Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/3ed00a-15ee-4664-a7f1-a1b96b9b70f8/1/zAa4umKf-aVXnwzHBVM7neY1gMc.roa
File: zAa4umKf-aVXnwzHBVM7neY1gMc.roa (raw, json)
Hash identifier: xPKyLDWJvHcJYcxhGl1FOLPitaWIqvBYD7+xpHDbLcY=
Subject key identifier: CC:06:B8:BA:62:9F:F9:A5:57:9F:0C:C7:05:53:3B:9D:E6:35:80:C7
Certificate issuer: /CN=88add9b671f7a36eb2367e34fee4bcb13b8f66cc
Certificate serial: 018570CBE6254CDDF6FF1E135D9511303765
Authority key identifier: 88:AD:D9:B6:71:F7:A3:6E:B2:36:7E:34:FE:E4:BC:B1:3B:8F:66:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iK3ZtnH3o26yNn40_uS8sTuPZsw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/3ed00a-15ee-4664-a7f1-a1b96b9b70f8/1/zAa4umKf-aVXnwzHBVM7neY1gMc.roa
Signing time: Mon 02 Jan 2023 04:44:48 +0000
ROA not before: Mon 02 Jan 2023 04:44:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43877
IP address blocks: 87.99.77.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:cb:e6:25:4c:dd:f6:ff:1e:13:5d:95:11:30:37:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88add9b671f7a36eb2367e34fee4bcb13b8f66cc
Validity
Not Before: Jan 2 04:44:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cc06b8ba629ff9a5579f0cc705533b9de63580c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:50:1e:55:2c:1b:09:28:59:d8:5d:89:91:8b:
25:ab:63:27:48:2e:3b:ce:24:28:66:57:86:6b:6f:
36:bc:2e:ac:57:69:82:58:f4:04:b2:6f:de:ab:82:
d7:55:37:8d:86:c1:5b:b6:14:e8:e3:b4:14:76:4f:
90:c6:48:35:d7:fb:5e:b7:7d:5e:2a:39:1d:fc:41:
c8:52:c9:53:e9:14:fe:41:3f:40:4d:87:d9:60:1b:
85:98:96:a9:28:8e:09:b0:4d:21:e0:b5:bd:c6:b4:
f5:33:26:da:d4:0f:3b:97:7a:3a:36:c3:43:5e:79:
62:42:b6:9c:80:03:dc:2c:a0:6c:58:ef:01:a2:5e:
11:12:f5:f6:99:11:6c:93:3d:a0:ef:9b:73:55:e9:
4b:87:7f:af:de:91:df:a5:4b:40:62:b1:17:23:9d:
50:25:92:aa:8e:0b:a7:25:c3:7a:08:dd:e7:48:99:
77:23:0a:48:5a:7c:c7:15:82:50:0a:ea:94:df:fc:
a6:cc:b3:1b:b0:71:a6:a9:c8:a1:0b:11:62:e4:b6:
b4:52:47:ae:dc:5f:7f:b8:d8:41:14:5e:89:5b:23:
fc:df:9a:55:f9:18:54:01:f8:10:80:37:d8:b5:64:
32:d3:5d:2b:59:d6:4c:1d:d4:b5:bc:b3:4a:d4:3b:
8b:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:06:B8:BA:62:9F:F9:A5:57:9F:0C:C7:05:53:3B:9D:E6:35:80:C7
X509v3 Authority Key Identifier:
keyid:88:AD:D9:B6:71:F7:A3:6E:B2:36:7E:34:FE:E4:BC:B1:3B:8F:66:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iK3ZtnH3o26yNn40_uS8sTuPZsw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/3ed00a-15ee-4664-a7f1-a1b96b9b70f8/1/zAa4umKf-aVXnwzHBVM7neY1gMc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/3ed00a-15ee-4664-a7f1-a1b96b9b70f8/1/iK3ZtnH3o26yNn40_uS8sTuPZsw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.99.77.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:c1:18:22:41:59:b1:0f:89:3a:e8:81:8b:97:47:14:55:1a:
35:f8:ad:78:84:ce:59:a8:f0:d9:6a:1c:92:7c:26:85:2b:ae:
ee:fe:1b:7b:62:5a:1f:80:92:1b:ae:3e:c5:dd:cf:00:99:e2:
86:79:35:a9:d6:e3:76:f4:21:68:93:d6:69:31:4a:d7:aa:d2:
ae:6e:57:2c:6e:38:98:b7:37:7f:c1:15:c7:d9:80:02:1f:d9:
40:ff:a4:7f:bd:a8:65:36:9f:26:64:c3:61:dd:d2:af:e4:a2:
76:4d:49:d9:a8:2a:c3:ed:8a:e2:af:82:ef:d8:52:fa:2f:b7:
cd:0a:77:b1:6d:85:f5:0b:c0:6a:2c:66:59:31:dc:2c:d3:2c:
f8:1a:09:43:0e:44:75:e4:b9:9e:f5:02:6f:d4:3b:83:f2:53:
ad:01:20:b0:51:a2:0e:ad:86:c4:96:5f:87:9f:94:ea:5d:fb:
a4:7a:d9:63:4f:e7:0c:19:3f:25:cd:3c:8d:0a:65:82:81:a8:
0d:2d:03:f4:02:d2:8e:ef:08:9e:b3:29:29:78:ab:f6:56:37:
b5:62:cb:69:36:61:d0:e7:17:6d:ff:cf:57:ca:46:f8:fe:ff:
da:07:07:0b:89:57:8d:19:e8:6d:ee:da:f1:f0:62:29:8e:8f:
c0:ac:d4:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:49 2024 by rpki-client on console-fra.rpki-client.org