Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/207b40-5fff-4f43-8b82-103b9f327924/1/kqMXGnAcJ53mYHercjUj53uHs6s.roa
File: kqMXGnAcJ53mYHercjUj53uHs6s.roa (raw, json)
Hash identifier: e7megvB8+vLIHxx6Bb7rmv1Uq8ZmKzooaL/pCC+jXM4=
Subject key identifier: 92:A3:17:1A:70:1C:27:9D:E6:60:77:AB:72:35:23:E7:7B:87:B3:AB
Certificate issuer: /CN=0e1fb63628fe3a11065189bdcf1357fbfc06dade
Certificate serial: 01856ED4A1712A40C8BB9E23B443161F7C8C
Authority key identifier: 0E:1F:B6:36:28:FE:3A:11:06:51:89:BD:CF:13:57:FB:FC:06:DA:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Dh-2Nij-OhEGUYm9zxNX-_wG2t4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/207b40-5fff-4f43-8b82-103b9f327924/1/kqMXGnAcJ53mYHercjUj53uHs6s.roa
Signing time: Sun 01 Jan 2023 19:35:06 +0000
ROA not before: Sun 01 Jan 2023 19:35:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 27970
IP address blocks: 77.83.58.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:30:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:d4:a1:71:2a:40:c8:bb:9e:23:b4:43:16:1f:7c:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e1fb63628fe3a11065189bdcf1357fbfc06dade
Validity
Not Before: Jan 1 19:35:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=92a3171a701c279de66077ab723523e77b87b3ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:b2:04:02:e0:a5:7f:32:56:8a:1e:e3:26:d0:
9c:9c:99:0c:18:21:57:7e:9b:21:72:12:83:4d:cd:
65:a5:73:a2:09:99:e7:bf:5a:62:17:64:4d:9e:71:
49:98:12:eb:60:05:84:6b:8b:56:7c:ca:28:7d:bd:
57:cb:97:43:bf:6b:46:ee:60:34:40:f3:73:81:e1:
92:03:9b:f7:a2:4f:29:fe:64:7c:22:1b:82:9a:a7:
6d:6c:f0:ac:a3:26:bf:0e:b6:a1:3f:b8:f2:7a:31:
4b:bd:d4:5a:2a:17:b3:89:13:f6:5c:e3:3b:ef:7d:
f6:72:f0:fb:78:c1:4b:a9:d2:2a:01:9b:ab:41:19:
3f:b5:5c:56:8d:66:5b:b9:5a:f6:da:f3:1a:a0:f7:
0c:31:1c:b3:e9:95:dc:6e:d2:43:b7:54:0e:26:7f:
22:9f:41:51:64:7a:18:43:c3:ec:30:f0:fa:82:45:
17:bf:70:b4:f5:5b:89:20:3f:4c:54:7c:ff:d2:5e:
95:33:55:8b:20:cf:eb:a3:11:46:3e:04:19:81:8d:
ab:c3:3b:60:d9:b4:5f:33:d5:3f:10:a1:62:f9:79:
47:13:87:6d:ad:1b:9d:24:3c:92:4f:4a:64:d9:98:
25:43:cd:d7:b4:0c:ca:15:46:07:20:6a:04:81:2f:
58:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:A3:17:1A:70:1C:27:9D:E6:60:77:AB:72:35:23:E7:7B:87:B3:AB
X509v3 Authority Key Identifier:
keyid:0E:1F:B6:36:28:FE:3A:11:06:51:89:BD:CF:13:57:FB:FC:06:DA:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Dh-2Nij-OhEGUYm9zxNX-_wG2t4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/207b40-5fff-4f43-8b82-103b9f327924/1/kqMXGnAcJ53mYHercjUj53uHs6s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/207b40-5fff-4f43-8b82-103b9f327924/1/Dh-2Nij-OhEGUYm9zxNX-_wG2t4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.83.58.0/24
Signature Algorithm: sha256WithRSAEncryption
51:4c:3a:9b:58:cb:51:11:36:a0:42:b8:e3:2f:91:3f:bf:28:
53:8c:d2:4b:f0:a7:c6:b1:c9:3d:04:ff:d8:02:65:75:9e:b3:
6a:2f:a9:e2:c6:82:11:7b:7d:ff:45:d3:37:d6:db:da:a9:52:
2e:83:a4:01:f9:5f:c9:57:b9:94:09:83:09:69:cd:69:ce:a3:
95:af:3d:fb:94:17:bf:cf:85:48:64:f8:36:e3:2e:f7:bf:85:
75:24:91:8b:a7:c0:33:b7:12:ba:7c:a5:c8:a5:89:01:e5:32:
22:20:29:2a:87:4e:de:6f:ca:e3:b9:e4:d8:94:bf:03:e8:66:
fa:e6:cb:1b:62:19:50:cf:e2:bd:9a:2a:76:a2:e1:8c:2e:fa:
37:c8:dc:1d:88:3c:af:3b:c8:a0:1f:ba:84:b7:d4:b3:93:01:
36:72:bc:7d:6d:6e:91:65:59:e5:e7:09:5c:a4:c5:e4:07:c9:
72:4f:44:08:43:af:4b:26:e5:61:99:2a:d5:48:2e:a9:33:bd:
90:2f:80:7c:37:c4:6d:84:73:b2:19:30:ac:48:f6:e2:80:82:
84:e4:63:c5:43:c0:4f:0e:97:1d:05:93:de:ca:d9:d0:06:88:
49:93:71:0d:f4:1a:30:61:1b:9f:1a:93:b9:82:2f:b6:84:60:
ae:10:14:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:02 2024 by rpki-client on console-ams.rpki-client.org