Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/M6zTHcjPn8OSTqdQrQs7jEFCIPY.roa
File: M6zTHcjPn8OSTqdQrQs7jEFCIPY.roa (raw, json)
Hash identifier: hA66ZJMNU1EMjgQPFIEUQeViXakppQdEA7VUG5L2ywM=
Subject key identifier: 33:AC:D3:1D:C8:CF:9F:C3:92:4E:A7:50:AD:0B:3B:8C:41:42:20:F6
Certificate issuer: /CN=8f3818554a51808eefb829ec7465a3222f270123
Certificate serial: 019311063CB82B9C9369A383A9983407F5A6
Authority key identifier: 8F:38:18:55:4A:51:80:8E:EF:B8:29:EC:74:65:A3:22:2F:27:01:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jzgYVUpRgI7vuCnsdGWjIi8nASM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/M6zTHcjPn8OSTqdQrQs7jEFCIPY.roa
Signing time: Sat 09 Nov 2024 13:04:01 +0000
ROA not before: Sat 09 Nov 2024 13:04:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214201
IP address blocks: 77.73.31.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 09 Nov 2024 15:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:11:06:3c:b8:2b:9c:93:69:a3:83:a9:98:34:07:f5:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f3818554a51808eefb829ec7465a3222f270123
Validity
Not Before: Nov 9 13:04:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=33acd31dc8cf9fc3924ea750ad0b3b8c414220f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:38:07:8d:fc:19:1b:f6:cd:1c:19:21:04:72:
ef:14:c6:51:11:50:94:84:18:3d:0a:8d:76:23:33:
02:e4:81:28:df:9a:d8:e5:bf:5e:34:1b:66:ee:1a:
d6:1d:62:64:94:e6:2f:a2:58:27:12:fa:35:98:f9:
11:36:76:53:10:7a:4c:eb:0c:43:c4:97:9f:bc:a8:
22:8c:53:db:b6:86:61:8c:56:7e:8c:aa:6e:fa:ba:
af:d2:18:f4:fd:9e:18:a4:5b:52:9d:d9:85:82:d2:
b2:a9:74:b2:54:be:ce:ff:bd:b7:9e:06:6f:e3:7c:
f9:ab:f8:2e:16:2e:3b:d5:11:b2:84:b2:47:f1:5b:
22:8b:08:29:98:d8:ab:92:28:6b:36:41:57:ce:d4:
13:40:7d:f4:50:e7:2e:64:aa:4e:0b:4e:b9:14:22:
bd:ac:e7:93:4a:09:d0:c4:71:e1:78:59:52:26:7e:
97:54:74:fd:91:fc:37:62:33:f2:9d:07:87:17:32:
0a:d2:24:a8:e4:c9:b1:34:16:85:51:dd:18:84:fb:
a6:27:53:c7:6f:0f:7a:1e:14:77:cd:dd:2e:6f:ff:
19:ce:c2:df:3e:d2:8e:7e:bc:3b:09:04:ce:b1:f3:
a8:d7:8a:4a:cd:83:45:69:0a:d1:8f:ec:78:14:d5:
66:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:AC:D3:1D:C8:CF:9F:C3:92:4E:A7:50:AD:0B:3B:8C:41:42:20:F6
X509v3 Authority Key Identifier:
keyid:8F:38:18:55:4A:51:80:8E:EF:B8:29:EC:74:65:A3:22:2F:27:01:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jzgYVUpRgI7vuCnsdGWjIi8nASM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/M6zTHcjPn8OSTqdQrQs7jEFCIPY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/jzgYVUpRgI7vuCnsdGWjIi8nASM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.73.31.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:65:7d:2f:11:3e:62:4f:95:63:41:db:e7:cc:7c:82:13:24:
7e:38:a1:55:02:40:51:c4:20:61:1b:99:42:56:da:d6:b6:b8:
e8:d0:fc:51:84:b9:d6:dc:1e:cb:a9:6b:05:50:b4:d0:5a:eb:
df:67:85:d6:5b:40:9e:68:2b:5f:00:6f:60:a0:2b:30:f3:c5:
13:be:ef:54:e6:e5:84:c8:16:dc:98:dc:97:01:3f:42:d1:8f:
44:e5:58:e1:2d:1c:ac:73:16:81:40:9d:0c:07:1c:7a:13:09:
1a:19:6a:21:e9:b9:71:ff:1e:ed:d1:da:10:6d:2c:9b:fe:ca:
0e:13:0a:16:2f:9d:20:25:02:de:3a:b5:77:6a:1f:f9:04:86:
b9:7e:95:37:a5:dc:d6:35:d4:ae:fa:5d:50:90:f8:dc:ff:e9:
6d:79:97:c4:20:22:db:ff:db:6a:88:6d:36:9d:72:5f:0d:94:
1e:df:a9:53:b3:f7:19:1d:af:2a:fe:43:d5:3e:7b:53:85:97:
ad:80:5f:40:27:c2:7d:db:73:07:16:13:72:fa:a9:59:7b:b4:
00:21:c4:56:b4:60:7b:84:5e:86:48:72:a1:1d:ee:2a:c3:15:
db:1d:88:73:52:64:dc:6d:eb:f2:dd:e9:f4:69:2b:fa:87:56:
90:bf:3a:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 18:35:17 2025 by rpki-client