Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/d57a64-bd32-4c91-be06-fee8eaf73b0d/1/8pvOjn-WpCxvJhPbszoOG56vZvE.roa
File: 8pvOjn-WpCxvJhPbszoOG56vZvE.roa (raw, json)
Hash identifier: YEH69k5U4OSYeccNg3fZ5WxlmwcxdqVAoPCMkoEJzCU=
Subject key identifier: F2:9B:CE:8E:7F:96:A4:2C:6F:26:13:DB:B3:3A:0E:1B:9E:AF:66:F1
Certificate issuer: /CN=6d088cef28e02af7d00f297816c55f8e3c43d535
Certificate serial: 01879ED7955A75CA4C793EB83E3155D005F5
Authority key identifier: 6D:08:8C:EF:28:E0:2A:F7:D0:0F:29:78:16:C5:5F:8E:3C:43:D5:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bQiM7yjgKvfQDyl4FsVfjjxD1TU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/d57a64-bd32-4c91-be06-fee8eaf73b0d/1/8pvOjn-WpCxvJhPbszoOG56vZvE.roa
Signing time: Thu 20 Apr 2023 13:25:41 +0000
ROA not before: Thu 20 Apr 2023 13:25:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210644
IP address blocks: 77.91.78.0/24 maxlen: 24
2a13:f180::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 08 Aug 2023 12:49:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:9e:d7:95:5a:75:ca:4c:79:3e:b8:3e:31:55:d0:05:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d088cef28e02af7d00f297816c55f8e3c43d535
Validity
Not Before: Apr 20 13:25:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f29bce8e7f96a42c6f2613dbb33a0e1b9eaf66f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:48:a6:98:9d:e3:6a:16:42:2d:62:42:00:21:
89:7b:9e:be:cc:02:c5:01:89:16:75:d0:28:b2:12:
71:7e:a4:c8:48:09:12:f1:6c:37:8e:bf:e2:64:83:
c8:1d:f3:29:0e:a6:40:a8:e8:a9:1d:2e:69:e9:05:
98:b4:e1:e5:01:19:81:55:20:4a:88:33:28:19:57:
b2:9a:65:bc:bf:17:b6:3d:4b:e5:c2:3b:94:35:bf:
4b:63:f4:53:e3:ee:90:b6:b9:16:8a:b3:ae:8f:fb:
c4:94:5e:d3:c7:bb:fa:dd:ec:c1:e6:fb:1d:88:c1:
03:71:54:ba:37:2a:a4:2c:2c:01:b4:b7:a6:6b:a5:
75:4f:b7:bf:6b:53:e3:ec:ae:8d:26:43:40:b7:5c:
7c:b1:d2:d9:fe:38:65:7d:2b:9f:30:9b:1c:28:09:
02:38:16:69:9e:88:82:a5:3f:72:9f:79:4d:71:f9:
92:91:28:07:70:c3:54:27:f8:16:a9:b0:b8:df:40:
2c:b4:bf:80:2c:e2:1d:58:ea:43:e1:1d:18:be:8c:
10:5d:db:09:23:71:4c:d1:c4:4f:42:aa:15:fc:d2:
37:dc:44:d7:02:1d:4c:a3:9d:e9:52:98:04:50:85:
1d:1d:04:37:57:12:93:da:b6:1f:28:61:bc:98:78:
64:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:9B:CE:8E:7F:96:A4:2C:6F:26:13:DB:B3:3A:0E:1B:9E:AF:66:F1
X509v3 Authority Key Identifier:
keyid:6D:08:8C:EF:28:E0:2A:F7:D0:0F:29:78:16:C5:5F:8E:3C:43:D5:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bQiM7yjgKvfQDyl4FsVfjjxD1TU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/d57a64-bd32-4c91-be06-fee8eaf73b0d/1/8pvOjn-WpCxvJhPbszoOG56vZvE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/d57a64-bd32-4c91-be06-fee8eaf73b0d/1/bQiM7yjgKvfQDyl4FsVfjjxD1TU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.91.78.0/24
IPv6:
2a13:f180::/29
Signature Algorithm: sha256WithRSAEncryption
91:61:85:82:79:2d:7a:50:d7:f9:49:1c:4b:45:1d:9b:2b:87:
95:f2:bd:3f:f7:1f:72:85:16:6e:ad:9f:98:16:71:6d:8e:77:
14:0c:9e:46:fe:a8:a6:d5:77:db:f2:e4:e7:17:81:a9:6a:2f:
0c:22:c4:a0:52:e3:69:00:12:8b:cf:d3:82:8a:ff:3e:a2:82:
ec:10:3c:f8:c3:ca:c7:a5:dd:60:bd:6b:29:c7:43:ad:8e:14:
37:53:fb:36:5f:c9:08:85:bf:dc:f0:23:3c:8e:34:07:71:8b:
2e:b3:a9:05:eb:75:58:bd:01:48:27:e5:ca:86:97:42:41:2b:
75:a8:b2:1c:a4:98:4c:5f:8f:4e:a3:b6:6f:0f:53:d8:4d:3e:
f5:cc:1f:60:a0:43:87:e6:cf:3d:74:e5:b8:a8:01:a9:96:22:
03:17:9d:74:f0:67:08:a2:1b:08:62:8c:2f:bd:7c:a6:6b:fe:
0d:09:ea:9b:15:a4:c7:e8:56:2c:62:18:f4:cc:83:9f:01:a0:
a5:44:ca:a3:ab:bc:07:26:aa:58:a2:9a:cb:70:77:ff:b8:3a:
53:e8:35:3b:2d:97:32:ba:f3:e0:07:8f:19:84:56:69:34:75:
6c:41:74:ed:4e:7a:f7:0c:d9:a9:72:20:ec:1a:a8:8d:36:f4:
55:91:e8:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:42 2024 by rpki-client on console-ams.rpki-client.org