Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/OMnCAZeI2zE0yA_Bi3Sih9hE4bo.roa
File: OMnCAZeI2zE0yA_Bi3Sih9hE4bo.roa (raw, json)
Hash identifier: U54UAz24qhwb2TfpbZsghYzsn7YVIF4U/9aIt14sYyE=
Subject key identifier: 38:C9:C2:01:97:88:DB:31:34:C8:0F:C1:8B:74:A2:87:D8:44:E1:BA
Certificate issuer: /CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Certificate serial: 018DEE7DA7538925586D679A62D8A1C9E0B7
Authority key identifier: 4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/OMnCAZeI2zE0yA_Bi3Sih9hE4bo.roa
Signing time: Wed 28 Feb 2024 06:53:48 +0000
ROA not before: Wed 28 Feb 2024 06:53:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198037
IP address blocks: 77.72.81.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 28 Feb 2024 20:56:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:ee:7d:a7:53:89:25:58:6d:67:9a:62:d8:a1:c9:e0:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Validity
Not Before: Feb 28 06:53:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=38c9c2019788db3134c80fc18b74a287d844e1ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:95:21:de:24:de:4b:4f:96:3c:9a:6e:f3:0d:
79:1c:f3:4c:84:57:f6:28:a6:a8:50:51:52:a0:b4:
07:2c:44:ec:4f:5d:af:ff:d6:45:dd:84:0d:58:4a:
83:47:62:56:2c:a0:d5:5c:ce:18:c4:fb:39:be:14:
73:87:fa:3d:b5:87:4f:94:9e:71:c9:82:3f:2c:e6:
7f:3e:5b:7f:ff:72:ee:f6:f8:5c:98:ef:10:59:61:
5c:8e:77:a2:4e:c7:5c:31:6f:b4:77:8b:8e:f0:5d:
e0:16:df:8d:d6:32:a5:25:aa:d6:dd:62:75:be:b0:
90:14:a7:46:d1:73:0c:74:e6:ed:59:b9:ea:74:67:
85:56:52:78:a4:3e:7a:ff:bf:d3:58:6a:ce:74:65:
b3:98:fb:60:1a:b8:c2:b6:23:24:81:6f:cc:4c:d9:
d4:59:5c:48:fb:fd:93:75:d8:07:8d:58:88:58:31:
8b:02:16:d5:3e:72:cb:cd:d4:8c:59:08:5f:18:b2:
37:8d:7b:0f:ad:5e:e9:9f:8e:ca:01:7b:57:2b:c8:
36:fc:f1:65:0e:2c:6e:e6:e1:f4:e8:c1:4e:5e:77:
c2:29:34:f9:a4:2e:9b:4f:b1:b2:d2:fa:31:42:d2:
9e:55:9e:ae:7b:96:69:fe:e0:d3:73:d6:7b:7f:55:
c7:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:C9:C2:01:97:88:DB:31:34:C8:0F:C1:8B:74:A2:87:D8:44:E1:BA
X509v3 Authority Key Identifier:
keyid:4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/OMnCAZeI2zE0yA_Bi3Sih9hE4bo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/TxQRLQXp2HYUnSd41I7aqjJNsKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.72.81.0/24
Signature Algorithm: sha256WithRSAEncryption
90:41:d9:16:38:15:b2:7c:21:78:5b:c5:c7:db:78:cb:a6:51:
a2:c7:93:b4:0c:84:50:bd:27:84:b0:b3:d9:ed:7a:26:19:ac:
16:9b:d4:d6:12:89:bd:43:43:ee:ac:9e:89:64:e4:f9:33:98:
50:ad:bb:4c:45:e2:03:8e:dc:99:c2:8a:5f:96:ae:1d:30:b5:
08:fb:13:c5:e3:51:4f:0d:45:97:aa:b6:ec:11:d8:a1:d8:1c:
d4:10:ed:ff:b9:a4:02:ae:a4:62:07:fc:ae:c9:c8:83:7c:0a:
9a:87:2f:44:a9:02:e6:9d:b3:30:00:7e:60:27:eb:60:d3:8b:
0c:63:11:f6:33:11:ce:44:81:ab:4f:61:7f:bf:49:55:4d:36:
12:77:98:34:71:1b:00:c2:1b:7a:f4:f1:59:ec:bd:b3:cc:87:
bc:38:2f:0c:ee:9e:63:4c:24:81:67:7f:2f:08:cc:67:9a:4b:
97:38:1e:2d:4f:32:7e:a7:bd:7b:3a:05:46:86:87:bf:3c:ad:
06:68:e6:40:78:b0:be:f7:b2:cd:d6:93:c8:b4:a0:e4:3e:1e:
94:83:58:f5:b1:7b:cd:6b:0e:22:90:b0:e7:ee:40:b7:3f:fe:
12:ee:92:e1:ce:5c:16:43:6c:04:ce:e4:af:7e:9b:8e:45:2d:
4c:92:39:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 29 00:13:26 2024 by rpki-client on console-fra.rpki-client.org