Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/207b40-5fff-4f43-8b82-103b9f327924/1/IKioLTFIz35gpRd7ySOuijhsXac.roa
File: IKioLTFIz35gpRd7ySOuijhsXac.roa (raw, json)
Hash identifier: ozbFAcPtCtbfX0Sz3/ayUfIl8mVe8jRdp8kjValfgeM=
Subject key identifier: 20:A8:A8:2D:31:48:CF:7E:60:A5:17:7B:C9:23:AE:8A:38:6C:5D:A7
Certificate issuer: /CN=0e1fb63628fe3a11065189bdcf1357fbfc06dade
Certificate serial: 01856ED4A1CE5B2E4A653F35D35F597DC33A
Authority key identifier: 0E:1F:B6:36:28:FE:3A:11:06:51:89:BD:CF:13:57:FB:FC:06:DA:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Dh-2Nij-OhEGUYm9zxNX-_wG2t4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/207b40-5fff-4f43-8b82-103b9f327924/1/IKioLTFIz35gpRd7ySOuijhsXac.roa
Signing time: Sun 01 Jan 2023 19:35:06 +0000
ROA not before: Sun 01 Jan 2023 19:35:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204776
IP address blocks: 77.83.58.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:30:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:d4:a1:ce:5b:2e:4a:65:3f:35:d3:5f:59:7d:c3:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e1fb63628fe3a11065189bdcf1357fbfc06dade
Validity
Not Before: Jan 1 19:35:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=20a8a82d3148cf7e60a5177bc923ae8a386c5da7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:44:43:ea:2b:d5:a3:67:1d:0a:98:04:c7:8b:
35:0f:be:ed:50:4c:13:6c:5f:1d:f2:a4:98:f6:55:
4d:81:59:b6:9d:8b:f7:9d:2e:0d:89:87:2b:f4:b1:
5b:b0:fd:95:dd:b4:82:b5:f5:fa:58:ba:e1:9b:81:
4c:73:65:d0:c9:a8:60:f0:8b:fb:44:17:c4:49:1e:
36:b5:c3:e5:ae:17:89:7b:06:c3:cf:b4:d4:7c:7f:
96:0d:0b:5b:81:16:16:05:37:ea:7c:f5:28:38:aa:
eb:65:6d:b8:fc:9d:60:ce:10:ef:8a:67:06:e8:de:
a9:b4:aa:46:c4:3b:96:7f:e5:eb:44:d7:e7:99:4b:
83:e8:03:ea:df:73:68:6d:4e:47:5c:ee:8d:2f:e5:
2a:79:a7:bd:0f:10:e9:b6:01:2d:4d:f9:ce:68:b6:
fb:59:a4:e3:97:56:75:49:8c:89:d3:10:9c:6c:8c:
f0:10:8a:ba:d3:9c:e5:89:f7:ad:bc:60:52:c5:d1:
0e:79:30:f8:f2:dc:b0:5f:77:f6:a7:88:a9:50:1c:
bb:0e:ff:ac:43:ad:7b:0e:33:97:c6:69:c0:de:71:
2a:37:2d:d0:e8:59:dc:0a:15:e0:a7:93:fd:b8:98:
ec:1a:b9:42:7c:4b:3f:5a:a7:2b:78:37:21:3e:61:
81:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:A8:A8:2D:31:48:CF:7E:60:A5:17:7B:C9:23:AE:8A:38:6C:5D:A7
X509v3 Authority Key Identifier:
keyid:0E:1F:B6:36:28:FE:3A:11:06:51:89:BD:CF:13:57:FB:FC:06:DA:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Dh-2Nij-OhEGUYm9zxNX-_wG2t4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/207b40-5fff-4f43-8b82-103b9f327924/1/IKioLTFIz35gpRd7ySOuijhsXac.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/207b40-5fff-4f43-8b82-103b9f327924/1/Dh-2Nij-OhEGUYm9zxNX-_wG2t4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.83.58.0/24
Signature Algorithm: sha256WithRSAEncryption
09:ee:58:a9:2d:30:16:16:00:54:be:c5:16:53:42:0c:2b:08:
ab:a3:32:4c:ba:8f:74:ed:bd:34:b2:ae:cb:28:f8:e4:cf:eb:
71:df:37:a6:30:73:27:5e:2a:04:db:b9:fd:0a:70:ab:ce:14:
73:67:82:65:f6:f9:b8:d1:6c:b4:e7:c0:fc:ea:eb:d7:b3:1c:
47:ee:24:49:06:0e:ba:b4:ea:d6:7d:f1:75:82:d5:47:0a:70:
3e:5e:a3:6c:dc:9e:14:19:0a:88:96:50:23:43:a8:ae:35:8c:
0c:a3:46:be:51:6a:46:ba:f0:08:8a:d6:ec:7d:27:e2:10:8c:
fe:08:f1:21:c0:10:ba:76:30:5c:7d:18:68:95:50:c1:fc:0a:
5a:04:48:9a:e5:26:b5:0c:8e:fd:40:02:1d:3a:98:ad:77:fb:
52:af:26:50:d0:25:f5:25:21:9c:4f:91:ed:87:c9:eb:89:47:
69:00:7a:e5:44:33:d7:9f:be:37:98:0a:14:01:12:ab:e6:9b:
16:00:d5:e6:c1:59:8b:66:c2:94:76:1e:6e:50:d0:aa:23:e9:
fd:c7:d5:ce:bf:61:2a:5c:6a:bb:04:9f:a3:be:e1:0d:74:f4:
86:ec:34:3e:e6:98:d6:f5:3a:ad:d2:8c:8b:e4:fb:23:83:9d:
4e:aa:21:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:09 2024 by rpki-client on console-fra.rpki-client.org