Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/dbd951-259b-4759-a519-9c5e1deb2c33/1/UiB3ZH976bLjPCA1qLcKzbajhEQ.roa
File: UiB3ZH976bLjPCA1qLcKzbajhEQ.roa (raw, json)
Hash identifier: wQjLZ9b4iPA9AVm91UHBh/oJWP4lPilV6euVumEyM2U=
Subject key identifier: 52:20:77:64:7F:7B:E9:B2:E3:3C:20:35:A8:B7:0A:CD:B6:A3:84:44
Certificate issuer: /CN=2400b20606314858a7b3f2a975e8e9d919ec753a
Certificate serial: 01856F8B882DC1A1E9F3B847E8E8D20248C9
Authority key identifier: 24:00:B2:06:06:31:48:58:A7:B3:F2:A9:75:E8:E9:D9:19:EC:75:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JACyBgYxSFins_Kpdejp2RnsdTo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/dbd951-259b-4759-a519-9c5e1deb2c33/1/UiB3ZH976bLjPCA1qLcKzbajhEQ.roa
Signing time: Sun 01 Jan 2023 22:54:53 +0000
ROA not before: Sun 01 Jan 2023 22:54:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198149
IP address blocks: 77.246.177.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:8b:88:2d:c1:a1:e9:f3:b8:47:e8:e8:d2:02:48:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2400b20606314858a7b3f2a975e8e9d919ec753a
Validity
Not Before: Jan 1 22:54:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=522077647f7be9b2e33c2035a8b70acdb6a38444
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:7f:43:7f:bb:12:2f:35:30:e1:b1:0c:99:46:
81:cc:a9:b9:5e:5b:50:38:aa:b8:6e:11:5e:ef:de:
8c:96:d3:11:a6:ac:c4:76:69:77:25:24:64:65:43:
79:91:32:a3:a8:fa:6c:16:cb:5b:84:86:41:26:1f:
43:1c:80:92:49:50:96:80:d6:db:75:35:41:3d:cc:
27:12:9c:94:57:5d:3b:cb:d5:1b:fe:f9:35:75:8b:
fb:65:9c:06:19:de:e3:22:25:b8:54:47:1a:61:48:
29:c0:ad:c9:9d:d6:fc:80:d2:1b:5d:f0:42:f3:31:
87:b0:62:b3:81:88:9c:b4:35:bb:da:d7:0f:f9:ec:
0c:99:10:0f:0c:af:25:07:9f:37:23:50:02:dd:5a:
a3:5b:52:96:f0:7a:83:80:d8:fd:25:1d:8c:60:18:
b7:80:18:65:4e:2d:e4:88:4b:19:45:f4:03:7a:b0:
c8:2d:0d:11:f4:60:ba:07:97:2b:d7:81:10:27:24:
62:ca:67:65:55:fa:f1:51:72:de:90:02:93:16:07:
0d:cf:26:28:23:48:f0:b1:75:5e:97:90:8a:41:97:
d7:73:b1:d9:61:59:47:5a:49:04:1d:3d:66:b3:d1:
aa:1c:d0:e4:c0:1b:30:0b:34:8a:20:25:88:e1:1a:
6e:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:20:77:64:7F:7B:E9:B2:E3:3C:20:35:A8:B7:0A:CD:B6:A3:84:44
X509v3 Authority Key Identifier:
keyid:24:00:B2:06:06:31:48:58:A7:B3:F2:A9:75:E8:E9:D9:19:EC:75:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JACyBgYxSFins_Kpdejp2RnsdTo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/dbd951-259b-4759-a519-9c5e1deb2c33/1/UiB3ZH976bLjPCA1qLcKzbajhEQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/dbd951-259b-4759-a519-9c5e1deb2c33/1/JACyBgYxSFins_Kpdejp2RnsdTo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.246.177.0/24
Signature Algorithm: sha256WithRSAEncryption
41:b7:62:b6:58:98:41:f4:ad:58:0f:e2:a7:1d:4b:a2:77:a3:
7c:7e:75:ba:1e:45:70:33:34:de:5f:ac:0e:21:3e:97:d0:32:
fa:89:bc:fb:6f:be:91:5b:44:aa:49:de:a8:0f:a3:b7:28:60:
ac:1d:a8:a7:bb:68:c6:63:7e:ad:d5:82:4f:98:3f:23:c8:e5:
28:56:2d:f1:eb:ab:1e:b7:d1:b8:8a:c7:21:7b:2b:e1:ae:08:
ba:02:9a:09:81:ec:99:7b:2a:d6:d3:16:29:59:ad:2c:94:aa:
a4:95:63:7d:84:91:17:80:a5:d8:fa:ad:79:81:46:c4:f8:29:
28:b1:d5:5d:d3:9e:26:af:e0:5c:71:6d:bf:96:70:1b:44:91:
ca:6e:d6:0e:4e:03:02:26:3b:df:10:ed:46:93:10:73:93:de:
18:e8:84:04:71:c3:34:ad:12:79:78:f3:49:40:49:6a:0c:12:
0c:86:6c:17:40:b5:83:e3:33:90:58:78:ca:48:f1:79:44:07:
aa:7a:96:5a:60:e0:66:5e:6b:55:a3:84:05:da:fb:8a:33:8a:
08:15:20:e8:ad:1a:10:47:cc:be:e1:ba:d2:2f:11:73:84:08:
52:df:42:ac:bb:7e:61:33:13:2b:8d:b1:27:fe:2f:1b:95:91:
b1:63:f3:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 01:49:41 2024 by rpki-client on console-fra.rpki-client.org