Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/2aa218-7e1e-4994-8cb0-1f76e9dcff92/1/2pD38Ew_R9wFzsfTj9NoUgGA8yg.roa
File: 2pD38Ew_R9wFzsfTj9NoUgGA8yg.roa (raw, json)
Hash identifier: LO+mBpEqKWqXknyzWoDI4YV0/ADOa2zxK36yqcyDZ+w=
Subject key identifier: DA:90:F7:F0:4C:3F:47:DC:05:CE:C7:D3:8F:D3:68:52:01:80:F3:28
Certificate issuer: /CN=052b10e547e89ff6c7b39b6ca97fb16b3fdfbe4f
Certificate serial: 018829BC1D3F2D68E1CBDCF3AF6E32B23E4A
Authority key identifier: 05:2B:10:E5:47:E8:9F:F6:C7:B3:9B:6C:A9:7F:B1:6B:3F:DF:BE:4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BSsQ5Ufon_bHs5tsqX-xaz_fvk8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/2aa218-7e1e-4994-8cb0-1f76e9dcff92/1/2pD38Ew_R9wFzsfTj9NoUgGA8yg.roa
Signing time: Wed 17 May 2023 12:42:54 +0000
ROA not before: Wed 17 May 2023 12:42:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6830
IP address blocks: 77.72.64.0/21 maxlen: 21
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:29:bc:1d:3f:2d:68:e1:cb:dc:f3:af:6e:32:b2:3e:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=052b10e547e89ff6c7b39b6ca97fb16b3fdfbe4f
Validity
Not Before: May 17 12:42:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=da90f7f04c3f47dc05cec7d38fd368520180f328
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:22:3b:0e:af:38:23:d0:27:53:45:c8:1d:ac:
a9:1e:91:d4:b0:3f:c5:fb:81:ba:d6:8f:66:46:b8:
17:08:b9:20:d7:e1:c1:7b:68:9f:8d:61:58:1f:c8:
f8:bf:13:77:8d:58:ae:56:45:5e:83:6a:27:a0:01:
b0:b7:ef:93:3a:e5:47:af:0a:9b:1e:f3:2a:5f:be:
aa:dc:98:3b:2d:08:07:db:fc:95:ce:2e:d3:a8:e3:
92:a5:96:95:d7:93:da:8b:62:9b:b6:e3:7b:e6:70:
a1:77:e1:14:2d:37:4a:c7:9c:a9:97:a7:6a:f5:2e:
1c:70:ca:3c:ca:64:58:5e:f8:c7:08:2f:59:41:25:
a5:e6:e5:99:b3:f0:48:00:51:e5:77:33:d2:b6:d0:
d8:2c:e6:7c:b5:ca:ff:61:9b:7c:d0:f6:3c:15:a9:
8f:4d:3e:db:d4:7b:e9:86:39:28:8b:e3:f4:f5:65:
26:22:75:92:3c:9d:dc:46:e1:1e:09:dd:72:02:a5:
0f:32:0b:58:a3:0c:c6:24:87:e4:50:6d:c3:ec:fa:
ae:75:4d:75:bc:09:ec:45:f1:44:07:bb:d1:16:0e:
3c:73:f7:04:eb:84:e3:1f:f9:07:3a:35:cd:19:24:
2b:b8:9f:8b:41:c0:ba:65:cf:72:3f:76:c7:6b:5c:
7c:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:90:F7:F0:4C:3F:47:DC:05:CE:C7:D3:8F:D3:68:52:01:80:F3:28
X509v3 Authority Key Identifier:
keyid:05:2B:10:E5:47:E8:9F:F6:C7:B3:9B:6C:A9:7F:B1:6B:3F:DF:BE:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BSsQ5Ufon_bHs5tsqX-xaz_fvk8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/2aa218-7e1e-4994-8cb0-1f76e9dcff92/1/2pD38Ew_R9wFzsfTj9NoUgGA8yg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/2aa218-7e1e-4994-8cb0-1f76e9dcff92/1/BSsQ5Ufon_bHs5tsqX-xaz_fvk8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.72.64.0/21
Signature Algorithm: sha256WithRSAEncryption
12:83:ea:d0:a5:6a:73:30:67:4e:a4:6f:d7:d1:e4:69:fd:8c:
c6:16:e2:cc:fe:f8:c7:11:34:81:f6:b3:0d:9f:10:84:bf:85:
62:13:85:fe:72:bb:7a:ac:bb:63:46:0d:6d:ac:e5:98:61:1c:
8c:dc:d4:1c:9f:5d:53:0c:41:5c:bd:83:6d:15:5a:64:28:74:
e6:73:e0:8f:45:46:b7:d6:54:05:37:c8:be:9d:7d:53:2a:d2:
75:b0:0a:b2:e2:f9:47:9d:39:ea:5d:7a:cb:2c:b3:70:62:ad:
fb:1b:d9:93:44:0f:67:2f:41:c7:98:cb:13:fd:ac:d1:37:45:
6f:b4:59:d8:c7:87:83:c5:43:fe:01:fc:fb:3f:4c:fa:6a:f9:
10:b4:38:da:71:72:bf:7a:df:76:7b:5d:73:2d:99:ac:1b:2e:
f8:88:c4:63:8a:74:11:a4:5a:4f:46:ea:f9:90:5f:51:87:1e:
b3:f2:da:2d:17:e9:98:e6:1c:ea:41:e3:d8:7a:bc:dd:54:ec:
be:f9:47:6c:c3:59:01:8a:e4:97:5b:ff:b9:49:b3:14:69:d7:
99:2b:3f:b9:72:81:39:30:11:88:49:04:00:fe:af:e9:f3:e0:
48:06:bd:2e:78:01:8e:97:ac:d4:5a:3a:35:c1:99:9e:ab:3a:
cf:a4:d9:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 04:09:31 2024 by rpki-client on console-ams.rpki-client.org