Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/952230-c262-41cc-b956-cfc46a76ec78/1/ucBuiBihJNDGj52SPqclfSYbvbI.roa
File: ucBuiBihJNDGj52SPqclfSYbvbI.roa (raw, json)
Hash identifier: WYNxkGNSrxZgixhET3+OZ6wPEkf0ahOVQKlEAUtJwVA=
Subject key identifier: B9:C0:6E:88:18:A1:24:D0:C6:8F:9D:92:3E:A7:25:7D:26:1B:BD:B2
Certificate issuer: /CN=374e2729b17369890a1512f643cd08e4ba2ff414
Certificate serial: 018896FBEBC75631A54A310316303CBA4531
Authority key identifier: 37:4E:27:29:B1:73:69:89:0A:15:12:F6:43:CD:08:E4:BA:2F:F4:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N04nKbFzaYkKFRL2Q80I5Lov9BQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/952230-c262-41cc-b956-cfc46a76ec78/1/ucBuiBihJNDGj52SPqclfSYbvbI.roa
Signing time: Wed 07 Jun 2023 17:51:12 +0000
ROA not before: Wed 07 Jun 2023 17:51:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 52000
IP address blocks: 77.243.89.0/24 maxlen: 24
77.243.88.0/24 maxlen: 24
77.243.91.0/24 maxlen: 24
77.243.90.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:96:fb:eb:c7:56:31:a5:4a:31:03:16:30:3c:ba:45:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=374e2729b17369890a1512f643cd08e4ba2ff414
Validity
Not Before: Jun 7 17:51:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b9c06e8818a124d0c68f9d923ea7257d261bbdb2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:de:50:58:1e:6c:4c:a1:fe:ea:b6:92:57:da:
0b:60:ea:16:86:ff:0a:d7:3f:ed:76:4c:e9:16:a0:
3d:21:cc:ca:29:0a:ac:0c:bd:6c:d1:6e:ca:2f:1c:
24:2b:aa:95:ee:c8:ea:89:49:2e:93:78:79:15:52:
97:d6:67:70:f2:8c:6a:01:7f:77:e5:b3:9a:33:c9:
9e:54:d2:7d:15:45:36:ec:66:a9:72:d5:cf:f3:57:
94:ed:9c:5d:ff:77:e0:33:f8:6d:3d:4c:26:26:9f:
b2:b0:0a:3b:3a:43:a8:93:3b:0d:54:ac:db:af:78:
45:a3:53:58:df:7d:e2:c0:f9:4f:21:e6:4d:5a:95:
45:c5:29:eb:79:48:36:d3:8e:97:af:e4:04:2d:0a:
c3:4e:2f:60:cc:cc:3c:d7:17:94:f2:69:53:f9:e5:
32:a3:a3:ba:32:c0:54:72:8a:bf:60:94:25:f5:7b:
05:d5:87:ef:8b:4c:e6:f0:4e:3e:b0:37:c4:7c:b0:
4f:16:32:e7:34:b9:37:fb:36:ce:ec:7d:a5:07:44:
a3:14:5f:e3:38:1c:fa:4d:21:7e:49:6d:80:6e:85:
03:30:e0:c8:0d:33:af:75:83:98:25:3e:f4:b4:cb:
4d:94:21:33:65:82:52:1c:98:4c:d5:67:60:4d:78:
44:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:C0:6E:88:18:A1:24:D0:C6:8F:9D:92:3E:A7:25:7D:26:1B:BD:B2
X509v3 Authority Key Identifier:
keyid:37:4E:27:29:B1:73:69:89:0A:15:12:F6:43:CD:08:E4:BA:2F:F4:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N04nKbFzaYkKFRL2Q80I5Lov9BQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/952230-c262-41cc-b956-cfc46a76ec78/1/ucBuiBihJNDGj52SPqclfSYbvbI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/952230-c262-41cc-b956-cfc46a76ec78/1/N04nKbFzaYkKFRL2Q80I5Lov9BQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.243.88.0/22
Signature Algorithm: sha256WithRSAEncryption
88:57:13:04:08:18:ea:2a:6b:db:10:16:8e:4f:8f:74:1e:37:
42:bf:b2:cf:90:66:df:1c:ef:5d:1e:11:1e:3d:ee:e4:6d:0e:
d1:91:26:8d:39:8e:6f:e6:df:3b:5e:12:7c:6a:73:66:55:50:
4c:e2:d8:73:ae:37:8e:09:4c:b7:aa:cc:ad:5e:47:1d:68:79:
c4:ca:ad:ed:9d:69:36:c3:8f:aa:4a:87:56:78:9d:7b:13:83:
28:08:ad:08:0f:6b:55:15:99:69:dd:80:9e:48:22:d5:f7:2f:
9f:30:88:23:51:33:56:43:8d:2e:a4:c9:95:75:3a:53:58:59:
42:f1:a6:b0:0d:c7:0c:a5:49:d5:14:06:83:ee:6f:80:2d:52:
d5:6f:e9:a4:23:39:df:4b:9c:8c:7d:15:ba:6d:c6:63:13:ed:
49:4c:e8:83:37:3c:29:76:76:d2:0f:68:7b:21:be:cc:bf:30:
ea:c8:be:41:15:2a:90:7e:6b:b4:69:09:cd:ee:01:b1:46:cb:
c7:71:8a:60:33:49:f0:2f:83:2e:20:f0:3f:c8:15:3b:98:1e:
ef:05:b5:b1:a0:5f:33:29:b2:6a:68:4e:2a:16:6d:4c:ab:1b:
18:2d:2b:f8:6e:e4:75:7b:06:75:32:dc:6d:66:62:05:a0:d9:
83:24:10:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:43 2023 by rpki-client on console-fra.rpki-client.org