Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/779928-881c-433a-b243-c9f57e959ef1/1/Fg686QlDtHJymeGYXWutHIxUFDs.roa
File: Fg686QlDtHJymeGYXWutHIxUFDs.roa (raw, json)
Hash identifier: zBL1njkiZ+sJgcKY8E9ICeOuYpcLMWw1qmpi2m6XwBA=
Subject key identifier: 16:0E:BC:E9:09:43:B4:72:72:99:E1:98:5D:6B:AD:1C:8C:54:14:3B
Certificate issuer: /CN=0692c5f16313653425bc467105875e3a297cff9b
Certificate serial: 01879EE1856AEEAA3E15C8EBED43B021BC8C
Authority key identifier: 06:92:C5:F1:63:13:65:34:25:BC:46:71:05:87:5E:3A:29:7C:FF:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BpLF8WMTZTQlvEZxBYdeOil8_5s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/779928-881c-433a-b243-c9f57e959ef1/1/Fg686QlDtHJymeGYXWutHIxUFDs.roa
Signing time: Thu 20 Apr 2023 13:36:32 +0000
ROA not before: Thu 20 Apr 2023 13:36:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 64419
IP address blocks: 77.91.120.0/24 maxlen: 24
77.91.120.0/23 maxlen: 23
77.91.121.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:9e:e1:85:6a:ee:aa:3e:15:c8:eb:ed:43:b0:21:bc:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0692c5f16313653425bc467105875e3a297cff9b
Validity
Not Before: Apr 20 13:36:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=160ebce90943b4727299e1985d6bad1c8c54143b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:fe:2d:22:7d:ca:af:07:7f:36:0a:cf:b6:85:
97:3e:d4:25:b0:2d:47:69:64:c2:58:7d:69:e3:ed:
fa:5c:33:57:13:2f:85:4f:59:39:31:58:be:75:29:
22:d9:3c:cb:ac:2b:c7:bf:53:23:2c:c0:72:6c:d9:
51:9d:3a:f0:e1:79:8a:fc:94:5f:dc:e8:c1:5c:c0:
ee:6f:b0:8b:45:66:a1:07:2a:74:7e:62:99:a2:7e:
ed:42:10:af:b5:9d:1e:3e:67:87:c7:c2:eb:07:d9:
fb:43:7d:dd:86:fc:96:fe:a3:e5:f1:69:fb:02:66:
a9:78:3d:87:4e:9b:26:47:28:91:e6:61:59:a3:9b:
9b:fd:a7:0f:bf:5d:f8:46:16:5e:b8:f8:14:c1:5d:
eb:4f:80:06:cf:f3:22:b4:9b:24:79:b3:14:87:60:
19:8b:ee:bf:87:a0:ea:54:07:63:03:0b:82:90:92:
c4:28:8d:48:6b:e4:ad:78:21:96:eb:c0:f9:2c:ce:
4d:88:74:0e:7a:e0:40:19:7f:9e:e8:e2:e5:29:a7:
eb:5f:38:f3:5f:ca:67:37:7e:48:fb:83:15:32:72:
af:15:b9:98:ae:bf:9d:3a:5c:e0:94:bf:f5:cb:2d:
57:26:6a:9a:28:40:a7:b7:ec:b2:5f:c9:b7:e5:a9:
a4:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:0E:BC:E9:09:43:B4:72:72:99:E1:98:5D:6B:AD:1C:8C:54:14:3B
X509v3 Authority Key Identifier:
keyid:06:92:C5:F1:63:13:65:34:25:BC:46:71:05:87:5E:3A:29:7C:FF:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BpLF8WMTZTQlvEZxBYdeOil8_5s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/779928-881c-433a-b243-c9f57e959ef1/1/Fg686QlDtHJymeGYXWutHIxUFDs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/779928-881c-433a-b243-c9f57e959ef1/1/BpLF8WMTZTQlvEZxBYdeOil8_5s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.91.120.0/23
Signature Algorithm: sha256WithRSAEncryption
08:a7:7b:f7:e5:8e:96:eb:83:44:fe:06:9b:11:18:95:36:32:
46:a9:70:58:38:cd:12:2a:10:f2:41:fd:02:50:1e:08:9b:8f:
7a:f1:f3:1b:7f:c3:a0:de:7c:ad:2d:99:2e:78:2a:44:29:f2:
a0:1b:a8:d0:a2:b5:54:98:63:fd:f0:dc:fe:df:9f:75:d3:04:
8f:76:45:5a:67:1a:bc:e5:35:7b:02:77:c3:74:68:79:b0:14:
4b:74:d3:ab:36:b6:30:3a:59:86:d5:d8:0b:e9:93:5d:96:52:
15:2a:3e:be:c9:89:33:77:b2:ae:a4:df:ec:82:1e:a8:12:87:
bf:e6:c2:90:a4:23:4f:f3:e1:53:0e:fb:aa:13:25:79:97:f4:
9d:e5:c3:33:65:33:96:52:1c:ee:67:5c:7e:ee:4e:97:82:02:
9d:c8:e0:69:ae:cf:32:3b:d0:80:71:de:8d:4d:cc:ca:11:10:
00:d0:d9:f8:b4:21:b7:78:47:6f:00:c7:5b:4f:1c:ac:e4:4a:
72:bf:3d:7c:08:45:07:9d:6b:ab:fc:bb:83:64:1a:bb:74:45:
c4:cc:94:68:7a:f8:db:21:a2:c8:2b:a6:64:00:27:50:25:d6:
3d:f3:05:0f:1e:4e:41:56:9e:ed:ab:35:fc:fe:08:40:c7:f6:
bf:20:3a:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:01 2024 by rpki-client on console-fra.rpki-client.org