Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/e53de5-1b5f-4467-a68c-15fc0b68f844/1/EHfO13rM45AXskKQrm0TjU-Fm7c.roa
File: EHfO13rM45AXskKQrm0TjU-Fm7c.roa (raw, json)
Hash identifier: +HJdWrH4tbKZE/lUNhYIXiUYYZi0SXvemCvpzEUrTw4=
Subject key identifier: 10:77:CE:D7:7A:CC:E3:90:17:B2:42:90:AE:6D:13:8D:4F:85:9B:B7
Certificate issuer: /CN=da70c441fb892b8c9816534885069fcd3300c9a4
Certificate serial: 018C04E760D9451F8767B7788FC818078487
Authority key identifier: DA:70:C4:41:FB:89:2B:8C:98:16:53:48:85:06:9F:CD:33:00:C9:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2nDEQfuJK4yYFlNIhQafzTMAyaQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/e53de5-1b5f-4467-a68c-15fc0b68f844/1/EHfO13rM45AXskKQrm0TjU-Fm7c.roa
Signing time: Sat 25 Nov 2023 05:15:21 +0000
ROA not before: Sat 25 Nov 2023 05:15:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199417
IP address blocks: 77.105.166.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:04:e7:60:d9:45:1f:87:67:b7:78:8f:c8:18:07:84:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da70c441fb892b8c9816534885069fcd3300c9a4
Validity
Not Before: Nov 25 05:15:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1077ced77acce39017b24290ae6d138d4f859bb7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:b8:dc:92:7a:f7:c8:79:21:91:fa:10:b5:94:
17:a2:5b:49:d7:77:12:83:51:69:0e:68:94:7c:61:
80:70:73:55:d0:2d:fb:63:b6:96:d5:87:73:51:0d:
63:67:49:5e:42:6a:fa:21:c6:6e:82:ca:42:ee:d9:
b2:53:1f:2e:05:51:ff:70:99:c0:0c:cc:3b:2b:31:
7d:32:1e:69:5b:63:04:a1:d3:3f:15:b4:36:2d:93:
0d:0a:71:e8:1b:58:02:1d:18:0c:fc:8b:aa:98:75:
87:87:9c:62:a8:f9:8a:92:5d:2d:7f:6b:71:13:c7:
41:a9:e3:9e:ff:23:cb:14:40:47:c0:54:b9:df:46:
b6:97:08:87:b7:82:04:c9:33:c0:16:19:00:d1:a8:
7e:ac:d2:c4:39:87:ed:33:8f:43:e8:33:b4:e8:b8:
55:4b:c0:f1:90:78:73:9b:b6:46:94:16:0a:20:37:
5f:ba:4e:dd:2d:68:0e:82:85:80:44:60:12:67:cf:
6f:a8:c9:82:8a:ea:e3:ed:82:27:73:ed:a6:92:15:
dc:99:f9:d8:d9:9a:2f:ae:65:94:f0:34:76:07:82:
cc:88:50:d3:79:4c:a5:43:d9:bd:e0:62:7c:75:dd:
cb:44:25:88:58:cf:0b:7e:b9:f6:b1:82:40:73:ee:
92:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:77:CE:D7:7A:CC:E3:90:17:B2:42:90:AE:6D:13:8D:4F:85:9B:B7
X509v3 Authority Key Identifier:
keyid:DA:70:C4:41:FB:89:2B:8C:98:16:53:48:85:06:9F:CD:33:00:C9:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2nDEQfuJK4yYFlNIhQafzTMAyaQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/e53de5-1b5f-4467-a68c-15fc0b68f844/1/EHfO13rM45AXskKQrm0TjU-Fm7c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/e53de5-1b5f-4467-a68c-15fc0b68f844/1/2nDEQfuJK4yYFlNIhQafzTMAyaQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.105.166.0/24
Signature Algorithm: sha256WithRSAEncryption
72:ce:3e:d1:91:c0:ce:77:c4:4d:c2:8f:65:3d:a1:3b:52:4e:
f2:f9:70:2f:af:82:96:c9:be:d2:80:df:28:c0:c8:59:10:0c:
27:a4:ef:ed:98:9d:8a:d1:15:c5:b0:18:90:f5:f6:ab:b1:20:
30:99:c9:d0:b1:88:b7:0e:07:0f:af:fe:fa:62:c5:d2:ed:24:
84:83:b5:34:5c:2a:e8:45:99:42:86:da:d6:9a:d9:6a:b5:62:
32:78:ab:af:1d:da:51:75:b4:ac:43:93:c3:ee:aa:a8:31:2e:
39:5d:9c:76:8b:2c:7c:05:ad:f2:c1:37:46:c0:6e:c6:62:bf:
27:82:ec:19:12:1d:8a:fc:40:a9:d3:94:d4:e6:22:2b:f4:79:
40:b0:46:0b:f9:85:2e:8b:ee:cc:cd:11:23:30:db:ea:1f:31:
3e:04:ac:d0:59:a0:c0:1c:47:fc:9d:9e:2b:6e:93:b6:14:74:
bc:c7:79:0c:df:79:b9:14:ef:6c:9b:51:26:63:3f:c5:72:a7:
7c:2f:87:72:06:9a:5f:ca:7d:01:13:a4:71:31:76:7e:36:81:
f4:e0:5d:9a:0e:f4:d2:75:2c:e6:72:bb:3d:c6:e6:dd:a7:c4:
80:b7:87:8c:90:82:c9:77:c8:91:b1:5d:6b:ea:3f:a7:bf:3f:
bf:10:da:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Dec 12 21:06:46 2023 by rpki-client on console-ams.rpki-client.org