Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/Kch1DKrLXdA-u0QmsMb6c7Vijgg.roa
File: Kch1DKrLXdA-u0QmsMb6c7Vijgg.roa (raw, json)
Hash identifier: QzJB/bniOgpQgrkuQZz9+zVegvVVV5DvboZ2I19HKCI=
Subject key identifier: 29:C8:75:0C:AA:CB:5D:D0:3E:BB:44:26:B0:C6:FA:73:B5:62:8E:08
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 018D5EE5440A6493409A13CBF6720C3750CC
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/Kch1DKrLXdA-u0QmsMb6c7Vijgg.roa
Signing time: Wed 31 Jan 2024 09:41:39 +0000
ROA not before: Wed 31 Jan 2024 09:41:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 273000
IP address blocks: 201.77.48.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 06 Feb 2024 12:35:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:5e:e5:44:0a:64:93:40:9a:13:cb:f6:72:0c:37:50:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Jan 31 09:41:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=29c8750caacb5dd03ebb4426b0c6fa73b5628e08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:c3:79:92:7e:c4:70:91:62:34:b8:95:94:d6:
22:b1:2d:56:ac:e2:b4:d0:df:a5:bb:3e:93:c3:3d:
e3:ef:be:dd:b4:75:ae:a5:52:85:48:ff:0c:f6:34:
11:06:42:d5:1b:13:0d:e9:f9:29:63:82:74:af:ed:
21:25:44:14:bf:b7:e3:d1:9e:b1:6c:ca:4b:4b:d9:
50:2d:b3:8a:41:09:aa:f4:58:0a:23:94:df:78:8b:
30:13:1a:2a:c9:28:7f:55:77:df:42:ce:9d:c5:e6:
93:91:82:e9:03:cc:73:17:e8:e1:a0:7c:65:5a:18:
25:da:60:9a:ee:2c:9c:0f:0e:14:5b:e3:3e:e3:06:
3c:bc:39:07:29:47:18:70:49:8c:0d:93:f0:f4:81:
e5:23:fd:dd:d7:78:78:10:aa:79:70:c2:7d:6e:45:
83:f6:c9:dc:e5:82:3a:32:43:25:42:6f:79:6a:6d:
38:b8:95:fd:e0:67:97:3f:61:00:ca:c4:26:3e:99:
7e:fa:1c:61:29:b2:1f:ed:6d:5d:b6:c1:bc:80:ef:
16:7e:54:a8:8e:71:37:07:46:e8:fc:ea:bd:fa:c7:
ec:f4:cf:6d:cc:7d:8c:37:36:84:c7:9c:5b:d0:e5:
e0:3c:cb:15:d9:e4:a3:5d:d6:99:fe:e3:a8:5f:bd:
f4:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:C8:75:0C:AA:CB:5D:D0:3E:BB:44:26:B0:C6:FA:73:B5:62:8E:08
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/Kch1DKrLXdA-u0QmsMb6c7Vijgg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
201.77.48.0/23
Signature Algorithm: sha256WithRSAEncryption
58:6a:f7:ee:68:c0:92:91:63:73:8d:df:6a:d5:5a:a9:ab:28:
b9:35:41:f5:e3:93:46:df:7c:bd:d6:42:e0:15:e6:d1:8e:2c:
66:ab:c5:16:d4:6f:ba:b6:d4:50:8d:ce:25:ef:6e:13:3a:b1:
c2:44:15:be:43:f3:20:05:3f:cd:e8:64:5b:1f:06:b1:ad:d1:
ac:dc:36:69:8a:3c:a8:e2:b8:58:8f:00:95:3c:a4:58:e4:fe:
54:d3:f3:ec:6b:67:65:33:75:0a:8d:eb:36:f9:74:9e:9b:55:
5d:b9:0b:ea:a1:bf:90:91:98:c7:7d:f7:53:9d:98:bb:e1:0b:
12:ac:3d:83:d4:50:ee:f3:ec:c9:73:de:54:c5:0e:bc:3a:d9:
7c:e2:b4:c2:f4:bf:69:4a:6c:26:ad:c3:03:65:b0:06:9b:03:
21:79:a3:92:a4:de:6a:b0:52:98:0c:b0:ef:a4:98:f9:11:7a:
d3:36:90:12:ac:a5:5f:db:cd:a8:fd:24:54:a5:c8:da:5e:24:
fe:5e:9f:81:06:ae:25:83:01:87:57:52:3e:aa:02:e3:1b:81:
a8:17:84:df:1c:09:6d:42:8b:a5:e8:11:b7:6f:92:b0:3d:5b:
06:97:fc:2d:69:17:b5:90:c4:8f:ed:94:63:76:14:bf:54:23:
e4:1d:27:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Feb 6 18:09:35 2024 by rpki-client on console-ams.rpki-client.org