Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/d57a64-bd32-4c91-be06-fee8eaf73b0d/1/bpai1C37PFxt8RwE8ShhxjaVGLU.roa
File: bpai1C37PFxt8RwE8ShhxjaVGLU.roa (raw, json)
Hash identifier: wJeBNgdE0UP4DnCuMFFeQf5sgTkA37WFCml1lrgy8ps=
Subject key identifier: 6E:96:A2:D4:2D:FB:3C:5C:6D:F1:1C:04:F1:28:61:C6:36:95:18:B5
Certificate issuer: /CN=6d088cef28e02af7d00f297816c55f8e3c43d535
Certificate serial: 0189D01F4DE76086F09100410C1B73598CCF
Authority key identifier: 6D:08:8C:EF:28:E0:2A:F7:D0:0F:29:78:16:C5:5F:8E:3C:43:D5:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bQiM7yjgKvfQDyl4FsVfjjxD1TU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/d57a64-bd32-4c91-be06-fee8eaf73b0d/1/bpai1C37PFxt8RwE8ShhxjaVGLU.roa
Signing time: Mon 07 Aug 2023 13:10:59 +0000
ROA not before: Mon 07 Aug 2023 13:10:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42861
IP address blocks: 77.91.64.0/24 maxlen: 24
77.91.66.0/24 maxlen: 24
77.91.65.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 26 Dec 2023 10:51:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:d0:1f:4d:e7:60:86:f0:91:00:41:0c:1b:73:59:8c:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d088cef28e02af7d00f297816c55f8e3c43d535
Validity
Not Before: Aug 7 13:10:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6e96a2d42dfb3c5c6df11c04f12861c6369518b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:8d:25:15:f7:fe:f4:c1:61:88:4b:98:0c:04:
3f:1a:ad:c1:be:3e:9b:92:2a:17:65:3a:4e:f8:49:
66:fb:3c:a0:01:b8:4f:ee:ca:1e:85:ae:75:79:aa:
f2:a8:7d:ef:7b:eb:82:5d:bf:f8:a7:be:7d:28:0d:
97:74:6b:b6:71:eb:1c:9b:f2:20:58:62:fd:90:67:
51:a6:cf:fa:de:c8:83:a4:20:ed:12:b8:83:6c:05:
7f:fe:26:e0:75:36:a6:9b:8f:1a:53:ce:09:27:0d:
33:35:6f:d1:ef:c2:23:b8:64:3c:b7:e4:f4:33:2d:
17:f3:37:d9:b1:50:7a:ac:e7:2d:0a:ab:a4:4b:04:
52:8c:5c:6e:f0:b7:32:28:7b:d6:a7:9f:db:8b:67:
1f:96:63:0f:2e:d4:3c:2c:02:cb:98:03:9d:6f:4d:
9e:52:d0:a8:91:82:1c:31:89:c3:cf:de:f8:dc:4b:
74:9f:3b:1f:40:1e:25:06:34:e8:07:00:7d:ea:c4:
ac:23:c4:81:a2:1a:86:28:c3:fb:a7:7f:5b:50:db:
29:2e:28:2d:83:79:f3:26:27:cd:10:3b:bb:35:aa:
2b:c8:b5:f5:50:a2:6f:63:15:eb:7b:c7:fa:59:a8:
02:cd:ad:ee:e4:64:e4:dc:5a:21:01:b8:2b:3d:ae:
60:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:96:A2:D4:2D:FB:3C:5C:6D:F1:1C:04:F1:28:61:C6:36:95:18:B5
X509v3 Authority Key Identifier:
keyid:6D:08:8C:EF:28:E0:2A:F7:D0:0F:29:78:16:C5:5F:8E:3C:43:D5:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bQiM7yjgKvfQDyl4FsVfjjxD1TU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/d57a64-bd32-4c91-be06-fee8eaf73b0d/1/bpai1C37PFxt8RwE8ShhxjaVGLU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/d57a64-bd32-4c91-be06-fee8eaf73b0d/1/bQiM7yjgKvfQDyl4FsVfjjxD1TU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.91.64.0-77.91.66.255
Signature Algorithm: sha256WithRSAEncryption
85:5c:ce:99:8e:ff:4a:34:03:4c:25:95:bc:f8:f9:03:c4:b5:
8f:11:8f:b0:d3:22:54:7b:e6:40:88:64:8d:db:dd:89:10:7f:
eb:97:ad:86:3c:a0:b7:40:74:0d:85:fa:06:7e:1f:8e:d5:51:
94:05:09:99:65:18:c0:10:72:ec:7f:01:55:96:ae:8a:64:b7:
a6:9e:48:5d:65:dd:b2:0f:54:cf:43:41:9e:03:7e:27:21:ce:
94:69:7f:bd:4b:49:2c:9c:55:34:86:3a:b5:7a:cb:12:27:95:
ca:aa:74:29:16:76:3a:1d:0d:0a:8d:24:bb:2d:6c:39:8a:cc:
33:b4:29:02:90:75:60:76:c9:8d:fa:4c:32:24:2b:66:1f:14:
58:5c:0e:15:5d:c5:2e:9f:3f:aa:15:d1:fb:5e:b3:de:fb:49:
32:40:c1:21:4b:d1:76:bd:51:95:74:e3:50:07:45:d6:ca:4e:
ff:9a:4e:fd:c6:69:d7:7d:79:86:27:97:2b:86:50:c0:f9:e5:
df:f8:f4:ae:b3:0f:86:99:de:da:ef:c1:63:9f:b5:66:78:38:
80:4e:5a:1c:7b:3a:cb:1f:15:3f:ef:d0:bb:cb:dc:ce:13:81:
5b:59:20:0d:4b:27:50:c3:00:9b:2a:27:a6:20:79:4e:39:ad:
ea:d6:c4:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:39 2024 by rpki-client on console-fra.rpki-client.org