Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/fe59a1-2a56-4694-b4c7-d80b3c1f9d73/1/WQqeWCE7yU0SHJRQo3H-6Ikvlno.roa
File: WQqeWCE7yU0SHJRQo3H-6Ikvlno.roa (raw, json)
Hash identifier: Y45PdyB2MTf3/5d9QV093ZLZxxJXqEQGJUJKnUifS+I=
Subject key identifier: 59:0A:9E:58:21:3B:C9:4D:12:1C:94:50:A3:71:FE:E8:89:2F:96:7A
Certificate issuer: /CN=8e045bfecd2bbe24d33f5309db47c8aa77a3b10c
Certificate serial: 01856DEF759F3D2F2D7B0BF8A334E75EF360
Authority key identifier: 8E:04:5B:FE:CD:2B:BE:24:D3:3F:53:09:DB:47:C8:AA:77:A3:B1:0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jgRb_s0rviTTP1MJ20fIqnejsQw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/fe59a1-2a56-4694-b4c7-d80b3c1f9d73/1/WQqeWCE7yU0SHJRQo3H-6Ikvlno.roa
Signing time: Sun 01 Jan 2023 15:24:47 +0000
ROA not before: Sun 01 Jan 2023 15:24:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12447
IP address blocks: 77.75.24.0/21 maxlen: 24
185.132.96.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:ef:75:9f:3d:2f:2d:7b:0b:f8:a3:34:e7:5e:f3:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e045bfecd2bbe24d33f5309db47c8aa77a3b10c
Validity
Not Before: Jan 1 15:24:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=590a9e58213bc94d121c9450a371fee8892f967a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:15:73:91:8f:d7:aa:ff:a7:33:ab:e4:2e:07:
57:0b:ea:8c:ff:46:0b:0b:fd:e3:90:a8:e8:53:7f:
89:89:f9:d6:7e:f0:ea:08:b4:c5:5b:63:bd:7f:a8:
f9:c2:8e:f1:f6:50:17:96:15:b2:3e:13:8e:2b:09:
6e:9d:06:56:e2:ec:47:ae:1d:5c:dd:1d:15:7e:2a:
a3:5b:ce:44:d0:b8:f4:d3:40:dd:37:ea:1a:f5:07:
95:73:79:bc:23:4d:5a:51:5f:5b:42:5f:56:69:63:
34:d4:95:1d:ed:e4:bf:99:cd:20:40:7b:5b:45:fd:
d8:02:1a:82:50:c8:9e:7a:c0:02:70:78:af:d9:39:
cf:a3:21:40:c2:ac:b9:96:ac:8b:1a:29:db:c4:0d:
eb:c3:13:17:5a:79:52:12:6d:ec:87:00:93:cb:0a:
a0:14:91:30:73:00:01:1f:7b:2c:71:a5:34:8c:5a:
b6:1e:d4:6a:d6:75:24:42:3e:7f:88:8e:d4:d2:50:
69:44:6e:12:d2:8a:a3:3f:c0:27:34:c1:bf:6d:7a:
89:64:76:ff:a9:ad:1d:57:5d:e1:2f:4d:46:9a:4f:
e9:f8:c4:e3:3e:f7:49:b1:9f:0e:d9:7b:3c:4f:f1:
0e:d3:4a:1e:8f:67:fb:74:cf:e3:27:57:49:af:e9:
75:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:0A:9E:58:21:3B:C9:4D:12:1C:94:50:A3:71:FE:E8:89:2F:96:7A
X509v3 Authority Key Identifier:
keyid:8E:04:5B:FE:CD:2B:BE:24:D3:3F:53:09:DB:47:C8:AA:77:A3:B1:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jgRb_s0rviTTP1MJ20fIqnejsQw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/fe59a1-2a56-4694-b4c7-d80b3c1f9d73/1/WQqeWCE7yU0SHJRQo3H-6Ikvlno.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/fe59a1-2a56-4694-b4c7-d80b3c1f9d73/1/jgRb_s0rviTTP1MJ20fIqnejsQw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.75.24.0/21
185.132.96.0/22
Signature Algorithm: sha256WithRSAEncryption
b1:41:59:d8:03:32:93:c4:a7:39:c8:e1:a9:49:0f:ae:a6:52:
50:e6:d8:21:15:a3:9e:68:2e:9f:49:1a:24:c2:91:18:27:ac:
1b:cb:73:87:40:ef:ed:08:82:27:19:6d:2a:18:1e:ed:6c:fe:
d7:76:46:43:1d:f3:16:3b:27:42:3e:f4:12:44:de:49:f5:6d:
d6:db:f0:4a:30:d5:08:12:9f:73:70:24:ec:b3:4a:bd:cd:44:
2d:14:8e:70:75:ac:4a:be:64:cf:d0:70:fe:44:5d:86:87:71:
b7:08:b6:20:e8:24:09:62:31:42:68:1a:71:75:57:c8:4c:21:
5a:a7:dc:7f:ea:7d:be:a8:73:45:c6:7d:ef:70:35:5b:8f:4a:
d2:74:91:5b:3c:12:6e:a3:bd:d6:2e:70:ad:fd:77:a1:0d:b1:
e2:ce:c8:c9:5f:d6:82:ec:86:f3:8c:66:57:91:bf:9c:92:d6:
58:98:bc:6e:f4:f3:9e:29:37:87:53:64:43:00:1b:6e:6e:ca:
f5:3b:b9:3d:78:d9:9b:fc:1f:dd:8b:a6:3c:02:d2:a0:9d:e1:
60:ce:80:4e:90:e0:84:d6:bc:53:86:18:16:87:51:9c:8a:da:
74:62:4a:77:46:c7:45:b4:1d:3d:b8:17:2f:b4:08:a5:87:f3:
6f:af:7a:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:41 2024 by rpki-client on console-ams.rpki-client.org