Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/jMiD2GWZVdq8D8w68cQVsJ_-eGc.roa
File: jMiD2GWZVdq8D8w68cQVsJ_-eGc.roa (raw, json)
Hash identifier: HcbqcLpcyMVljaDXf4C+RZGq7nn0GJnzBKJn7wfyqlA=
Subject key identifier: 8C:C8:83:D8:65:99:55:DA:BC:0F:CC:3A:F1:C4:15:B0:9F:FE:78:67
Certificate issuer: /CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda
Certificate serial: 018E13454F5E2F89E3502DE191F6C15B5647
Authority key identifier: D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/jMiD2GWZVdq8D8w68cQVsJ_-eGc.roa
Signing time: Wed 06 Mar 2024 10:18:13 +0000
ROA not before: Wed 06 Mar 2024 10:18:13 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 77.74.231.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 08 Mar 2024 16:06:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:13:45:4f:5e:2f:89:e3:50:2d:e1:91:f6:c1:5b:56:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda
Validity
Not Before: Mar 6 10:18:13 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8cc883d8659955dabc0fcc3af1c415b09ffe7867
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:9d:2b:80:dd:83:16:77:37:27:68:28:1d:54:
84:96:0e:58:f7:36:d9:ee:6e:92:a3:d3:10:a6:4e:
d2:39:52:7f:20:cc:cc:a2:b7:34:67:95:6c:4b:f2:
64:50:d3:9d:26:19:b9:f9:40:2d:ad:e0:7b:20:bc:
b0:44:75:0f:ee:d9:f0:a7:3b:ce:c9:c4:cc:f8:de:
8f:16:e4:66:d5:bd:68:1d:2f:0b:70:1d:a9:f1:e1:
ad:4d:fe:9b:f9:b6:7e:2c:62:6b:5e:7c:98:06:6d:
3d:17:3e:ef:06:f0:90:c0:61:99:2e:46:59:07:e2:
ab:be:cc:11:fc:8a:23:42:52:9b:57:46:6d:6e:8f:
46:65:32:27:23:6a:30:dd:c2:b0:ee:12:a6:e4:7c:
4a:13:5f:e9:38:13:b3:a5:97:39:5e:c4:3e:4a:0c:
10:a8:8a:c1:22:06:01:54:4c:46:99:f0:09:12:52:
3b:a8:67:e8:de:d7:3f:2e:93:ad:06:ce:51:84:8d:
0c:f9:7b:00:8c:2a:8d:9d:69:49:6c:c9:e3:a7:67:
16:b5:36:23:20:e3:95:8f:9f:26:03:99:71:c2:7e:
2f:49:7f:d5:bd:07:77:78:6c:3a:c0:5c:b7:0a:f0:
e2:7a:c0:f5:a2:43:58:a1:67:99:9b:3c:0d:2a:4e:
c3:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:C8:83:D8:65:99:55:DA:BC:0F:CC:3A:F1:C4:15:B0:9F:FE:78:67
X509v3 Authority Key Identifier:
keyid:D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/jMiD2GWZVdq8D8w68cQVsJ_-eGc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/2MYKDS1wqTN9C9pW0a1ZasH2nNo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.74.231.0/24
Signature Algorithm: sha256WithRSAEncryption
26:de:0d:c4:cc:98:3b:79:e5:e5:e9:2f:07:21:28:25:ce:8c:
d7:64:f5:58:84:25:17:de:cf:25:c1:d9:05:de:ee:df:2f:df:
61:c1:85:4e:4c:23:e6:45:72:18:ba:70:23:0a:06:df:d3:76:
8b:58:d2:9d:b8:c0:9c:7a:a0:8c:fe:3b:b4:e9:94:28:20:54:
77:14:96:82:0f:e7:40:e3:1f:5d:4c:06:88:ee:4c:fc:82:51:
0e:ae:9c:0a:f0:ee:74:4d:c7:8c:dc:ff:65:4a:cb:b2:40:88:
18:4c:d7:dd:cf:7e:d2:f7:5d:9c:db:56:5c:2b:27:c4:6b:90:
38:19:4b:26:aa:51:22:97:27:20:60:f3:37:3e:a9:a8:75:87:
1f:3f:4a:3e:a8:2f:5f:b2:4f:7d:5e:57:51:64:1c:1e:ab:7f:
90:09:45:0b:40:6b:3b:e4:62:fa:b4:04:9b:4a:15:09:d2:68:
82:3e:6a:ee:14:40:69:90:12:2b:7a:d7:80:be:4f:83:b7:59:
0c:07:5e:a0:dd:83:2a:d2:87:bd:ef:51:f5:b3:3e:4e:fd:a9:
d3:99:9a:66:f8:45:89:e1:47:ee:43:8e:f9:7d:2e:b9:f3:25:
ce:77:2c:47:2b:b4:ba:c5:25:2b:b2:41:45:3a:f1:88:36:62:
bc:12:46:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:36 2024 by rpki-client on console-fra.rpki-client.org