Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/GldQzfb7OhznkL6Hwj7f3TIUlpU.roa
File: GldQzfb7OhznkL6Hwj7f3TIUlpU.roa (raw, json)
Hash identifier: x7wZUA8dNu34lzejINaJa25aiW/9Ec/sOef6zzISPZs=
Subject key identifier: 1A:57:50:CD:F6:FB:3A:1C:E7:90:BE:87:C2:3E:DF:DD:32:14:96:95
Certificate issuer: /CN=8f3818554a51808eefb829ec7465a3222f270123
Certificate serial: 0191763B992692B9BAD888390012EE1B8035
Authority key identifier: 8F:38:18:55:4A:51:80:8E:EF:B8:29:EC:74:65:A3:22:2F:27:01:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jzgYVUpRgI7vuCnsdGWjIi8nASM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/GldQzfb7OhznkL6Hwj7f3TIUlpU.roa
Signing time: Wed 21 Aug 2024 18:38:22 +0000
ROA not before: Wed 21 Aug 2024 18:38:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42484
IP address blocks: 77.73.24.0/21 maxlen: 21
77.73.24.0/22 maxlen: 22
77.73.28.0/22 maxlen: 22
77.73.31.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 09 Nov 2024 13:04:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:76:3b:99:26:92:b9:ba:d8:88:39:00:12:ee:1b:80:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f3818554a51808eefb829ec7465a3222f270123
Validity
Not Before: Aug 21 18:38:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1a5750cdf6fb3a1ce790be87c23edfdd32149695
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:fe:d2:99:b5:0e:ec:19:01:61:d7:5a:92:33:
f7:10:96:ef:11:ab:60:cf:17:11:04:4d:0b:1a:97:
29:c9:73:fb:68:01:f6:04:86:1e:14:a2:74:4a:56:
f4:26:4e:46:61:a5:3c:12:78:95:77:e8:14:f6:af:
f1:44:69:ad:a7:b6:5c:2e:5f:2f:f8:1d:ec:cb:47:
de:d7:ae:39:7b:a4:4b:32:21:32:ca:c1:9b:00:db:
b0:3e:0b:78:14:71:e9:dc:fb:5b:13:70:ba:12:88:
4c:b9:ca:18:56:02:98:6b:98:49:5e:97:2d:c4:cb:
44:0e:3d:83:36:be:85:fe:d2:4e:8e:bc:e2:5f:45:
ff:84:d9:4b:6c:77:fb:da:ae:6d:79:73:fe:17:65:
35:6c:df:7e:e2:db:18:7a:e3:e4:60:02:01:9a:89:
d0:99:a3:65:cb:54:2f:98:a2:83:b0:8c:8f:4d:60:
d8:35:32:f1:08:05:15:45:22:66:7c:68:1f:f1:c2:
f8:18:9e:5f:b5:d5:c1:7f:50:b4:c8:8f:83:dd:7c:
ea:de:36:08:98:9f:4e:b0:23:56:24:5a:65:80:08:
9f:88:98:2f:ba:ec:24:9a:dc:df:d5:e4:1a:56:e1:
f0:56:cc:57:83:95:db:f3:fb:af:04:9f:b3:a4:37:
2c:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:57:50:CD:F6:FB:3A:1C:E7:90:BE:87:C2:3E:DF:DD:32:14:96:95
X509v3 Authority Key Identifier:
keyid:8F:38:18:55:4A:51:80:8E:EF:B8:29:EC:74:65:A3:22:2F:27:01:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jzgYVUpRgI7vuCnsdGWjIi8nASM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/GldQzfb7OhznkL6Hwj7f3TIUlpU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/jzgYVUpRgI7vuCnsdGWjIi8nASM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.73.24.0/21
Signature Algorithm: sha256WithRSAEncryption
8e:0f:08:0c:6a:c0:4c:26:b3:3c:7b:c3:dc:a7:fe:03:4d:9c:
77:00:92:86:63:ed:52:eb:32:25:e8:cc:5c:65:97:ec:84:ed:
df:79:bb:0d:c1:5c:22:9c:c5:14:17:59:87:41:40:d1:bc:f5:
92:8f:86:55:4f:24:57:8a:cc:b0:b8:fb:50:ca:a2:1c:ae:61:
83:df:12:b1:e4:6b:21:f0:5d:bd:e4:aa:5c:53:81:9b:35:c1:
a0:2e:fa:6e:2b:03:c6:f2:22:86:bb:58:e6:81:83:af:7d:69:
3b:40:e3:7b:ce:88:62:ba:ab:f7:08:34:6d:b2:47:7e:19:02:
8d:ed:32:19:4b:ca:ca:9f:46:c6:d8:56:71:43:81:15:88:25:
72:e1:b0:2b:cd:0a:6e:8f:d2:ec:e4:01:b2:40:0e:d4:03:f3:
28:1c:2a:51:93:24:5c:b3:30:d1:e3:5b:de:41:80:68:7d:fe:
d1:5d:9c:fe:36:8c:c8:ba:e5:7b:c7:99:04:e7:fc:be:3e:71:
65:fa:ba:15:15:5c:b4:80:d4:00:f7:e6:70:10:81:96:6b:45:
3e:bd:52:5d:6a:ae:5c:73:c6:d9:f5:bd:95:2b:47:eb:85:e2:
f2:f1:57:4a:a7:23:68:b8:1a:9f:a6:87:7c:17:5d:a4:72:51:
bb:2d:46:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:31:53 2025 by rpki-client