Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/d57a64-bd32-4c91-be06-fee8eaf73b0d/1/Kps8VTVRupZuk1YU1gSqZk32rr8.roa
File: Kps8VTVRupZuk1YU1gSqZk32rr8.roa (raw, json)
Hash identifier: APeAVxX21lMKKgKqPfWBzIT9MN7mZGEydd/cRHwCK2E=
Subject key identifier: 2A:9B:3C:55:35:51:BA:96:6E:93:56:14:D6:04:AA:66:4D:F6:AE:BF
Certificate issuer: /CN=6d088cef28e02af7d00f297816c55f8e3c43d535
Certificate serial: 01879ED881636DDA5D41189AA7B2B6E9DBA7
Authority key identifier: 6D:08:8C:EF:28:E0:2A:F7:D0:0F:29:78:16:C5:5F:8E:3C:43:D5:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bQiM7yjgKvfQDyl4FsVfjjxD1TU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/d57a64-bd32-4c91-be06-fee8eaf73b0d/1/Kps8VTVRupZuk1YU1gSqZk32rr8.roa
Signing time: Thu 20 Apr 2023 13:26:41 +0000
ROA not before: Thu 20 Apr 2023 13:26:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199785
IP address blocks: 77.91.70.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 08 Aug 2023 12:49:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:9e:d8:81:63:6d:da:5d:41:18:9a:a7:b2:b6:e9:db:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d088cef28e02af7d00f297816c55f8e3c43d535
Validity
Not Before: Apr 20 13:26:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2a9b3c553551ba966e935614d604aa664df6aebf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:19:cf:d1:3c:f3:31:97:3a:93:1d:33:b2:b0:
63:d0:47:b7:45:b1:5c:47:87:bc:ac:f0:31:bf:06:
1d:96:f5:bc:53:22:ae:9c:db:f3:57:2e:1b:59:59:
82:50:ee:05:1c:54:f2:a5:77:ed:c5:d2:43:de:2f:
8c:5e:54:75:28:73:0d:33:1d:57:74:17:b9:d8:99:
ab:d0:6b:99:0a:0b:93:9d:a0:73:3c:1d:5a:1d:1e:
0d:17:e2:7a:9f:78:81:30:6f:d5:b0:a6:5e:f5:66:
85:eb:9b:91:1b:ca:24:d7:d9:df:97:8d:d0:99:2c:
d4:b7:33:e2:f7:89:11:8b:7a:66:10:2e:72:a9:17:
92:c7:96:79:b0:b2:e3:d2:38:f7:07:f6:fb:e9:2e:
29:e0:de:01:92:ff:68:63:b6:03:4f:f3:0b:78:f1:
8a:c7:bb:a0:50:7f:02:5b:a1:2d:20:6e:6a:95:2c:
fe:ef:1f:68:2c:97:4f:22:b0:93:3d:6a:5a:da:e6:
82:96:ad:85:3e:bd:04:a7:38:27:2e:5c:31:62:e5:
26:c4:2b:a6:21:aa:7c:78:b0:32:19:a8:3b:7d:57:
0e:90:a3:c4:92:48:36:1d:d6:9c:7b:88:da:79:2d:
91:3c:26:52:ca:cc:ec:e1:c4:c3:6f:66:7f:f2:a3:
50:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:9B:3C:55:35:51:BA:96:6E:93:56:14:D6:04:AA:66:4D:F6:AE:BF
X509v3 Authority Key Identifier:
keyid:6D:08:8C:EF:28:E0:2A:F7:D0:0F:29:78:16:C5:5F:8E:3C:43:D5:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bQiM7yjgKvfQDyl4FsVfjjxD1TU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/d57a64-bd32-4c91-be06-fee8eaf73b0d/1/Kps8VTVRupZuk1YU1gSqZk32rr8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/d57a64-bd32-4c91-be06-fee8eaf73b0d/1/bQiM7yjgKvfQDyl4FsVfjjxD1TU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.91.70.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:a2:20:27:b7:13:91:95:c1:99:f9:42:ee:7d:07:fd:b7:95:
50:18:cd:c1:f5:ee:b7:d1:9b:15:ec:98:bb:63:08:76:a3:d8:
49:f6:3e:4d:b7:e6:bb:88:a7:ab:90:9c:8f:52:37:19:52:e4:
23:ab:df:bf:76:cd:86:10:a8:a7:95:bb:ce:e5:ac:0a:ec:b5:
80:94:34:57:75:11:f6:74:a3:d9:ef:62:3f:90:9b:f4:7c:11:
c7:4c:f5:7f:e7:ee:9b:5d:c7:94:c8:e7:9f:97:fb:d5:f2:cb:
c7:ac:49:b7:4d:e2:ba:fd:53:82:5e:fe:95:23:7b:52:16:11:
43:96:b9:d5:c1:d4:8d:5d:3b:41:af:08:5d:05:01:cc:68:52:
a4:00:53:44:b9:07:2c:cf:23:60:5b:d4:18:a8:17:f3:5a:9f:
e2:52:73:ab:9f:cc:d2:34:1a:ca:bd:b3:a0:4a:3d:09:80:95:
a0:f7:2c:ee:9b:9d:f3:b1:e2:fb:4d:a1:80:20:d1:d5:d5:d6:
95:37:85:02:50:7e:1e:ff:a7:62:43:40:64:55:04:a1:25:7f:
1c:3d:ab:90:b4:cf:eb:a6:0e:27:4c:0d:e1:26:fd:8c:7c:79:
98:d7:53:8a:1e:09:91:b7:65:cc:33:51:e9:1d:ff:94:92:a9:
0f:2d:4f:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:39 2024 by rpki-client on console-fra.rpki-client.org