Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/S10yqRctoa5Ula2ZjQ5zXHiVf28.roa
File: S10yqRctoa5Ula2ZjQ5zXHiVf28.roa (raw, json)
Hash identifier: 9iIgt1HgQw7xbxAhnJBM5715pQIWdO2XzcnY6BmRjvE=
Subject key identifier: 4B:5D:32:A9:17:2D:A1:AE:54:95:AD:99:8D:0E:73:5C:78:95:7F:6F
Certificate issuer: /CN=279dbfdf4c20bdae8d6118566ece76444e46d171
Certificate serial: 0185E8A4D0F1C5C38482069A0F8F0C26C08A
Authority key identifier: 27:9D:BF:DF:4C:20:BD:AE:8D:61:18:56:6E:CE:76:44:4E:46:D1:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/S10yqRctoa5Ula2ZjQ5zXHiVf28.roa
Signing time: Wed 25 Jan 2023 11:16:33 +0000
ROA not before: Wed 25 Jan 2023 11:16:33 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 36671
IP address blocks: 77.77.172.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:e8:a4:d0:f1:c5:c3:84:82:06:9a:0f:8f:0c:26:c0:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=279dbfdf4c20bdae8d6118566ece76444e46d171
Validity
Not Before: Jan 25 11:16:33 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4b5d32a9172da1ae5495ad998d0e735c78957f6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:5a:d0:e6:2d:60:bd:bf:ed:cd:3d:32:25:29:
54:05:16:0c:b0:09:32:2b:68:ea:3e:91:53:aa:ff:
62:f0:4c:17:90:d7:cd:39:86:5f:29:d2:4a:3d:bd:
7e:ae:e2:9a:52:4e:d9:25:d2:c5:1a:2d:14:ab:6a:
93:71:dd:a3:7a:43:2f:11:df:e7:c3:46:05:cf:c6:
2c:f8:77:1e:26:b3:42:dd:89:4f:0c:b3:09:9d:ac:
82:a6:e7:92:bc:65:fb:0c:f4:9e:a7:d2:93:af:7e:
84:c7:1c:d4:b4:6f:c6:68:81:5f:7d:dc:49:30:5f:
0a:a0:2e:5c:f1:0c:f5:76:17:f7:cb:5c:5c:f7:fb:
6c:c9:d7:00:f0:94:68:d5:ce:2c:23:ea:d2:52:55:
b1:15:01:19:18:61:00:86:35:6c:ea:d5:92:2e:88:
81:77:ea:19:84:b4:d3:2c:85:06:de:77:9c:53:32:
dc:6e:97:b8:28:ff:23:02:ff:a2:0f:6a:49:af:a8:
78:9a:ec:1c:f1:7d:46:27:b9:c8:5c:8e:89:60:f8:
76:0f:b9:84:73:0d:64:db:a4:d1:c5:da:aa:c6:d7:
21:50:72:fd:87:e3:c8:c4:57:26:ac:b0:16:85:60:
2e:3f:25:38:f8:32:8c:10:09:6d:10:12:33:55:df:
d7:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:5D:32:A9:17:2D:A1:AE:54:95:AD:99:8D:0E:73:5C:78:95:7F:6F
X509v3 Authority Key Identifier:
keyid:27:9D:BF:DF:4C:20:BD:AE:8D:61:18:56:6E:CE:76:44:4E:46:D1:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/S10yqRctoa5Ula2ZjQ5zXHiVf28.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/J52_30wgva6NYRhWbs52RE5G0XE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.77.172.0/24
Signature Algorithm: sha256WithRSAEncryption
67:5e:10:17:03:22:7a:9a:98:8d:61:2c:65:2a:ea:d6:d2:05:
61:2d:7e:bf:af:d7:50:ec:fa:3e:dd:28:0c:c8:c8:7c:f6:6a:
71:c3:55:a4:60:67:b4:fa:bd:4f:86:3a:a7:d6:5f:f0:fa:ba:
6d:14:5a:4f:32:23:88:6b:c5:76:65:10:03:fd:40:ba:de:17:
23:47:e2:24:86:dd:07:7e:e3:60:d6:da:11:2b:51:e2:6f:2c:
54:53:9e:49:01:fb:d8:b5:03:87:b2:24:5f:4a:47:0f:76:d9:
35:37:ce:5a:70:58:d9:15:3d:4d:c6:71:62:ca:80:13:93:c5:
f5:b4:4c:27:b2:6d:60:de:e0:ae:f8:cf:dd:05:8a:3d:de:f7:
81:11:9d:d0:7d:98:2d:43:09:90:af:3b:a4:a6:7b:09:b4:8e:
80:3e:d9:4b:90:7e:98:28:61:63:48:6b:2c:7e:b2:27:c5:7b:
b5:41:b0:2d:ef:12:f3:69:f6:8e:f4:c5:89:54:c6:75:6c:e9:
c5:f4:22:0e:f5:35:b4:12:58:6c:bb:e7:75:6a:f3:c8:44:2b:
68:72:31:68:25:27:04:8a:78:de:7c:6b:1a:8f:04:f1:b6:0a:
12:a1:01:de:85:b1:cc:23:4b:63:b3:c0:c3:db:bc:52:fa:be:
9f:01:0f:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 04:22:23 2024 by rpki-client on console-fra.rpki-client.org