Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/apHAveggLgBzR84cnEu4-ntsIT4.roa
File: apHAveggLgBzR84cnEu4-ntsIT4.roa (raw, json)
Hash identifier: AlHCf+6d+r67t8l376VDgHq2bsYaQqtzR5JNdCIdO60=
Subject key identifier: 6A:91:C0:BD:E8:20:2E:00:73:47:CE:1C:9C:4B:B8:FA:7B:6C:21:3E
Certificate issuer: /CN=19426325acb8ce609a686fa655b058968809b346
Certificate serial: 019011245F44B98B0B3153BBB05618C02931
Authority key identifier: 19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/apHAveggLgBzR84cnEu4-ntsIT4.roa
Signing time: Thu 13 Jun 2024 10:28:34 +0000
ROA not before: Thu 13 Jun 2024 10:28:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 50225
IP address blocks: 77.47.241.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 26 Jun 2024 10:27:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:11:24:5f:44:b9:8b:0b:31:53:bb:b0:56:18:c0:29:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19426325acb8ce609a686fa655b058968809b346
Validity
Not Before: Jun 13 10:28:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6a91c0bde8202e007347ce1c9c4bb8fa7b6c213e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:12:42:3f:ee:11:a4:98:b7:cf:dc:b9:f9:bf:
d3:73:b1:0d:e1:97:fc:cb:18:96:25:d5:b9:a1:17:
5e:72:e0:ad:85:7e:c0:cc:5d:b0:a0:9d:ed:cb:84:
54:f2:9e:26:47:fc:4e:c5:01:de:76:17:d8:01:dc:
58:8f:86:32:f8:f4:04:72:41:82:6b:71:3c:53:34:
5c:3c:63:3a:cb:36:81:77:fc:70:4d:1f:c6:bc:ca:
05:3a:5c:a0:da:6d:58:3d:ee:9e:9e:17:7a:f6:95:
4a:ba:5f:0e:4d:1b:73:f1:89:82:38:2e:9c:b3:ff:
03:1c:ad:9e:dd:8d:2e:9f:35:03:83:94:bd:a8:8c:
37:d0:fb:9b:27:32:28:6c:d9:e1:f3:7f:41:d6:8e:
a8:e9:80:f3:d0:2a:51:27:f3:2f:aa:d3:3b:42:6c:
5d:3f:e0:63:61:ff:b9:f3:9b:3e:a2:86:c8:1c:05:
f1:32:be:f7:11:6f:c3:c1:93:66:fa:f6:b5:29:d0:
a8:2b:a6:10:a7:8f:b9:4e:35:1b:04:f4:ae:dd:62:
aa:32:f5:4f:91:1b:fd:13:fc:5d:36:22:53:34:00:
7f:4b:cc:73:e6:2f:aa:d2:3f:ad:98:5c:95:35:9d:
fa:ea:9a:6f:d2:b2:e7:cd:44:2a:a1:3d:44:ef:42:
9d:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:91:C0:BD:E8:20:2E:00:73:47:CE:1C:9C:4B:B8:FA:7B:6C:21:3E
X509v3 Authority Key Identifier:
keyid:19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/apHAveggLgBzR84cnEu4-ntsIT4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/GUJjJay4zmCaaG-mVbBYlogJs0Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.47.241.0/24
Signature Algorithm: sha256WithRSAEncryption
94:ba:15:05:fe:d8:4c:10:02:09:27:f6:2d:e3:95:28:3e:f1:
62:f6:e5:3a:94:ad:80:c9:fa:a4:e7:c0:ad:37:b5:d1:35:72:
3c:d2:27:21:59:d0:46:45:46:80:16:82:b9:32:c9:39:87:f2:
54:de:2a:e3:3b:4b:b3:be:ee:03:e8:cd:ba:8f:77:9d:ec:cf:
44:3c:9b:01:90:83:5b:21:a3:56:75:78:63:09:28:63:53:88:
11:f0:67:aa:b0:12:30:26:d7:0d:70:03:e8:40:59:84:ae:59:
ef:7a:04:45:cf:02:ac:a7:b3:01:b6:b1:e7:f7:f5:0c:2e:8b:
eb:52:58:1a:8c:59:7f:47:5d:a0:90:41:e1:22:d9:63:28:ac:
10:bb:d8:f2:cc:b2:15:0b:8a:f2:05:73:1e:d9:b9:d9:68:34:
83:28:67:c1:3a:b4:29:55:b1:6b:b1:bf:e7:65:15:e3:0e:f4:
4e:3b:6c:fe:ef:6f:62:02:e4:62:4e:d7:1f:85:bf:aa:cd:4b:
f3:61:50:9a:fd:af:a8:db:1d:b7:dc:00:42:7f:a5:6b:34:a9:
d6:5d:3d:57:49:49:bc:fb:30:d4:34:f4:f8:39:40:86:ae:0a:
e5:70:59:89:64:05:8e:07:c1:27:1e:1d:cd:b4:37:b9:0b:a5:
00:7a:28:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 26 15:26:59 2024 by rpki-client on console-fra.rpki-client.org