Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/0E7MhDGmzpHxwioCsSy7Zz5Ge98.roa
File: 0E7MhDGmzpHxwioCsSy7Zz5Ge98.roa (raw, json)
Hash identifier: 3Fc6UJ/Tvu59qYvnyZDDeEXNcRVgbLu+bp12Sa71e/Y=
Subject key identifier: D0:4E:CC:84:31:A6:CE:91:F1:C2:2A:02:B1:2C:BB:67:3E:46:7B:DF
Certificate issuer: /CN=81cca9f15e1921953a628c8ad2ac4be977b6c303
Certificate serial: 01856F42F060F25008F636B0911030AD647A
Authority key identifier: 81:CC:A9:F1:5E:19:21:95:3A:62:8C:8A:D2:AC:4B:E9:77:B6:C3:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/0E7MhDGmzpHxwioCsSy7Zz5Ge98.roa
Signing time: Sun 01 Jan 2023 21:35:35 +0000
ROA not before: Sun 01 Jan 2023 21:35:35 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206675
IP address blocks: 77.104.100.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:42:f0:60:f2:50:08:f6:36:b0:91:10:30:ad:64:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81cca9f15e1921953a628c8ad2ac4be977b6c303
Validity
Not Before: Jan 1 21:35:35 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d04ecc8431a6ce91f1c22a02b12cbb673e467bdf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:bd:5c:1d:d2:43:93:a8:a2:9d:86:74:d8:76:
2c:78:65:84:53:e6:c3:e1:1b:09:3b:a9:9f:8b:6c:
1a:a5:2c:3e:71:35:2a:f0:5d:24:76:a8:c1:1b:9f:
56:af:90:0b:3b:93:2d:d9:b8:e1:d4:7c:0b:a6:f1:
04:89:7f:b4:46:fd:25:87:19:2e:51:53:2c:7b:16:
0f:4b:a9:d6:9f:4b:e2:5d:70:39:98:cf:34:7d:84:
65:ef:9e:58:94:a5:eb:19:28:ef:c4:01:8d:32:c5:
c3:88:ab:c4:10:44:1e:a8:f0:f0:99:14:92:e1:25:
44:60:e0:da:a9:b2:0a:0e:41:5e:4a:be:a6:51:04:
c2:a1:58:0e:82:82:41:44:76:6e:22:8a:34:70:73:
92:31:2c:ea:7b:e3:f9:66:20:e1:ac:56:b1:bc:5e:
9a:27:cd:64:bf:1e:bf:a2:70:3b:67:24:cf:c2:97:
1f:11:84:c9:8c:58:c7:2c:59:d4:93:cf:09:ef:ba:
46:e0:70:ad:b4:6d:bb:ab:15:a8:c6:6d:a4:21:3b:
3c:53:3b:1e:ee:72:11:bf:e6:04:49:e0:aa:ec:50:
3b:f9:5e:3b:51:d5:03:74:91:d6:37:78:3e:25:0f:
c9:57:fa:cb:8d:21:b7:67:5c:a7:b9:01:96:88:08:
ec:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:4E:CC:84:31:A6:CE:91:F1:C2:2A:02:B1:2C:BB:67:3E:46:7B:DF
X509v3 Authority Key Identifier:
keyid:81:CC:A9:F1:5E:19:21:95:3A:62:8C:8A:D2:AC:4B:E9:77:B6:C3:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/0E7MhDGmzpHxwioCsSy7Zz5Ge98.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.104.100.0/24
Signature Algorithm: sha256WithRSAEncryption
73:0b:45:24:4b:be:19:39:e4:b4:5f:b0:9c:87:00:25:ac:b0:
e0:19:36:a5:5d:b8:9b:58:1e:a7:fa:a3:6c:8d:d2:ed:8c:03:
ac:7d:fa:ff:66:af:18:62:46:e9:30:e4:dd:7b:15:1a:11:e3:
48:38:4f:6b:9d:b0:2c:a5:ae:42:39:03:56:66:54:23:43:8d:
b8:40:f8:fb:7f:e8:74:fc:2c:f4:b7:10:af:59:d4:5a:64:9d:
52:2e:9c:ce:c4:a1:05:d9:53:0a:44:8c:17:b1:73:38:f0:fd:
e2:51:59:4b:f4:29:44:2c:ee:50:6e:5d:bb:b0:f5:fc:dd:00:
0f:6d:06:4f:47:50:93:00:39:a9:a1:45:d3:52:ff:b2:83:fc:
15:28:96:6a:32:78:74:83:28:68:51:84:23:56:35:8c:c2:96:
01:0c:c1:fe:74:64:fd:1c:0a:f8:9c:da:06:ad:1b:a4:ba:c3:
b4:e2:c1:30:0b:4a:b8:eb:af:3c:a6:76:21:5f:31:8e:51:b4:
87:1a:b2:01:6a:41:17:56:b1:7f:a6:04:63:c3:a5:5b:a3:6d:
21:c4:18:1a:87:b3:ee:1f:27:24:6b:2f:f0:e3:2d:f7:7d:c0:
16:1b:f6:33:fb:ba:89:58:d7:14:0a:90:d1:db:f6:79:63:f5:
0e:df:5b:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:31 2024 by rpki-client on console-fra.rpki-client.org