Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/d57a64-bd32-4c91-be06-fee8eaf73b0d/1/KUgMbAK6ARgMh4rRK_xz8MAUo4k.roa
File: KUgMbAK6ARgMh4rRK_xz8MAUo4k.roa (raw, json)
Hash identifier: 4xG90/uofmjjXYv8GwNAmWj6DpUgKJq4i/VpgQskbOU=
Subject key identifier: 29:48:0C:6C:02:BA:01:18:0C:87:8A:D1:2B:FC:73:F0:C0:14:A3:89
Certificate issuer: /CN=6d088cef28e02af7d00f297816c55f8e3c43d535
Certificate serial: 01890240555226E5F7BF68F171395E019AFB
Authority key identifier: 6D:08:8C:EF:28:E0:2A:F7:D0:0F:29:78:16:C5:5F:8E:3C:43:D5:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bQiM7yjgKvfQDyl4FsVfjjxD1TU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/d57a64-bd32-4c91-be06-fee8eaf73b0d/1/KUgMbAK6ARgMh4rRK_xz8MAUo4k.roa
Signing time: Wed 28 Jun 2023 13:45:17 +0000
ROA not before: Wed 28 Jun 2023 13:45:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210281
IP address blocks: 77.91.77.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:02:40:55:52:26:e5:f7:bf:68:f1:71:39:5e:01:9a:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d088cef28e02af7d00f297816c55f8e3c43d535
Validity
Not Before: Jun 28 13:45:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=29480c6c02ba01180c878ad12bfc73f0c014a389
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:26:6c:95:5b:a8:b6:67:14:31:45:d3:20:aa:
cb:5b:28:e3:f4:c3:31:b5:94:fe:a3:73:49:5d:99:
1d:9e:79:0c:07:de:e5:a5:ed:fe:55:df:3f:84:e0:
5a:1d:2a:70:71:99:33:47:35:c5:c9:37:27:32:92:
ff:f9:59:5d:ac:22:ea:65:36:f0:e3:21:26:96:3a:
ee:45:5a:20:94:b1:ea:8f:b4:5b:88:27:93:57:4e:
e9:71:7f:d3:1d:f5:40:6e:a2:a1:aa:9a:98:ef:c2:
18:fc:cb:a7:1f:02:89:8f:be:04:6f:22:a4:b0:d4:
a3:00:7e:34:78:fc:dc:a6:43:5d:5c:aa:36:5c:f8:
c4:a3:e6:40:e3:b7:8c:ca:c7:e4:f6:9e:eb:bf:75:
f9:6e:44:2c:44:21:fb:c2:89:21:1e:ad:36:e2:10:
b4:fa:ca:6e:b6:b7:bd:3c:68:88:63:4b:f4:0d:80:
8c:31:35:54:c1:08:4a:71:78:68:84:14:31:a0:f7:
61:0c:f1:43:44:66:eb:ac:65:d9:f5:e3:fb:6d:e3:
df:44:e0:1a:aa:cd:30:4c:9b:d4:72:e2:a3:ba:c3:
5f:1f:b0:85:2f:d3:ea:d2:41:a1:e9:94:4f:c1:4a:
10:26:89:48:b4:23:b7:10:5e:8e:41:fb:20:f2:ff:
8e:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:48:0C:6C:02:BA:01:18:0C:87:8A:D1:2B:FC:73:F0:C0:14:A3:89
X509v3 Authority Key Identifier:
keyid:6D:08:8C:EF:28:E0:2A:F7:D0:0F:29:78:16:C5:5F:8E:3C:43:D5:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bQiM7yjgKvfQDyl4FsVfjjxD1TU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/d57a64-bd32-4c91-be06-fee8eaf73b0d/1/KUgMbAK6ARgMh4rRK_xz8MAUo4k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/d57a64-bd32-4c91-be06-fee8eaf73b0d/1/bQiM7yjgKvfQDyl4FsVfjjxD1TU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.91.77.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:02:a1:61:2a:39:79:11:62:a6:78:80:aa:9b:c5:47:ac:39:
01:c7:d6:d8:d7:a9:74:b9:e5:e7:0f:06:bc:72:7a:81:21:cb:
34:0b:90:7c:85:fc:ac:10:af:b3:00:3c:bf:0b:a8:8a:43:7a:
ae:18:32:bf:54:38:ab:2a:1e:8c:0f:39:cd:a5:b5:0b:cc:f8:
e5:81:e5:d2:94:da:58:5c:bf:ab:76:96:ab:eb:e3:81:4a:82:
85:6f:7a:1a:8e:c2:f3:6a:e8:c3:46:ce:f8:1a:d3:84:ba:da:
e5:fc:30:90:e8:24:5e:5b:75:85:69:d8:ac:f8:2a:57:14:8b:
b7:21:4c:51:16:27:aa:ed:38:ba:d6:c7:b7:66:ff:68:69:23:
e3:e9:1a:84:0a:f7:0e:e0:43:6b:c9:05:16:21:7b:c3:64:97:
76:d8:f6:64:c2:c4:e8:c8:a3:45:0a:82:fb:3b:25:a2:14:db:
6f:74:21:c6:65:b8:52:7a:6a:cb:65:79:e2:98:8b:a9:cb:08:
cf:c0:48:9d:c7:04:ab:b1:00:96:49:f3:43:f9:b9:a8:6c:b6:
b0:c1:cd:62:15:62:85:f9:b6:8d:c8:75:52:fb:59:71:f4:ee:
78:02:a3:33:62:00:f7:6f:c0:b7:23:a0:29:d7:14:ca:cc:7e:
4d:70:bd:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:42 2024 by rpki-client on console-ams.rpki-client.org