Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/v9N0kJflDXsAWTI2C_sBbNAPVSQ.roa
File: v9N0kJflDXsAWTI2C_sBbNAPVSQ.roa (raw, json)
Hash identifier: od2mbBYYPuZ/f5u67LNX3uS7g+abtDo0qUOGHgSjtJE=
Subject key identifier: BF:D3:74:90:97:E5:0D:7B:00:59:32:36:0B:FB:01:6C:D0:0F:55:24
Certificate issuer: /CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda
Certificate serial: 01892C440996413F4AA753B88D2695EA21FB
Authority key identifier: D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/v9N0kJflDXsAWTI2C_sBbNAPVSQ.roa
Signing time: Thu 06 Jul 2023 17:33:23 +0000
ROA not before: Thu 06 Jul 2023 17:33:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1239
IP address blocks: 77.74.229.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 17 Jul 2023 21:32:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:2c:44:09:96:41:3f:4a:a7:53:b8:8d:26:95:ea:21:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda
Validity
Not Before: Jul 6 17:33:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bfd3749097e50d7b005932360bfb016cd00f5524
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:3d:7f:a1:58:0b:d3:41:26:a8:b3:09:3b:e9:
c8:6b:b5:1e:3b:bb:c3:88:b1:89:9d:cf:67:af:9d:
d2:2a:09:08:8d:21:bd:37:b5:b9:1d:32:9c:5b:36:
b4:f3:a3:99:87:94:55:9e:cd:61:70:f6:73:43:be:
1f:a6:f1:c6:c7:b8:c6:29:5a:f7:a2:9f:5b:71:98:
c3:fe:01:6e:eb:ac:85:69:bf:d6:6e:4a:6a:fe:97:
f9:a8:44:c1:c6:17:78:73:1e:09:8b:eb:46:d0:97:
eb:66:93:c6:ec:51:7b:40:df:93:c9:b7:ad:ab:e3:
8d:a4:02:ca:cd:c3:35:95:ab:1c:8c:1b:3d:d0:11:
3f:90:09:fe:87:6e:b9:7d:e4:1a:59:40:7e:4a:02:
a7:82:fe:42:5a:b3:06:d0:19:07:e1:9c:22:90:ac:
c3:2b:dd:8f:e8:5e:0d:5d:b4:c9:26:a8:25:ca:57:
5a:df:e8:c8:49:45:ce:cf:5f:d2:e1:92:2a:0e:76:
e9:05:d0:e4:71:eb:00:23:4b:89:12:66:a3:93:c5:
2e:a1:b3:06:4b:cd:89:d3:e3:79:c4:a3:d7:d5:66:
8b:42:4a:86:c0:d7:03:cd:a1:ba:be:1e:54:0b:19:
dd:f8:44:ba:54:a5:ce:ea:74:d3:0c:bf:68:68:86:
8d:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:D3:74:90:97:E5:0D:7B:00:59:32:36:0B:FB:01:6C:D0:0F:55:24
X509v3 Authority Key Identifier:
keyid:D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/v9N0kJflDXsAWTI2C_sBbNAPVSQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/2MYKDS1wqTN9C9pW0a1ZasH2nNo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.74.229.0/24
Signature Algorithm: sha256WithRSAEncryption
31:9e:51:52:2a:e9:71:89:7f:b3:1e:e9:c5:e9:7d:88:6f:87:
60:42:e3:30:1c:3b:65:0d:9d:69:6e:d9:5d:8f:dd:43:45:8a:
b6:dd:78:82:69:c6:56:2e:0c:eb:4a:fe:86:e3:19:ea:25:76:
df:31:00:26:8e:b9:10:44:b6:f4:aa:cd:8e:93:08:cb:75:2d:
84:a5:69:cb:82:0c:59:83:cd:0f:bf:8e:90:d7:f4:27:b4:50:
e7:cb:d9:88:b7:18:0c:c2:f3:64:1f:e8:80:a5:a4:30:36:a5:
c7:d6:da:bb:8c:96:ae:76:ca:71:66:5c:07:e3:ed:d6:ba:fe:
26:48:13:81:34:aa:13:bd:4c:16:92:6e:c7:c0:17:ac:34:af:
72:16:9f:91:b5:23:5c:57:15:39:05:64:8a:17:5c:82:fd:a4:
01:07:02:76:eb:cd:dd:b2:db:13:fb:75:e1:da:05:76:d1:d0:
df:ab:8a:27:59:23:5e:5d:dd:03:ee:a6:ba:48:aa:8a:1c:64:
07:30:e3:c7:b2:17:64:f8:4b:c5:bd:26:d9:c2:6a:0e:9f:dc:
a4:fe:81:e0:41:70:7c:1e:fd:7c:37:d3:c5:eb:32:77:ce:22:
6c:31:54:73:10:fe:15:22:c7:39:1b:c0:5b:68:17:12:26:ca:
6b:f9:34:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:36 2024 by rpki-client on console-fra.rpki-client.org