Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/d57a64-bd32-4c91-be06-fee8eaf73b0d/1/09YQ6iZPAJLFjxdo4QprENZxi4E.roa
File: 09YQ6iZPAJLFjxdo4QprENZxi4E.roa (raw, json)
Hash identifier: po+EdIM+gv0cbc4YgzjG+QXeuaTcMs5EYKpvnKiSsgE=
Subject key identifier: D3:D6:10:EA:26:4F:00:92:C5:8F:17:68:E1:0A:6B:10:D6:71:8B:81
Certificate issuer: /CN=6d088cef28e02af7d00f297816c55f8e3c43d535
Certificate serial: 018CC9BC08E9968D408B1462F86D420BDF33
Authority key identifier: 6D:08:8C:EF:28:E0:2A:F7:D0:0F:29:78:16:C5:5F:8E:3C:43:D5:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bQiM7yjgKvfQDyl4FsVfjjxD1TU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/d57a64-bd32-4c91-be06-fee8eaf73b0d/1/09YQ6iZPAJLFjxdo4QprENZxi4E.roa
Signing time: Tue 02 Jan 2024 10:33:12 +0000
ROA not before: Tue 02 Jan 2024 10:33:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210281
IP address blocks: 77.91.77.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 24 May 2024 15:16:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:08:e9:96:8d:40:8b:14:62:f8:6d:42:0b:df:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d088cef28e02af7d00f297816c55f8e3c43d535
Validity
Not Before: Jan 2 10:33:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d3d610ea264f0092c58f1768e10a6b10d6718b81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:0b:11:0f:f1:09:ca:5d:9b:ab:79:3e:c9:74:
57:93:26:a3:f7:aa:e0:7e:1c:f5:8a:8f:e9:c3:8b:
2f:22:d2:17:7b:0b:13:31:f1:fa:15:f6:a0:cb:ab:
c0:43:66:33:bc:a7:d6:2d:66:82:69:96:fe:0a:fa:
ec:42:eb:50:59:95:8f:b0:b1:e7:59:f8:64:d2:a6:
74:3a:fa:9d:e7:4a:28:44:6e:1e:f5:54:37:39:99:
ed:38:fb:69:9a:4f:d2:83:bc:32:45:99:21:65:66:
bf:8e:12:5b:f4:d1:15:24:03:d5:04:dd:05:09:26:
01:a1:22:b4:43:fd:fe:8f:09:19:d9:11:52:3e:26:
12:e8:75:b0:d0:9c:07:16:96:64:35:15:51:fd:86:
b6:21:89:7e:bd:4f:11:a0:7f:4a:9e:9f:22:e2:14:
d0:1d:10:06:05:d0:c3:da:e0:52:e1:fb:f4:90:89:
41:10:93:40:d1:b7:f2:b7:a6:d6:3a:1f:42:97:83:
27:7a:15:2b:15:c4:e4:50:7a:8e:4e:c7:02:8a:e5:
09:0a:a9:5c:a0:a2:3f:0b:1c:01:5c:0b:8a:12:b4:
16:41:9f:ab:cc:4d:18:f0:c2:de:59:10:55:4c:a2:
3f:1e:f7:97:b7:c6:15:39:aa:c2:74:63:df:72:c4:
24:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:D6:10:EA:26:4F:00:92:C5:8F:17:68:E1:0A:6B:10:D6:71:8B:81
X509v3 Authority Key Identifier:
keyid:6D:08:8C:EF:28:E0:2A:F7:D0:0F:29:78:16:C5:5F:8E:3C:43:D5:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bQiM7yjgKvfQDyl4FsVfjjxD1TU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/d57a64-bd32-4c91-be06-fee8eaf73b0d/1/09YQ6iZPAJLFjxdo4QprENZxi4E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/d57a64-bd32-4c91-be06-fee8eaf73b0d/1/bQiM7yjgKvfQDyl4FsVfjjxD1TU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.91.77.0/24
Signature Algorithm: sha256WithRSAEncryption
16:37:d0:78:08:31:95:78:e7:94:48:3e:0c:6b:06:ee:91:71:
01:54:aa:3e:82:53:50:e6:a5:16:a8:c1:a8:2b:36:b6:ce:a3:
d2:03:a9:d8:64:cd:28:0e:32:f4:db:6c:d8:a3:cb:97:ed:30:
50:91:6d:da:79:a8:c3:29:81:b3:1e:e2:96:d5:fe:37:0a:ab:
a3:a3:ba:7d:e5:7d:75:fd:e5:db:e9:5c:b4:3c:22:1a:44:9e:
f7:c7:20:9b:e2:f9:01:62:31:90:9f:76:0d:ed:32:0b:77:cf:
12:06:95:14:0b:91:31:1b:da:3a:32:80:4c:61:15:41:66:1e:
a0:3f:0a:50:c5:ff:5b:a1:d6:26:3a:1f:2a:ed:24:aa:05:6d:
6a:f3:ea:d7:56:91:01:97:90:87:92:17:7e:f9:46:c5:fb:ef:
93:71:e6:ba:4b:83:9d:94:a4:d7:59:db:55:b4:96:28:85:ae:
75:9b:ab:6b:00:44:9a:40:44:40:cc:95:32:b2:35:81:96:07:
6a:0a:57:21:84:96:e2:cc:8d:c7:b1:33:7c:95:30:32:1f:0f:
20:30:05:1e:3f:1f:4f:0c:b7:17:2e:d8:bd:d2:95:6c:29:f3:
89:74:f8:95:d9:a9:03:65:9a:1f:26:f5:47:0d:f4:c4:ae:68:
c3:8d:37:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:42 2024 by rpki-client on console-ams.rpki-client.org