Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/6KpmKxRqtZ_TX0m0nNRnwVRpS_A.roa
File: 6KpmKxRqtZ_TX0m0nNRnwVRpS_A.roa (raw, json)
Hash identifier: 9ygJSY+etdC/amy9GJ2zrjTHBuLECeZCd/mBQs4skM4=
Subject key identifier: E8:AA:66:2B:14:6A:B5:9F:D3:5F:49:B4:9C:D4:67:C1:54:69:4B:F0
Certificate issuer: /CN=8f3818554a51808eefb829ec7465a3222f270123
Certificate serial: 01915A04A5378D1FE03FCAF85C3AB0D8A2F7
Authority key identifier: 8F:38:18:55:4A:51:80:8E:EF:B8:29:EC:74:65:A3:22:2F:27:01:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jzgYVUpRgI7vuCnsdGWjIi8nASM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/6KpmKxRqtZ_TX0m0nNRnwVRpS_A.roa
Signing time: Fri 16 Aug 2024 07:08:59 +0000
ROA not before: Fri 16 Aug 2024 07:08:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42484
IP address blocks: 77.73.24.0/21 maxlen: 21
Validation: Failed, certificate revoked on Tue 20 Aug 2024 14:04:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:5a:04:a5:37:8d:1f:e0:3f:ca:f8:5c:3a:b0:d8:a2:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f3818554a51808eefb829ec7465a3222f270123
Validity
Not Before: Aug 16 07:08:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e8aa662b146ab59fd35f49b49cd467c154694bf0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:a0:79:ae:08:a4:11:5a:af:4c:46:4e:1b:30:
ac:e7:cb:91:26:31:26:51:3a:31:2b:c0:98:00:c5:
94:a7:85:b7:eb:a1:77:f6:b0:fd:2d:52:36:d4:8a:
37:5b:9d:7b:6a:2a:ca:1e:c8:49:a6:e9:e1:aa:08:
05:2d:50:e6:8b:8b:85:a9:c0:96:1e:04:a3:31:4a:
c2:65:03:b9:97:32:5d:42:8b:d4:09:d8:53:66:23:
ff:80:5a:aa:e6:d8:ae:82:bc:7f:64:54:70:a4:5c:
c9:54:a5:64:cd:21:27:92:17:5f:b4:4d:1c:69:ca:
07:ed:aa:4e:06:b0:40:5d:5e:0e:2a:19:ff:21:25:
6c:5e:e1:c9:32:0a:21:72:20:c5:71:2e:be:5f:3c:
07:cf:3a:c6:95:4a:12:f2:5a:76:cf:7b:d7:bf:14:
eb:48:c1:5c:81:8a:f5:52:f7:6a:6c:20:9f:ef:65:
b5:03:24:ea:e5:3e:e0:e6:92:50:56:32:7c:e0:8f:
ad:cc:e3:cf:ca:1e:eb:72:50:f7:5a:ce:b3:9c:7d:
8e:b0:9a:a4:01:b0:6c:33:91:a5:e6:ce:ad:c5:99:
bd:19:54:20:6f:82:0e:8a:74:b5:e4:02:41:22:99:
77:11:37:38:f6:81:49:12:c7:bc:9c:df:21:08:c6:
7f:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:AA:66:2B:14:6A:B5:9F:D3:5F:49:B4:9C:D4:67:C1:54:69:4B:F0
X509v3 Authority Key Identifier:
keyid:8F:38:18:55:4A:51:80:8E:EF:B8:29:EC:74:65:A3:22:2F:27:01:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jzgYVUpRgI7vuCnsdGWjIi8nASM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/6KpmKxRqtZ_TX0m0nNRnwVRpS_A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/jzgYVUpRgI7vuCnsdGWjIi8nASM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.73.24.0/21
Signature Algorithm: sha256WithRSAEncryption
1a:f7:83:de:4b:23:74:a2:3b:7f:2a:46:96:2a:9d:8b:da:ac:
48:c2:73:f8:e5:31:be:4a:e2:61:2b:b5:bf:32:1e:05:84:11:
3a:03:2d:50:78:9a:5b:7e:dd:06:3a:9c:56:de:8b:8d:4c:94:
b7:61:07:f1:3f:01:bd:68:6b:98:b6:62:a0:ed:88:a7:db:ad:
58:a6:0b:2c:6a:b3:85:6e:22:a6:f1:3c:09:f1:b2:c3:4c:2a:
e6:66:14:01:da:a5:c3:ca:2e:ca:f9:db:16:c5:3d:7c:3a:1b:
29:ef:33:d8:d3:d9:3e:a0:c0:79:7b:15:61:b0:48:d4:a2:e9:
21:ca:8f:64:a7:c6:86:ca:cb:b9:b8:66:8f:2f:35:2d:33:7f:
29:87:22:af:c0:05:52:e2:46:0d:8a:0d:01:1c:e9:fe:87:09:
6d:20:7b:b0:ca:15:42:e7:99:be:29:5c:2a:30:e2:4f:1f:a0:
27:30:ea:cf:9d:90:93:f3:7b:33:55:e8:7a:e9:ff:fd:bf:f8:
ba:73:d6:1e:9c:66:c2:c4:3a:32:a6:44:fc:6a:e0:06:63:0d:
d4:34:ac:d1:bc:09:39:cb:00:e9:ab:a4:c3:da:df:b2:63:9d:
77:8d:20:83:d6:79:ab:a3:f1:d2:df:15:5f:0e:ba:35:66:15:
d3:8b:70:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 20 17:10:13 2024 by rpki-client on console-ams.rpki-client.org