Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/d57a64-bd32-4c91-be06-fee8eaf73b0d/1/QteY-jRR1piJlOV-bbkje28WO5w.roa
File: QteY-jRR1piJlOV-bbkje28WO5w.roa (raw, json)
Hash identifier: uwvMzyMXnS/ltqtzVSZJcT6bx9GoLKS4uinopsQVc+E=
Subject key identifier: 42:D7:98:FA:34:51:D6:98:89:94:E5:7E:6D:B9:23:7B:6F:16:3B:9C
Certificate issuer: /CN=6d088cef28e02af7d00f297816c55f8e3c43d535
Certificate serial: 0190A32ED7B197E6C06C8B5751CECB69529D
Authority key identifier: 6D:08:8C:EF:28:E0:2A:F7:D0:0F:29:78:16:C5:5F:8E:3C:43:D5:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bQiM7yjgKvfQDyl4FsVfjjxD1TU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/d57a64-bd32-4c91-be06-fee8eaf73b0d/1/QteY-jRR1piJlOV-bbkje28WO5w.roa
Signing time: Thu 11 Jul 2024 19:04:34 +0000
ROA not before: Thu 11 Jul 2024 19:04:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42861
IP address blocks: 77.91.66.0/24 maxlen: 24
77.91.68.0/24 maxlen: 24
77.91.76.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 01 Aug 2024 13:36:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:a3:2e:d7:b1:97:e6:c0:6c:8b:57:51:ce:cb:69:52:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d088cef28e02af7d00f297816c55f8e3c43d535
Validity
Not Before: Jul 11 19:04:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=42d798fa3451d6988994e57e6db9237b6f163b9c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:50:59:94:d4:c1:18:6d:52:10:bf:15:5e:74:
78:5b:5d:bb:4d:ff:8c:16:e9:50:df:ca:f6:31:b7:
23:93:d1:81:e2:1e:71:8f:23:f0:4f:eb:bc:ac:ac:
2f:6a:87:fa:76:da:b3:49:bd:16:81:36:b6:4d:7e:
93:a7:fa:7a:8b:71:9e:42:52:72:12:b9:53:d9:95:
b7:7c:41:e5:69:1f:9a:4d:18:e8:b7:bf:3e:16:8a:
e9:74:fd:a5:06:51:2b:8c:b4:4b:41:e3:e5:b0:20:
b1:60:9b:fe:04:e6:ec:78:b9:2b:fe:38:2d:bf:e2:
92:ab:9e:2d:20:38:e7:31:66:dc:09:e7:8e:b6:7b:
a7:a5:03:92:ae:2c:a9:65:5e:48:61:df:1a:14:eb:
07:fa:80:5b:bc:90:b1:44:77:8e:5d:4a:c9:db:53:
44:cb:c2:50:fc:84:83:77:89:e7:14:37:55:37:44:
4e:8e:42:0e:f3:25:ca:65:d2:cc:b1:96:35:72:f8:
33:66:82:61:6c:af:5a:98:0d:4d:40:98:0d:29:d0:
86:cc:ef:76:dd:c8:b0:3f:f8:79:e1:18:98:77:11:
0d:8d:e3:ad:64:79:01:a8:4a:e2:dc:58:9f:80:23:
e8:3e:52:93:82:7a:a7:90:3f:61:65:30:8e:22:77:
ea:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:D7:98:FA:34:51:D6:98:89:94:E5:7E:6D:B9:23:7B:6F:16:3B:9C
X509v3 Authority Key Identifier:
keyid:6D:08:8C:EF:28:E0:2A:F7:D0:0F:29:78:16:C5:5F:8E:3C:43:D5:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bQiM7yjgKvfQDyl4FsVfjjxD1TU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/d57a64-bd32-4c91-be06-fee8eaf73b0d/1/QteY-jRR1piJlOV-bbkje28WO5w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/d57a64-bd32-4c91-be06-fee8eaf73b0d/1/bQiM7yjgKvfQDyl4FsVfjjxD1TU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.91.66.0/24
77.91.68.0/24
77.91.76.0/24
Signature Algorithm: sha256WithRSAEncryption
02:7c:4f:77:65:29:40:af:89:2f:c7:e3:f4:20:f0:1c:98:3e:
97:a8:03:6f:8d:f4:1f:22:be:c3:6e:8f:2e:ff:70:9c:c2:fb:
2c:ac:15:4c:63:98:a5:e7:57:19:5b:9d:25:a2:e9:f7:e0:76:
26:33:f3:c6:16:03:fd:cc:cc:6b:7b:6c:29:dd:15:6c:ed:76:
17:6a:b3:17:eb:3b:0b:88:77:61:cb:a4:95:6f:9c:6b:88:95:
f4:4b:27:08:b9:b5:91:b5:4e:ed:73:1a:b7:53:c0:45:cc:02:
4c:b7:a6:bf:79:30:6f:64:3c:d5:9c:e2:06:a3:df:70:03:d3:
6e:31:14:40:83:6a:0c:9a:ff:e2:68:64:9e:68:bd:04:55:86:
22:ec:ff:b8:42:14:22:df:d5:25:9b:e7:c6:16:eb:a1:1b:75:
e6:92:73:49:ef:03:ea:37:59:6f:74:98:51:b2:ee:0c:7d:2e:
b7:e9:28:10:14:88:98:18:a1:e0:10:2e:fa:80:82:fb:b4:05:
9f:de:30:0b:ba:4c:83:39:67:53:4f:27:b0:8c:6c:31:73:30:
11:0a:78:54:ed:45:61:87:47:a3:c5:38:52:ff:e2:57:8f:cc:
03:c6:d6:f6:af:d7:d6:9e:42:17:b7:ee:07:d6:24:83:22:88:
89:65:5f:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 1 16:11:52 2024 by rpki-client on console-fra.rpki-client.org