Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/TWq1maNxYhClRDDzNLi8lr7SsYs.roa
File: TWq1maNxYhClRDDzNLi8lr7SsYs.roa (raw, json)
Hash identifier: 80LF+X7uo6TnUfcEPpkioU2SiEf9zjAaJqlrcXCazd4=
Subject key identifier: 4D:6A:B5:99:A3:71:62:10:A5:44:30:F3:34:B8:BC:96:BE:D2:B1:8B
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 018AFA95877CC2C226974EC93A35FC0FDDC5
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/TWq1maNxYhClRDDzNLi8lr7SsYs.roa
Signing time: Wed 04 Oct 2023 12:06:58 +0000
ROA not before: Wed 04 Oct 2023 12:06:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212193
IP address blocks: 77.92.152.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 25 Oct 2023 14:26:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:fa:95:87:7c:c2:c2:26:97:4e:c9:3a:35:fc:0f:dd:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Oct 4 12:06:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4d6ab599a3716210a54430f334b8bc96bed2b18b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:5d:b2:3c:5e:5a:44:ca:4d:6d:06:0b:7c:33:
5e:09:8e:be:58:fe:81:1d:ae:ad:6c:e6:91:ba:45:
b1:72:6e:90:bf:f0:52:86:6d:c6:16:aa:d2:02:6c:
c2:a8:14:56:87:79:bf:30:2c:3c:06:1e:21:bd:04:
1e:0d:6d:e5:79:b6:d5:bf:fb:f5:c3:32:f7:8b:dc:
02:43:dc:48:57:37:8e:3d:fa:8d:1f:97:33:d2:68:
a7:ca:90:29:f9:fe:49:74:19:83:8d:01:fb:e5:e7:
17:29:91:b1:78:02:d1:46:9b:c5:c8:33:6a:15:76:
ce:52:46:d0:5b:60:c4:81:0f:7c:41:b5:a1:46:9e:
75:f9:91:7d:04:97:0f:51:fc:ef:5c:0a:be:da:19:
38:bc:45:19:bc:ae:1b:ba:19:13:f8:b4:52:96:08:
e6:40:bb:0c:9c:cc:5f:98:a6:5b:07:89:8e:68:26:
29:9a:e8:bc:c6:a6:0a:18:25:84:b0:92:af:65:b6:
83:db:ae:e0:9e:6d:a0:87:bf:d5:6e:0f:bf:40:99:
5c:02:0b:e2:89:d8:29:d1:2e:de:bb:13:28:83:87:
f7:98:9d:f8:40:81:aa:c4:89:b5:3d:36:11:ab:05:
10:ec:05:cb:b1:59:f8:c4:93:bb:e6:5a:a5:34:d2:
77:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:6A:B5:99:A3:71:62:10:A5:44:30:F3:34:B8:BC:96:BE:D2:B1:8B
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/TWq1maNxYhClRDDzNLi8lr7SsYs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.92.152.0/24
Signature Algorithm: sha256WithRSAEncryption
55:a5:12:12:8e:45:c7:5c:b8:a1:2a:db:07:99:44:81:f3:54:
0c:1e:af:58:cc:41:e4:25:d6:62:01:1c:88:a9:30:3f:c0:fd:
60:4f:ae:88:db:ab:b9:5d:b6:8b:f0:6d:5f:6f:e6:3b:9c:04:
63:08:5d:96:e4:84:d3:e8:c2:56:c0:af:fe:74:23:d3:0b:e3:
5c:99:ed:e6:bb:f5:8d:f2:d7:26:5f:1b:fd:b3:68:67:73:cb:
41:11:fe:6c:7a:99:27:21:9f:de:23:e0:32:61:d9:57:3f:d4:
d9:d8:94:88:28:5f:b3:56:86:bd:8f:55:62:50:80:07:ca:84:
3a:06:df:ea:4a:50:19:67:da:57:8c:c6:72:04:00:bf:0c:77:
a1:d5:f6:2d:c1:5a:a4:a4:48:14:5c:b1:f9:45:71:c5:e5:bb:
18:d4:92:6e:84:14:c7:b2:72:c4:14:00:f0:82:51:5c:3d:fe:
33:48:dc:c2:88:44:12:4d:89:98:3f:56:cb:92:90:b3:ec:ee:
d2:47:5b:ff:20:51:01:23:d4:dd:22:d0:be:87:83:81:83:c5:
6d:c2:b2:70:5b:ef:b5:82:10:48:6c:d8:5c:ed:e3:dc:e9:18:
7a:b8:88:55:14:32:19:ed:e1:1d:31:14:06:a9:d0:0e:a3:17:
db:a8:8a:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:44 2024 by rpki-client on console-fra.rpki-client.org