Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/e53de5-1b5f-4467-a68c-15fc0b68f844/1/0OIcj_97qpiSV0V2lHFR3Uqt-D4.roa
File: 0OIcj_97qpiSV0V2lHFR3Uqt-D4.roa (raw, json)
Hash identifier: /RiJZcfLyIajYbkMzFvM7xCvmlufkeNcEp74x3GAGxM=
Subject key identifier: D0:E2:1C:8F:FF:7B:AA:98:92:57:45:76:94:71:51:DD:4A:AD:F8:3E
Certificate issuer: /CN=da70c441fb892b8c9816534885069fcd3300c9a4
Certificate serial: 01881134BF83D734192B1C2C678E89E0308C
Authority key identifier: DA:70:C4:41:FB:89:2B:8C:98:16:53:48:85:06:9F:CD:33:00:C9:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2nDEQfuJK4yYFlNIhQafzTMAyaQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/e53de5-1b5f-4467-a68c-15fc0b68f844/1/0OIcj_97qpiSV0V2lHFR3Uqt-D4.roa
Signing time: Fri 12 May 2023 18:24:09 +0000
ROA not before: Fri 12 May 2023 18:24:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51961
IP address blocks: 77.105.166.0/24 maxlen: 24
77.105.167.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:11:34:bf:83:d7:34:19:2b:1c:2c:67:8e:89:e0:30:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da70c441fb892b8c9816534885069fcd3300c9a4
Validity
Not Before: May 12 18:24:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d0e21c8fff7baa9892574576947151dd4aadf83e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:f5:17:c2:e8:58:09:6c:bb:31:e6:ce:73:e7:
c1:ea:fc:6d:03:cd:44:4f:46:e2:7e:3d:16:e1:7a:
c1:6d:22:31:31:c9:eb:a9:ff:23:2a:5f:ce:ef:1c:
a6:10:8f:1e:46:df:09:64:33:b3:a4:6d:2c:ab:13:
f2:1a:e4:af:f8:be:c3:72:48:07:ef:80:b8:9d:d2:
8b:ec:54:d0:8c:e3:15:b7:db:03:45:04:6d:99:b5:
45:a3:bb:d7:65:34:8a:b3:9c:3a:c4:93:5c:00:b1:
90:d6:72:2e:03:7d:77:20:a8:98:ab:1c:78:2b:15:
e8:7d:b1:65:fc:ce:3d:ce:ee:88:4b:0a:dd:ba:e4:
56:c8:3c:ab:15:9a:18:eb:ac:e2:92:6c:2c:93:93:
f0:50:33:64:27:ee:21:57:f7:8c:fe:56:35:60:da:
ed:7f:48:fc:5b:f6:59:85:6b:5a:2e:a2:b0:ed:75:
ec:bf:a4:27:c6:3b:63:c7:9c:53:1d:4b:ff:f5:1c:
08:d9:1b:4f:7b:9c:0f:23:10:f6:d3:2c:b5:1e:0b:
9c:d0:be:9a:ac:f3:b1:8b:1a:61:92:ea:08:59:a4:
b2:8f:5d:b9:9b:5e:72:62:92:67:d7:ab:95:cd:33:
68:e5:cb:18:5e:b8:98:a2:f5:66:27:95:6e:eb:18:
9a:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:E2:1C:8F:FF:7B:AA:98:92:57:45:76:94:71:51:DD:4A:AD:F8:3E
X509v3 Authority Key Identifier:
keyid:DA:70:C4:41:FB:89:2B:8C:98:16:53:48:85:06:9F:CD:33:00:C9:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2nDEQfuJK4yYFlNIhQafzTMAyaQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/e53de5-1b5f-4467-a68c-15fc0b68f844/1/0OIcj_97qpiSV0V2lHFR3Uqt-D4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/e53de5-1b5f-4467-a68c-15fc0b68f844/1/2nDEQfuJK4yYFlNIhQafzTMAyaQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.105.166.0/23
Signature Algorithm: sha256WithRSAEncryption
6b:25:50:cd:70:89:09:94:82:a7:dc:64:0b:5e:16:53:ce:a0:
72:e9:fc:3b:d4:7b:51:cf:0a:75:c4:ec:2c:0a:28:82:91:d6:
b7:85:42:8f:01:3c:a7:7b:57:44:5c:3c:ae:5d:71:e3:92:b4:
30:86:3a:9f:57:fd:b1:33:76:ef:92:1d:32:8c:3f:b8:14:8c:
40:43:f5:b0:2f:01:bc:61:a6:79:d7:18:ba:6e:55:02:8b:cf:
e2:ad:30:73:01:d3:16:83:36:03:66:73:74:c7:ae:f3:32:76:
ef:3c:97:6b:ea:41:75:dc:83:f3:48:26:e0:da:61:87:1c:f5:
85:38:66:54:d2:e0:7f:81:12:86:e8:0b:48:9f:4d:31:62:bb:
cb:72:d6:ae:d1:f9:a5:d9:84:db:16:98:bc:d7:b5:66:ca:d0:
d7:f3:31:27:94:c2:23:b9:cf:01:5b:9a:30:e6:17:78:f5:f3:
6b:16:49:9b:5c:33:37:03:05:e5:50:45:14:59:70:61:92:c7:
13:2a:27:35:ad:10:79:6d:71:63:23:ea:a3:61:5c:e9:db:d8:
05:c6:b2:8d:95:4d:54:b3:f2:44:9f:0f:4c:f9:77:d5:81:25:
4b:87:22:53:dc:ea:ce:7a:18:59:69:08:87:d2:88:06:43:da:
40:99:61:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:00 2023 by rpki-client on console-fra.rpki-client.org