Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/f3b825-cbc0-49d2-8b76-6b1469c3b95a/1/8lFATmm1yv9GFhQxeZjcrs96ioc.roa
File: 8lFATmm1yv9GFhQxeZjcrs96ioc.roa (raw, json)
Hash identifier: B0mzjLPjpiMB9zVxxw3+Bs99AOfFNQROM9JVgjvCRqg=
Subject key identifier: F2:51:40:4E:69:B5:CA:FF:46:16:14:31:79:98:DC:AE:CF:7A:8A:87
Certificate issuer: /CN=65816774b7c5665d67a86c20ceb6487b5b78b38d
Certificate serial: 018571D78F6F385B03AB3794A199CCCB946D
Authority key identifier: 65:81:67:74:B7:C5:66:5D:67:A8:6C:20:CE:B6:48:7B:5B:78:B3:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZYFndLfFZl1nqGwgzrZIe1t4s40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/f3b825-cbc0-49d2-8b76-6b1469c3b95a/1/8lFATmm1yv9GFhQxeZjcrs96ioc.roa
Signing time: Mon 02 Jan 2023 09:37:10 +0000
ROA not before: Mon 02 Jan 2023 09:37:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20750
IP address blocks: 77.76.136.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:d7:8f:6f:38:5b:03:ab:37:94:a1:99:cc:cb:94:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65816774b7c5665d67a86c20ceb6487b5b78b38d
Validity
Not Before: Jan 2 09:37:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f251404e69b5caff461614317998dcaecf7a8a87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:02:cf:46:96:aa:0b:60:ab:87:2a:94:59:67:
91:a5:5a:4d:08:ef:1f:91:e2:f0:de:8e:7c:35:97:
5c:3f:87:44:5f:01:38:c7:33:1a:64:9a:99:7f:4d:
71:f4:c6:95:6e:66:0e:d1:db:cf:4a:30:7a:b7:56:
19:61:74:58:cc:18:c0:5c:75:40:0b:3f:35:11:f5:
e3:0b:3b:fc:42:e2:1f:a2:a0:e6:0b:e0:0e:f6:0b:
07:23:75:a5:54:c9:96:4f:f5:3b:a1:6f:7c:85:e3:
09:73:ac:ac:94:cf:c5:bc:1c:49:6a:94:fd:00:a0:
b8:bb:0f:1d:57:c5:a8:f9:29:19:f8:be:f4:41:4b:
60:06:4f:3d:08:4f:80:64:78:bf:74:13:09:a6:a2:
bf:87:55:73:45:e2:64:35:e6:33:9e:b6:af:5f:58:
ad:7b:ff:4e:bb:1a:44:d5:c7:24:98:10:6b:b0:19:
9f:27:6c:60:75:b5:8e:ae:6b:8d:d0:9e:2b:24:b5:
df:42:36:e7:47:7a:16:ef:65:9d:5d:ce:81:57:e9:
57:97:72:e4:32:33:be:d9:7e:18:84:10:0f:f0:44:
a0:d4:8e:61:ed:12:db:69:0c:5d:41:2a:57:8b:43:
95:19:14:96:e7:4e:6f:89:09:8e:3c:da:1d:37:3f:
02:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:51:40:4E:69:B5:CA:FF:46:16:14:31:79:98:DC:AE:CF:7A:8A:87
X509v3 Authority Key Identifier:
keyid:65:81:67:74:B7:C5:66:5D:67:A8:6C:20:CE:B6:48:7B:5B:78:B3:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZYFndLfFZl1nqGwgzrZIe1t4s40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/f3b825-cbc0-49d2-8b76-6b1469c3b95a/1/8lFATmm1yv9GFhQxeZjcrs96ioc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/f3b825-cbc0-49d2-8b76-6b1469c3b95a/1/ZYFndLfFZl1nqGwgzrZIe1t4s40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.76.136.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:aa:55:34:a7:13:04:87:57:55:a8:a1:3f:5b:59:40:e8:48:
41:1d:7a:59:ee:48:f6:2c:80:bc:ce:e5:da:64:3e:67:34:cf:
97:0c:2b:15:17:57:7d:11:3a:d9:5a:2b:68:2a:3b:17:f2:89:
03:f9:2b:ed:e8:62:5b:82:7a:83:d4:42:6a:a2:f7:6e:79:4e:
4c:ca:69:47:51:61:85:b3:9b:73:67:39:71:34:d6:ab:be:e2:
a3:93:70:1b:f8:8f:28:f1:81:0e:e7:d3:88:28:21:4a:c2:52:
82:23:c4:7b:4e:18:b1:68:26:3f:3f:99:b6:8a:04:6d:af:7c:
f5:db:ab:00:42:31:fc:07:28:21:45:4b:aa:e6:18:03:7f:61:
71:13:0b:6f:c9:4a:5c:e4:f0:03:2f:4a:c2:76:f7:f9:0d:54:
bc:e5:65:4c:2a:08:3c:36:a4:21:5e:d5:db:b9:88:19:79:a6:
ef:0c:6a:97:6b:5c:d6:18:92:ff:3a:5d:20:3c:02:bc:d5:33:
d7:76:94:0e:e6:32:56:3c:8c:90:80:68:4e:85:b3:1d:fc:8e:
ae:b8:03:83:d2:9a:50:fc:60:0b:ac:22:7b:3a:33:2e:10:ef:
02:1d:2c:a4:03:9d:6a:79:ce:e9:3a:42:c6:5e:1c:e5:3e:2a:
d4:fd:90:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 13:24:08 2024 by rpki-client on console-fra.rpki-client.org