Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/d57a64-bd32-4c91-be06-fee8eaf73b0d/1/e2UytY9moY9PnQB7H3U_5n931zw.roa
File: e2UytY9moY9PnQB7H3U_5n931zw.roa (raw, json)
Hash identifier: 9xia60hyhomRJ9H1FnBQgb+CxQhqzhPo7n6Ghh7yY64=
Subject key identifier: 7B:65:32:B5:8F:66:A1:8F:4F:9D:00:7B:1F:75:3F:E6:7F:77:D7:3C
Certificate issuer: /CN=6d088cef28e02af7d00f297816c55f8e3c43d535
Certificate serial: 018CA5C286B3AFEBEB0CD9439882A1688C44
Authority key identifier: 6D:08:8C:EF:28:E0:2A:F7:D0:0F:29:78:16:C5:5F:8E:3C:43:D5:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bQiM7yjgKvfQDyl4FsVfjjxD1TU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/d57a64-bd32-4c91-be06-fee8eaf73b0d/1/e2UytY9moY9PnQB7H3U_5n931zw.roa
Signing time: Tue 26 Dec 2023 10:53:58 +0000
ROA not before: Tue 26 Dec 2023 10:53:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210644
IP address blocks: 77.91.70.0/24 maxlen: 24
77.91.78.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:a5:c2:86:b3:af:eb:eb:0c:d9:43:98:82:a1:68:8c:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d088cef28e02af7d00f297816c55f8e3c43d535
Validity
Not Before: Dec 26 10:53:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7b6532b58f66a18f4f9d007b1f753fe67f77d73c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:b8:65:e3:80:52:18:a1:51:ac:1a:f6:1e:b4:
26:75:62:b5:69:ba:16:9f:47:0b:4a:09:b5:b5:7c:
7b:ed:67:f8:5d:dd:92:e9:f0:0e:cc:1c:20:89:de:
e5:9a:5f:6b:47:8b:d8:d1:0a:2e:1c:1c:e5:37:4e:
bf:26:64:32:d9:f0:bb:ba:57:db:a7:09:e6:7f:74:
21:6e:e5:e4:2f:47:95:ee:0f:1e:44:59:be:d9:61:
76:1e:44:44:33:e6:b1:1f:46:f2:f4:81:75:56:e6:
6a:49:27:6b:50:de:41:89:b9:b6:6a:19:d2:e9:ff:
f5:55:fc:82:36:b2:ec:70:ec:aa:82:f1:20:a9:d3:
ad:18:bf:78:e7:ee:41:38:7e:cf:24:bc:f8:e3:2a:
9a:7c:88:b1:7e:23:04:af:e0:b0:4c:ae:47:30:27:
1c:c7:14:80:aa:62:ee:0a:0b:d0:2c:b7:0a:83:9d:
40:10:fb:c6:d1:2c:8c:08:73:66:b4:b1:10:51:9d:
73:48:25:68:dc:d3:b4:fe:c1:46:41:d5:dd:11:29:
0c:19:af:78:d9:1d:bf:c8:4e:68:1d:1b:5c:d3:0a:
42:df:4e:fc:8d:41:ab:c7:15:6f:09:7a:c8:5d:ae:
38:4a:95:fc:71:24:40:69:c7:fd:31:dd:ed:2f:92:
cc:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:65:32:B5:8F:66:A1:8F:4F:9D:00:7B:1F:75:3F:E6:7F:77:D7:3C
X509v3 Authority Key Identifier:
keyid:6D:08:8C:EF:28:E0:2A:F7:D0:0F:29:78:16:C5:5F:8E:3C:43:D5:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bQiM7yjgKvfQDyl4FsVfjjxD1TU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/d57a64-bd32-4c91-be06-fee8eaf73b0d/1/e2UytY9moY9PnQB7H3U_5n931zw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/d57a64-bd32-4c91-be06-fee8eaf73b0d/1/bQiM7yjgKvfQDyl4FsVfjjxD1TU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.91.70.0/24
77.91.78.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:9c:b3:ed:73:20:b4:4e:6d:ed:49:2d:bc:07:f1:b7:3d:37:
f0:11:53:01:0c:0e:e3:90:ba:fc:42:8b:37:c3:74:cc:a1:49:
a3:2c:c1:0b:62:21:75:4c:7f:e2:0c:b0:2b:90:c8:e1:99:2d:
6d:fa:8e:47:ac:32:99:a1:36:ec:5d:a6:bc:9e:46:84:0a:ae:
1d:69:7e:18:e3:7d:7b:5f:53:da:c1:a6:6e:8e:f5:04:1f:79:
45:29:82:ce:d0:ae:5a:e7:24:d0:3f:d4:5e:00:f8:d0:07:96:
ce:37:05:6b:b2:84:28:de:ad:a5:db:81:93:bd:e7:bd:d8:c0:
41:23:56:22:0b:42:c2:ad:b2:3d:a0:2e:40:04:2c:8f:8b:a3:
f1:6b:7f:42:27:16:e8:e5:8e:5f:a9:94:a1:5c:39:62:8f:d5:
5b:96:e5:f9:d6:c2:14:41:fc:a6:60:c9:2a:16:a7:5f:80:a4:
94:00:7a:31:58:0c:81:10:8a:d3:a7:8b:e4:34:40:b5:1f:9a:
42:f3:37:bd:a8:a8:17:38:ee:e9:86:4e:ff:f8:08:cc:53:ff:
2c:d5:9c:a4:71:7c:07:f7:d3:4d:03:a2:04:40:3c:dc:fa:84:
78:c2:9a:bb:de:12:d0:6c:b8:f8:02:05:cc:79:8f:b7:a9:90:
d5:e9:a9:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:39 2024 by rpki-client on console-fra.rpki-client.org