Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/d57a64-bd32-4c91-be06-fee8eaf73b0d/1/HnKBKvQVNJK1aL7hyUCGDkN_yF8.roa
File: HnKBKvQVNJK1aL7hyUCGDkN_yF8.roa (raw, json)
Hash identifier: MB2cru3RwcKp4VP/rYGf0FLivrCECKqtDsWEDA8X894=
Subject key identifier: 1E:72:81:2A:F4:15:34:92:B5:68:BE:E1:C9:40:86:0E:43:7F:C8:5F
Certificate issuer: /CN=6d088cef28e02af7d00f297816c55f8e3c43d535
Certificate serial: 018CD43193FB34CA809A35D6B9636890DC41
Authority key identifier: 6D:08:8C:EF:28:E0:2A:F7:D0:0F:29:78:16:C5:5F:8E:3C:43:D5:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bQiM7yjgKvfQDyl4FsVfjjxD1TU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/d57a64-bd32-4c91-be06-fee8eaf73b0d/1/HnKBKvQVNJK1aL7hyUCGDkN_yF8.roa
Signing time: Thu 04 Jan 2024 11:17:48 +0000
ROA not before: Thu 04 Jan 2024 11:17:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216319
IP address blocks: 77.91.76.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 24 May 2024 15:21:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:d4:31:93:fb:34:ca:80:9a:35:d6:b9:63:68:90:dc:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d088cef28e02af7d00f297816c55f8e3c43d535
Validity
Not Before: Jan 4 11:17:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1e72812af4153492b568bee1c940860e437fc85f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:e2:08:a2:93:33:d0:39:f5:40:0d:15:d9:c5:
47:65:69:fd:58:40:84:98:1a:79:82:d6:fa:2b:a0:
70:38:67:8b:38:37:21:5f:dc:4f:ce:70:93:ba:78:
47:14:f3:6a:e5:fc:71:ac:25:da:91:5e:1e:02:36:
14:74:fa:5f:c5:08:d9:61:eb:11:ca:3a:eb:b5:99:
7f:6c:b0:f3:22:f3:cd:54:68:e0:7a:16:8a:3c:e1:
05:0d:45:18:de:df:93:67:bf:a8:3b:0b:7f:1b:37:
1b:c8:d1:8e:5a:42:c9:4a:dd:32:f4:42:ff:30:59:
55:0a:22:df:42:54:21:e2:93:46:ca:8f:d6:dd:9e:
f6:e5:11:25:8b:bf:62:e5:93:0a:87:78:cd:ac:03:
0c:48:a1:4c:4d:1a:da:df:9a:a7:d9:8e:16:fc:24:
c2:52:9c:97:40:d8:4a:44:38:04:dc:23:d4:fb:2a:
cf:b3:0e:c9:86:cf:37:39:d6:9f:da:d8:3a:e8:fe:
eb:01:96:ca:e4:65:38:b9:fd:8d:02:fe:90:ff:66:
51:11:52:9d:4b:af:44:36:9a:3c:33:b3:61:f9:76:
58:f7:54:14:08:6f:6b:b5:5a:36:19:c9:01:29:23:
50:4e:b2:9e:c3:db:38:98:86:43:6f:88:f1:d0:98:
9a:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:72:81:2A:F4:15:34:92:B5:68:BE:E1:C9:40:86:0E:43:7F:C8:5F
X509v3 Authority Key Identifier:
keyid:6D:08:8C:EF:28:E0:2A:F7:D0:0F:29:78:16:C5:5F:8E:3C:43:D5:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bQiM7yjgKvfQDyl4FsVfjjxD1TU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/d57a64-bd32-4c91-be06-fee8eaf73b0d/1/HnKBKvQVNJK1aL7hyUCGDkN_yF8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/d57a64-bd32-4c91-be06-fee8eaf73b0d/1/bQiM7yjgKvfQDyl4FsVfjjxD1TU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.91.76.0/24
Signature Algorithm: sha256WithRSAEncryption
42:e5:f5:88:a1:c6:b5:9c:e9:24:34:98:e6:b3:16:fa:ae:95:
3f:07:e5:4e:5e:57:7a:4a:cf:72:9c:41:0f:b5:fd:98:76:94:
c6:2e:7d:08:32:da:f7:fa:39:31:8e:08:e6:0d:36:6e:80:a2:
25:eb:e7:48:b4:86:d3:7c:b8:3a:77:33:84:18:3a:a2:64:fc:
b9:ad:07:2b:10:fc:ae:4e:f1:4f:b6:21:0e:81:94:50:22:13:
eb:5e:eb:8a:a4:5c:18:0a:89:5b:35:69:4d:a4:ea:c1:03:55:
9f:dc:8d:8e:07:39:d9:64:bb:09:0a:d6:d3:37:81:c0:e2:4b:
95:e0:3a:c9:36:09:7d:8a:67:ee:52:a4:70:c0:6b:c9:0c:5b:
0f:3d:34:b2:c7:54:3f:c8:fe:99:af:1f:fc:64:0a:29:4f:af:
94:06:5d:62:fb:94:ab:52:7b:ba:3f:5d:7c:b3:58:17:dc:78:
bd:d7:75:78:51:18:21:96:e6:66:67:15:df:5b:18:ab:1f:44:
1b:ef:1c:26:28:d5:01:d0:4c:40:27:c2:cc:f4:fb:ee:3f:0f:
8c:6b:db:4a:1b:8e:c6:3a:73:be:ea:51:ab:b3:f1:f8:fa:05:
39:4e:46:cc:8e:2c:64:6e:ce:a6:21:de:c7:11:49:7c:ba:60:
11:e7:96:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:42 2024 by rpki-client on console-ams.rpki-client.org