Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/8S88g0NfM1LQ0DRixE57pT_AdhI.roa
File: 8S88g0NfM1LQ0DRixE57pT_AdhI.roa (raw, json)
Hash identifier: 5gzirpMd4CvO+x7xlr4yI7DWuzBLgt7GKTgXydR2YKo=
Subject key identifier: F1:2F:3C:83:43:5F:33:52:D0:D0:34:62:C4:4E:7B:A5:3F:C0:76:12
Certificate issuer: /CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda
Certificate serial: 018965C53D3F07E70C17A11A290B89362F34
Authority key identifier: D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/8S88g0NfM1LQ0DRixE57pT_AdhI.roa
Signing time: Mon 17 Jul 2023 21:32:52 +0000
ROA not before: Mon 17 Jul 2023 21:32:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1239
IP address blocks: 77.74.229.0/24 maxlen: 24
109.105.193.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 06 Aug 2023 01:24:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:65:c5:3d:3f:07:e7:0c:17:a1:1a:29:0b:89:36:2f:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda
Validity
Not Before: Jul 17 21:32:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f12f3c83435f3352d0d03462c44e7ba53fc07612
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:5b:5b:c9:c8:3e:f5:29:de:15:28:4e:1d:aa:
6d:99:e6:47:76:fb:7f:a7:3c:c2:00:bc:73:08:29:
cb:05:dd:33:13:de:91:c2:ad:d5:84:ca:2d:80:67:
7f:d9:04:18:17:13:ac:c4:15:a9:73:45:75:90:bb:
c8:42:0b:d4:eb:ef:b9:53:46:6d:a8:d5:2f:df:2e:
70:97:5d:17:9e:a0:89:9b:60:02:be:aa:ed:36:a7:
43:14:1d:0f:f0:1c:c3:40:11:37:b5:d4:c9:d9:da:
cd:68:a2:85:e7:13:95:da:e4:36:48:a2:2a:10:ea:
fd:2f:88:57:44:57:e7:09:dd:df:c7:29:d1:4b:3d:
34:ec:89:f7:b5:57:9c:c3:8d:82:e3:40:cc:9d:56:
51:29:f1:27:e0:1d:a3:8c:38:a2:de:12:90:1b:3e:
2c:2d:71:99:50:ec:d8:cd:76:16:17:30:d8:4e:cd:
2d:72:76:b5:b7:66:72:19:78:a1:d8:e5:61:47:20:
80:9f:2a:3b:6d:c5:56:88:28:23:b1:e7:1c:75:a5:
79:db:3a:9b:83:54:2e:9c:00:de:b6:c9:9f:b5:26:
e7:0f:02:77:f5:52:e5:1a:c6:40:db:0c:34:4d:04:
fb:5c:c3:75:d1:24:47:e8:9c:db:70:95:dc:41:60:
68:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:2F:3C:83:43:5F:33:52:D0:D0:34:62:C4:4E:7B:A5:3F:C0:76:12
X509v3 Authority Key Identifier:
keyid:D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/8S88g0NfM1LQ0DRixE57pT_AdhI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/2MYKDS1wqTN9C9pW0a1ZasH2nNo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.74.229.0/24
109.105.193.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:a1:b3:bb:50:d6:47:1c:ca:a0:4d:cc:77:f4:c3:e1:73:23:
4f:bc:30:ff:a9:3b:79:1c:69:e5:62:02:59:5f:4a:e9:85:90:
6e:b2:1d:e2:8a:7b:14:2b:bf:ff:c0:a4:93:e0:db:fc:0c:fe:
94:a0:b0:bc:dc:9e:b0:b1:75:39:f0:5e:07:38:17:30:6d:8a:
b2:78:d1:56:19:24:a6:4f:7f:f8:fc:e6:b7:06:59:d8:eb:a6:
c1:de:88:18:8b:e2:55:2a:92:9e:e8:41:50:cc:f3:ba:76:b5:
86:50:42:c2:3a:60:d9:31:0f:10:4d:1d:c6:31:62:d1:9e:78:
c2:92:36:de:69:72:4d:a5:3a:3b:7f:f2:09:e0:df:ee:75:c0:
19:1e:87:bf:46:6e:72:7c:2c:ce:de:4a:83:e9:05:7a:88:da:
0b:b1:ed:a2:a3:69:a8:6a:0b:e9:6e:23:06:06:82:44:4f:60:
32:a8:1b:74:cc:a9:c9:ca:29:0e:e7:16:fe:30:4e:5a:fc:83:
a3:44:a2:1f:8d:2b:78:40:16:2d:45:67:7d:1e:73:e7:12:c6:
33:a4:c3:e7:a4:bf:52:34:e6:05:8f:e8:a7:68:a4:b9:f3:28:
81:8f:35:e5:35:90:b4:77:42:4f:94:63:2c:4e:10:80:5c:83:
fd:d6:4e:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:28 2024 by rpki-client on console-ams.rpki-client.org