Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/c55ab0-ea22-4a19-8b33-25050c593aa1/1/3-PlmzJ2UBh78HVLjFRa4VmDN3g.roa
File: 3-PlmzJ2UBh78HVLjFRa4VmDN3g.roa (raw, json)
Hash identifier: yN/uU3r7izL9j1zUMK8rSGDvnPkmLQ4hzMGqSbopDis=
Subject key identifier: DF:E3:E5:9B:32:76:50:18:7B:F0:75:4B:8C:54:5A:E1:59:83:37:78
Certificate issuer: /CN=352ae33b11b36a319ba81347d852480d8e74c87d
Certificate serial: 01856B40CD12CA3433093915444B466A9E99
Authority key identifier: 35:2A:E3:3B:11:B3:6A:31:9B:A8:13:47:D8:52:48:0D:8E:74:C8:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NSrjOxGzajGbqBNH2FJIDY50yH0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/c55ab0-ea22-4a19-8b33-25050c593aa1/1/3-PlmzJ2UBh78HVLjFRa4VmDN3g.roa
Signing time: Sun 01 Jan 2023 02:54:47 +0000
ROA not before: Sun 01 Jan 2023 02:54:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209791
IP address blocks: 77.224.16.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 14:35:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:40:cd:12:ca:34:33:09:39:15:44:4b:46:6a:9e:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=352ae33b11b36a319ba81347d852480d8e74c87d
Validity
Not Before: Jan 1 02:54:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dfe3e59b327650187bf0754b8c545ae159833778
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:7a:4c:71:3f:e4:50:94:75:9a:d4:94:7a:b8:
d5:54:f6:74:59:2f:3d:a7:bc:4f:f5:b8:de:d8:2f:
5d:89:71:63:07:cb:f6:c4:63:42:f7:87:a5:af:20:
ab:33:4f:1e:37:27:04:c0:fa:8f:e4:be:f7:5e:b0:
41:2e:78:d9:51:60:28:83:f4:2e:0f:f9:61:f6:40:
2e:c3:ac:65:e4:88:c7:25:8a:12:c8:c8:6a:af:c0:
11:95:55:52:d9:97:bd:d7:c8:ff:53:52:4d:8a:a5:
b3:f3:5d:4f:8e:8d:88:49:1f:11:0a:34:00:b6:49:
1b:87:25:56:58:52:89:89:1c:b8:a4:bb:b7:67:45:
4c:bc:4a:25:57:53:3e:8e:e4:a3:22:13:d1:2b:c8:
8a:ce:c6:35:2e:1a:20:22:4d:eb:fb:7c:e4:48:ce:
50:eb:db:66:f3:5e:09:f2:68:bb:ef:e7:45:8e:7c:
bb:21:ce:76:c3:91:8b:56:aa:e0:e1:e6:9e:4f:84:
09:7f:9b:13:ad:b4:dc:0d:62:d6:eb:59:ae:be:85:
43:28:5a:68:47:8b:e6:8f:c9:20:6b:a0:a5:b3:18:
dd:a5:6a:f4:ef:3e:5c:9a:6f:a9:a1:67:b7:ba:c9:
e3:05:19:83:b1:23:a8:3f:a8:28:2a:52:c5:80:86:
7b:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:E3:E5:9B:32:76:50:18:7B:F0:75:4B:8C:54:5A:E1:59:83:37:78
X509v3 Authority Key Identifier:
keyid:35:2A:E3:3B:11:B3:6A:31:9B:A8:13:47:D8:52:48:0D:8E:74:C8:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NSrjOxGzajGbqBNH2FJIDY50yH0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/c55ab0-ea22-4a19-8b33-25050c593aa1/1/3-PlmzJ2UBh78HVLjFRa4VmDN3g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/c55ab0-ea22-4a19-8b33-25050c593aa1/1/NSrjOxGzajGbqBNH2FJIDY50yH0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.224.16.0/24
Signature Algorithm: sha256WithRSAEncryption
99:d8:42:89:2a:29:57:b6:e6:1b:5c:aa:e2:52:4f:2d:80:75:
34:ed:ec:fa:d8:23:4a:df:80:aa:25:e8:7b:4b:88:8f:d0:25:
4d:0a:72:a8:4f:74:4e:fc:22:c3:e8:d2:b8:8e:39:06:59:20:
5e:e9:41:86:e8:e1:30:6a:8e:67:f2:28:88:b5:e5:5a:60:46:
b5:fd:ba:33:d8:6c:0d:09:db:d5:0a:5e:4b:e7:64:99:ae:b2:
4b:51:e9:43:7d:ed:49:22:6e:59:16:ac:5f:42:14:fe:ab:cc:
de:60:71:df:0c:aa:bc:1f:86:7c:4e:28:49:28:bb:0f:8c:e9:
8a:fa:58:ec:06:22:90:5e:5d:ef:a3:6e:b2:42:7a:d8:b3:1c:
3a:30:7d:1a:69:1f:f0:36:3c:57:07:52:77:28:2b:7c:51:a6:
f8:b4:11:65:30:30:32:3d:98:ee:79:84:32:64:ac:5e:e3:5c:
36:57:51:e6:eb:df:8a:78:85:63:5c:b5:61:00:cf:6f:e8:f8:
a5:5b:51:cd:ca:a7:e9:3d:66:1f:c8:f4:cd:ff:2e:9d:28:0e:
41:52:51:24:ed:e9:a8:a2:84:bc:6a:ee:41:3b:4f:d0:9a:6f:
5d:e3:0c:9e:2f:0c:ed:28:14:bb:7b:00:e3:bc:f5:92:36:91:
cc:a8:44:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:01 2024 by rpki-client on console-fra.rpki-client.org