Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/d334ad-5240-4daa-a050-9f5bf736720e/1/Yz7amL-xC1EctVlYdo239IbEdBA.roa
File: Yz7amL-xC1EctVlYdo239IbEdBA.roa (raw, json)
Hash identifier: tTgGP8RL9PoAYBk4Uq3jZOzZqwa5QxwZBLsrcmhhFrA=
Subject key identifier: 63:3E:DA:98:BF:B1:0B:51:1C:B5:59:58:76:8D:B7:F4:86:C4:74:10
Certificate issuer: /CN=7bab6c11d41162db0306858f83e5e65121132a6b
Certificate serial: 01856CF8786E871DC0EF0640C44C8ED3BC04
Authority key identifier: 7B:AB:6C:11:D4:11:62:DB:03:06:85:8F:83:E5:E6:51:21:13:2A:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e6tsEdQRYtsDBoWPg-XmUSETKms.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/d334ad-5240-4daa-a050-9f5bf736720e/1/Yz7amL-xC1EctVlYdo239IbEdBA.roa
Signing time: Sun 01 Jan 2023 10:55:01 +0000
ROA not before: Sun 01 Jan 2023 10:55:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34854
IP address blocks: 77.73.35.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:30:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:f8:78:6e:87:1d:c0:ef:06:40:c4:4c:8e:d3:bc:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7bab6c11d41162db0306858f83e5e65121132a6b
Validity
Not Before: Jan 1 10:55:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=633eda98bfb10b511cb55958768db7f486c47410
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:3c:d4:1d:96:7d:2b:b1:db:49:12:0e:89:e8:
ed:8a:1b:7e:c6:a0:84:df:ee:56:37:b7:ef:37:7d:
ce:9a:9a:53:0e:44:4c:d0:2d:fa:a3:ff:ba:52:0d:
68:ae:a2:7c:20:12:61:29:53:41:58:a4:e1:19:b5:
29:79:7a:3f:95:cf:53:a4:7a:d5:43:1b:ec:e7:cb:
2d:a2:a5:2c:7f:11:ba:65:84:00:5f:1b:0e:ad:3c:
34:9a:f1:52:aa:88:f6:0d:3b:f3:84:00:85:75:2b:
41:47:f3:ad:49:83:78:13:2b:8d:e4:27:fc:96:d5:
68:1e:62:88:54:f1:28:e0:6b:1d:bf:eb:7d:08:84:
77:c6:a0:89:3a:da:fe:86:ea:96:8c:74:5d:95:2c:
a6:ec:b7:3f:02:ce:33:ee:31:2e:b4:53:a0:79:ff:
83:f0:93:b5:d4:59:76:b6:c7:b5:ce:d0:ad:e4:f5:
30:42:4e:c9:e4:c2:05:ab:b6:12:c0:86:5a:54:92:
7c:75:ef:dc:9c:7d:15:f4:12:f6:4f:4d:be:9f:64:
23:5b:b1:6e:ce:03:25:cb:96:83:4d:ca:fd:37:58:
fe:f7:05:38:27:3f:85:d8:62:1c:d9:e5:f9:9e:e4:
b5:92:ef:f4:33:2c:43:52:e6:3c:37:63:47:cc:a4:
18:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:3E:DA:98:BF:B1:0B:51:1C:B5:59:58:76:8D:B7:F4:86:C4:74:10
X509v3 Authority Key Identifier:
keyid:7B:AB:6C:11:D4:11:62:DB:03:06:85:8F:83:E5:E6:51:21:13:2A:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6tsEdQRYtsDBoWPg-XmUSETKms.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/d334ad-5240-4daa-a050-9f5bf736720e/1/Yz7amL-xC1EctVlYdo239IbEdBA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/d334ad-5240-4daa-a050-9f5bf736720e/1/e6tsEdQRYtsDBoWPg-XmUSETKms.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.73.35.0/24
Signature Algorithm: sha256WithRSAEncryption
14:0e:de:72:b5:4b:63:67:9b:85:c2:91:d5:60:4f:f8:de:43:
b0:a8:1b:40:1d:e4:c1:8b:3b:2f:df:fb:59:17:c7:14:ad:96:
8b:67:2f:d9:1f:10:ff:61:18:05:b7:5f:9f:9f:6f:ed:de:ee:
d8:f4:f8:d7:22:8b:f2:d8:bd:df:71:3c:22:8e:3b:fc:02:a9:
6b:25:64:fc:4d:3a:69:8a:33:f2:85:20:77:b8:0c:f1:b4:e2:
2a:da:71:06:da:40:ce:59:fd:88:95:18:ce:7b:bc:a6:9e:5b:
e0:58:c6:6d:e2:6c:5d:14:32:f1:03:0c:ef:64:4d:bb:65:29:
b0:ce:c4:25:ab:d1:3c:89:7c:29:d2:ab:6f:e6:bb:fd:6e:91:
4f:d9:31:61:e3:35:f1:bb:9d:14:f0:6f:68:f0:dd:fb:3f:d7:
cc:c8:19:f1:d5:87:67:77:10:c7:55:ba:03:1a:0d:20:b1:37:
cf:22:ba:26:03:e3:4c:58:af:a7:db:b3:9f:fb:09:cf:ba:4e:
7e:23:71:4b:ec:d5:b8:6d:85:fa:a3:89:83:0b:e5:6a:20:50:
6b:be:aa:4d:18:33:50:46:c6:f6:2b:c2:07:53:93:3a:c4:7e:
70:ab:56:c8:ec:45:52:6c:6a:cf:ca:20:b6:04:f1:22:52:db:
b1:ff:e5:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:48 2024 by rpki-client on console-fra.rpki-client.org