Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/d57a64-bd32-4c91-be06-fee8eaf73b0d/1/knGnuZq7jBqagpdjywv3xzUrtKo.roa
File: knGnuZq7jBqagpdjywv3xzUrtKo.roa (raw, json)
Hash identifier: J4zAqFNXRd/2cwktaeR5Ny7twBjs5yusaNrWNzWeIuc=
Subject key identifier: 92:71:A7:B9:9A:BB:8C:1A:9A:82:97:63:CB:0B:F7:C7:35:2B:B4:AA
Certificate issuer: /CN=6d088cef28e02af7d00f297816c55f8e3c43d535
Certificate serial: 01879ED87FD1D649DB40F201544BFC4CBB00
Authority key identifier: 6D:08:8C:EF:28:E0:2A:F7:D0:0F:29:78:16:C5:5F:8E:3C:43:D5:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bQiM7yjgKvfQDyl4FsVfjjxD1TU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/d57a64-bd32-4c91-be06-fee8eaf73b0d/1/knGnuZq7jBqagpdjywv3xzUrtKo.roa
Signing time: Thu 20 Apr 2023 13:26:41 +0000
ROA not before: Thu 20 Apr 2023 13:26:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42861
IP address blocks: 77.91.64.0/22 maxlen: 22
77.91.66.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 07 Aug 2023 13:10:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:9e:d8:7f:d1:d6:49:db:40:f2:01:54:4b:fc:4c:bb:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d088cef28e02af7d00f297816c55f8e3c43d535
Validity
Not Before: Apr 20 13:26:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9271a7b99abb8c1a9a829763cb0bf7c7352bb4aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:bb:83:a9:b2:23:2e:cb:d4:36:64:d5:d0:b7:
6b:1f:97:26:41:05:63:89:eb:f6:c3:b2:75:39:ea:
7a:73:f4:89:e7:55:7e:9c:1a:16:7a:c1:45:6f:88:
e1:cc:33:05:de:21:7a:9f:98:a2:81:16:b1:e7:46:
86:c1:21:db:14:65:8b:cf:3e:0e:e0:b4:28:d1:c3:
43:26:ef:67:3c:21:3d:2d:c7:9b:ac:98:72:98:80:
8c:b1:e9:ca:f9:26:81:a8:3d:a1:11:60:51:91:c8:
14:c8:f6:62:a6:c5:c6:cb:7b:cd:5c:4a:1f:bf:2d:
11:e7:e1:4e:93:c2:99:fc:89:3b:79:bb:76:20:4b:
75:d7:58:ae:ec:8c:b8:cb:2c:ce:60:58:a0:1e:78:
2f:99:3e:64:ef:70:2e:47:65:d9:ae:87:2e:81:7a:
98:b2:b0:3a:cc:67:a6:02:c7:5b:9f:4a:45:9e:43:
9b:f3:b3:b2:ab:8e:3d:cf:38:da:1f:f4:27:55:d1:
da:bb:af:81:7e:61:22:4e:70:0f:73:47:7e:f2:bd:
44:14:95:18:a8:60:50:e8:1b:6b:66:0b:53:3d:ef:
65:0b:cd:02:2a:e0:0f:61:36:67:ec:36:4a:76:b7:
03:47:d6:0a:67:a7:25:46:d3:52:d7:d9:54:0f:0c:
6d:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:71:A7:B9:9A:BB:8C:1A:9A:82:97:63:CB:0B:F7:C7:35:2B:B4:AA
X509v3 Authority Key Identifier:
keyid:6D:08:8C:EF:28:E0:2A:F7:D0:0F:29:78:16:C5:5F:8E:3C:43:D5:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bQiM7yjgKvfQDyl4FsVfjjxD1TU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/d57a64-bd32-4c91-be06-fee8eaf73b0d/1/knGnuZq7jBqagpdjywv3xzUrtKo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/d57a64-bd32-4c91-be06-fee8eaf73b0d/1/bQiM7yjgKvfQDyl4FsVfjjxD1TU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.91.64.0/22
Signature Algorithm: sha256WithRSAEncryption
82:d0:70:e1:3c:4e:2c:c2:61:81:b9:4c:79:7b:af:16:43:ae:
60:c4:35:ce:17:be:5f:27:b2:6b:28:c3:f5:35:cc:92:13:8d:
a3:56:c1:11:81:02:13:a5:08:bc:3d:ee:ea:ce:1e:59:b5:26:
8d:ec:47:bd:eb:81:21:ed:a3:44:60:26:f5:64:be:14:3b:dc:
5a:90:ef:5a:21:e5:0e:a7:35:aa:2c:d3:d8:fd:76:d1:f6:83:
54:b4:43:72:b5:64:a8:40:63:e7:21:92:27:ba:5f:7a:71:d2:
ef:9f:4b:3d:1c:ca:78:21:60:ea:02:f4:a0:6c:d3:42:61:05:
df:06:21:55:b0:7c:fd:ff:7a:51:22:c6:88:1c:98:a5:10:49:
d6:be:bb:ae:db:df:46:3b:6e:1f:ca:04:48:f5:19:eb:b8:d2:
d9:34:f3:ec:5a:bb:52:52:d9:1c:0d:73:8f:95:8d:91:f2:a1:
68:4b:56:76:ec:f0:50:96:b1:d2:e6:ee:e0:0d:0e:6a:44:af:
86:82:19:0b:68:b8:97:24:ff:2f:30:81:8a:25:2a:db:9c:79:
63:fd:ac:bd:e5:52:14:00:9d:7b:46:e4:c5:29:54:df:5e:8d:
8f:83:0d:00:9c:4a:54:01:69:f9:46:10:dd:62:ee:0a:f1:35:
c1:19:07:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:39 2024 by rpki-client on console-fra.rpki-client.org