:01:
17:12:22:f2:1a:60:66:64:8b:25:1a:4a:a3:dd:46:
c2:c0:f3:fc:e1:bd:cd:ee:5c:90:b6:60:28:ba:11:
46:f4:73:04:70:70:ef:da:15:ff:72:a7:24:20:a2:
98:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:45:D7:3B:D4:A5:47:10:D2:BC:26:AC:46:9B:BE:7E:70:04:CE:0E
X509v3 Authority Key Identifier:
keyid:4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/BUXXO9SlRxDSvCasRpu-fnAEzg4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/TxQRLQXp2HYUnSd41I7aqjJNsKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.72.81.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:c9:a4:2e:cf:c3:6a:d3:b4:1b:e3:dc:9f:dd:8e:e8:82:14:
ea:47:51:41:70:de:c6:97:e5:8a:cf:e8:b1:98:6d:c2:d2:2a:
ee:2e:9d:7d:85:4b:23:cf:65:9f:bc:8b:86:16:7d:51:62:2d:
91:73:c9:1a:2d:cc:6c:06:06:b9:0a:49:b1:c8:22:16:0f:0b:
91:22:38:16:91:40:f5:0b:b8:a4:bb:15:b0:5c:28:04:25:f5:
2c:5f:e9:65:f7:bf:2c:65:d8:17:34:82:36:b3:ce:54:a7:4c:
a8:2e:25:de:01:1b:46:1a:ef:5b:5d:26:ec:2a:6f:3a:f7:d9:
1c:66:fd:86:73:10:0d:fb:43:b2:c9:62:14:ce:a4:68:b5:52:
1e:c2:51:a8:94:71:bb:0a:23:b1:0e:15:42:7c:13:d6:02:a8:
27:06:6d:0b:92:bb:32:a6:89:67:48:4f:ac:29:6f:7c:97:55:
97:43:4e:d7:3a:b0:c4:81:23:fb:5f:0a:7c:24:5d:7c:67:5c:
0b:e9:7b:48:6b:66:10:88:67:bc:0e:37:76:7f:fc:4e:f3:cf:
22:4b:9c:73:0b:e1:62:e0:72:ee:8d:96:32:53:de:2a:ae:22:
19:45:f2:dc:82:6f:4d:bf:08:71:85:e2:a3:33:6a:c1:f1:3d:
db:4c:f6:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 1 19:23:49 2024 by rpki-client on console-fra.rpki-client.org