Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/779928-881c-433a-b243-c9f57e959ef1/1/PIk7jpiUITgk6ZKHrh2dbgGhb7M.roa
File: PIk7jpiUITgk6ZKHrh2dbgGhb7M.roa (raw, json)
Hash identifier: qYvYVIhfXeniqu3JG7mh8VskYODrPZFvng5moQ7zuBw=
Subject key identifier: 3C:89:3B:8E:98:94:21:38:24:E9:92:87:AE:1D:9D:6E:01:A1:6F:B3
Certificate issuer: /CN=0692c5f16313653425bc467105875e3a297cff9b
Certificate serial: 018C0796EFCEF9F8B6AB24B97264FD9DD4F9
Authority key identifier: 06:92:C5:F1:63:13:65:34:25:BC:46:71:05:87:5E:3A:29:7C:FF:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BpLF8WMTZTQlvEZxBYdeOil8_5s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/779928-881c-433a-b243-c9f57e959ef1/1/PIk7jpiUITgk6ZKHrh2dbgGhb7M.roa
Signing time: Sat 25 Nov 2023 17:46:21 +0000
ROA not before: Sat 25 Nov 2023 17:46:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203727
IP address blocks: 77.91.124.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:07:96:ef:ce:f9:f8:b6:ab:24:b9:72:64:fd:9d:d4:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0692c5f16313653425bc467105875e3a297cff9b
Validity
Not Before: Nov 25 17:46:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3c893b8e9894213824e99287ae1d9d6e01a16fb3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:71:f1:9d:a0:53:b8:19:a4:62:a4:61:56:2d:
67:3a:80:92:dc:98:3c:11:54:b8:45:3e:50:fb:65:
c7:d7:6f:0c:59:4b:48:b4:e3:d7:fa:27:34:dd:40:
bc:4f:dd:05:3a:4c:1c:58:ee:13:6f:4e:0a:22:d5:
27:95:72:85:a0:21:77:7d:c3:4c:a9:ef:3f:09:e2:
df:d7:da:c3:98:da:0f:9d:5e:c3:cb:fa:4a:9b:95:
16:f1:50:60:91:cf:33:c8:5b:97:90:2b:21:26:93:
2f:97:8a:fe:51:6b:c0:b6:28:28:61:16:01:3f:26:
16:8d:2b:f1:88:b9:48:78:af:ae:d0:a8:6d:57:0d:
61:32:52:22:fc:eb:b6:7b:a4:8d:ce:7c:00:f1:c6:
9c:c3:9a:69:48:c9:b5:9e:9b:94:62:98:c2:00:14:
b7:ee:2b:e5:7c:53:28:13:05:83:29:59:fb:8e:7e:
55:67:e2:01:33:27:ac:1e:cc:3f:18:58:60:ca:18:
fa:f8:74:13:2c:97:95:22:cd:a0:2c:ba:dc:83:6d:
03:d7:db:a3:d3:5b:79:1d:09:6e:5f:87:e4:d5:36:
41:4d:f3:b9:7e:9a:83:9f:3b:66:cc:7a:d5:7f:31:
5d:b2:3b:5b:87:32:09:4c:21:97:34:cb:72:66:9f:
6d:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:89:3B:8E:98:94:21:38:24:E9:92:87:AE:1D:9D:6E:01:A1:6F:B3
X509v3 Authority Key Identifier:
keyid:06:92:C5:F1:63:13:65:34:25:BC:46:71:05:87:5E:3A:29:7C:FF:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BpLF8WMTZTQlvEZxBYdeOil8_5s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/779928-881c-433a-b243-c9f57e959ef1/1/PIk7jpiUITgk6ZKHrh2dbgGhb7M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/779928-881c-433a-b243-c9f57e959ef1/1/BpLF8WMTZTQlvEZxBYdeOil8_5s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.91.124.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:85:58:3f:d2:77:af:2f:bb:d4:de:8f:78:cb:52:b8:21:b4:
44:82:50:b1:b8:51:ce:ad:4a:17:9f:5c:b6:b4:ce:f1:85:ba:
13:11:00:69:53:f6:f3:05:5f:fb:cd:c6:83:e6:f6:a4:e0:5a:
83:69:76:bc:d4:65:55:0a:15:cf:db:a2:a3:87:33:39:00:41:
f5:44:68:b2:52:83:4c:5b:f9:f1:ff:a2:65:33:5b:7f:1c:6c:
2e:fa:c1:49:dd:e0:02:36:97:35:bc:de:cf:2f:72:41:6a:b7:
2a:59:7f:72:35:81:5e:7d:e5:c1:66:52:7c:90:ae:5b:f6:6e:
ff:26:c5:67:e2:ed:2b:3d:49:ad:00:03:a6:35:dd:84:db:1d:
d9:88:d0:41:74:b4:c7:60:ac:a5:e5:70:47:13:a9:3d:6f:2a:
cd:1f:75:7f:fa:c2:67:00:14:2b:85:5c:1e:85:08:60:fa:ef:
3e:10:5c:37:34:02:96:dc:01:6d:fd:17:55:63:65:50:1d:37:
64:d6:6e:2b:d1:0d:4e:87:74:0d:8a:da:4d:cc:04:7f:3a:e5:
0a:94:9d:e2:ea:c8:e7:17:50:b4:3d:b7:8d:cc:37:b9:55:4a:
b1:76:23:e8:f9:ae:bf:09:00:17:d5:c9:af:0f:b0:db:d8:a8:
f5:7a:ac:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:54 2024 by rpki-client on console-ams.rpki-client.org