Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/d57a64-bd32-4c91-be06-fee8eaf73b0d/1/agMRQBA6TBugc8Z3IMJ2Q9L5tlU.roa
File: agMRQBA6TBugc8Z3IMJ2Q9L5tlU.roa (raw, json)
Hash identifier: cAqiIFkN/77cSwIdVytO+uAIb7xozRoZiuVOjMZFpq4=
Subject key identifier: 6A:03:11:40:10:3A:4C:1B:A0:73:C6:77:20:C2:76:43:D2:F9:B6:55
Certificate issuer: /CN=6d088cef28e02af7d00f297816c55f8e3c43d535
Certificate serial: 018CC9BC08240E013F5B52E93D1F315FD301
Authority key identifier: 6D:08:8C:EF:28:E0:2A:F7:D0:0F:29:78:16:C5:5F:8E:3C:43:D5:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bQiM7yjgKvfQDyl4FsVfjjxD1TU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/d57a64-bd32-4c91-be06-fee8eaf73b0d/1/agMRQBA6TBugc8Z3IMJ2Q9L5tlU.roa
Signing time: Tue 02 Jan 2024 10:33:12 +0000
ROA not before: Tue 02 Jan 2024 10:33:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199417
IP address blocks: 77.91.77.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 24 May 2024 15:16:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:08:24:0e:01:3f:5b:52:e9:3d:1f:31:5f:d3:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d088cef28e02af7d00f297816c55f8e3c43d535
Validity
Not Before: Jan 2 10:33:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6a031140103a4c1ba073c67720c27643d2f9b655
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:cd:1e:73:15:56:b9:a3:e6:2d:a5:46:a5:a9:
1e:b5:36:28:ac:a9:d6:f3:99:48:a2:cc:c9:2e:f6:
30:cf:02:c0:e6:4e:43:ba:7a:98:b2:f7:df:a9:cc:
08:62:c4:e8:77:8d:f2:d7:3f:e3:ff:8f:63:62:63:
d4:77:d1:27:aa:b4:05:4b:ad:df:3f:c5:45:dc:de:
d8:46:6b:88:b8:f4:2a:07:bf:b8:f1:9b:17:ca:ce:
66:82:6c:21:d6:41:c8:12:1e:73:45:87:2a:15:0e:
3e:ea:f7:3c:b4:25:32:53:38:ef:cc:1d:c3:b9:11:
4c:94:bf:4e:42:3a:ce:2f:23:bf:02:f4:5b:69:c3:
26:5d:65:6d:cb:bd:e5:8f:e1:06:d7:5f:30:53:b2:
5d:c5:e5:1f:a9:e7:ba:64:c3:9f:3e:65:2c:99:91:
5a:62:a9:a4:77:d8:f1:15:a1:f7:7e:33:57:1a:80:
4d:16:72:b0:fe:ff:c9:ed:07:d5:80:af:c9:35:39:
77:8c:60:83:a6:8f:d8:d6:f9:f4:35:45:24:dc:7a:
8e:28:80:4c:07:ae:c3:03:4f:af:34:6c:07:eb:fe:
88:ce:25:56:99:ea:4b:55:65:dd:d2:98:c8:c0:5d:
25:92:9a:54:59:b6:dd:4d:af:ca:10:58:e5:c4:43:
ed:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:03:11:40:10:3A:4C:1B:A0:73:C6:77:20:C2:76:43:D2:F9:B6:55
X509v3 Authority Key Identifier:
keyid:6D:08:8C:EF:28:E0:2A:F7:D0:0F:29:78:16:C5:5F:8E:3C:43:D5:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bQiM7yjgKvfQDyl4FsVfjjxD1TU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/d57a64-bd32-4c91-be06-fee8eaf73b0d/1/agMRQBA6TBugc8Z3IMJ2Q9L5tlU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/d57a64-bd32-4c91-be06-fee8eaf73b0d/1/bQiM7yjgKvfQDyl4FsVfjjxD1TU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.91.77.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:15:cc:20:7f:a1:09:cc:a8:b5:c2:93:63:82:b9:6d:f0:27:
02:e0:f1:c2:ff:be:8a:b2:ff:54:f5:8a:b9:01:30:7c:a2:33:
6c:44:d1:7a:e4:68:3c:4c:27:c8:a6:3a:b4:b8:16:2f:cf:f8:
46:44:9f:01:34:e6:99:ea:87:32:96:ec:64:c4:d0:99:98:19:
92:b2:6e:4a:4a:3d:81:bb:e1:a3:53:38:d0:09:22:60:7c:f2:
b6:ab:f0:e2:a2:be:9f:b5:6d:87:6c:40:80:4d:d1:c3:02:6b:
14:9e:ba:68:f1:5a:a3:dd:a5:1b:6b:29:af:32:1f:23:4a:46:
74:8a:99:19:5e:d6:7a:50:49:ab:49:eb:95:24:36:f3:f8:e9:
5a:fc:05:45:c5:09:d5:dd:a5:af:32:52:df:60:cf:1f:94:47:
fe:21:c4:55:99:d6:85:45:59:a2:10:5a:6f:c0:35:5a:3c:8e:
51:19:8a:41:86:c4:3b:df:a0:81:f7:b0:f2:15:24:68:2e:ca:
ac:20:29:1a:e4:3e:3e:4a:1b:8d:9a:e8:ed:f2:86:fb:41:bf:
3b:4d:23:55:04:9f:13:52:48:9c:9a:0c:64:3d:5c:60:64:7d:
b5:6f:37:51:7d:1a:55:b6:68:46:0a:14:4e:1a:bb:f5:73:02:
55:8a:b9:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 24 18:03:48 2024 by rpki-client on console-fra.rpki-client.org