Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/e53de5-1b5f-4467-a68c-15fc0b68f844/1/Vwx2kHWFsARcra-BvUJAff4M9DA.roa
File: Vwx2kHWFsARcra-BvUJAff4M9DA.roa (raw, json)
Hash identifier: YviyVeGCC3T6S+U+01Oa4OVVRHwDVvO5on388mQJGgE=
Subject key identifier: 57:0C:76:90:75:85:B0:04:5C:AD:AF:81:BD:42:40:7D:FE:0C:F4:30
Certificate issuer: /CN=da70c441fb892b8c9816534885069fcd3300c9a4
Certificate serial: 018752E110B287F5ABF6A056174F230183A3
Authority key identifier: DA:70:C4:41:FB:89:2B:8C:98:16:53:48:85:06:9F:CD:33:00:C9:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2nDEQfuJK4yYFlNIhQafzTMAyaQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/e53de5-1b5f-4467-a68c-15fc0b68f844/1/Vwx2kHWFsARcra-BvUJAff4M9DA.roa
Signing time: Wed 05 Apr 2023 19:24:54 +0000
ROA not before: Wed 05 Apr 2023 19:24:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20853
IP address blocks: 77.105.166.0/24 maxlen: 24
77.105.167.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 05 Apr 2023 19:52:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:52:e1:10:b2:87:f5:ab:f6:a0:56:17:4f:23:01:83:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da70c441fb892b8c9816534885069fcd3300c9a4
Validity
Not Before: Apr 5 19:24:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=570c76907585b0045cadaf81bd42407dfe0cf430
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:34:4d:4e:eb:e0:69:d8:e6:97:91:bd:ec:04:
f0:6b:2b:d4:f5:26:ae:97:57:ce:94:16:61:ed:61:
a4:64:2f:84:3f:59:f7:0e:13:1a:2a:e3:24:e6:0b:
1b:29:eb:0f:c5:a9:c7:ba:30:49:23:c1:5f:4b:32:
29:28:05:85:54:88:8f:f4:9b:c7:f5:ab:68:22:42:
67:a4:cb:7b:44:76:48:c5:00:48:52:62:0c:98:9b:
d1:75:a1:9d:9a:d5:75:ca:7c:5e:fe:e3:f8:aa:00:
70:fa:17:02:50:99:ab:8b:74:11:4e:fd:f9:ea:15:
3b:aa:0b:16:84:76:9e:3d:10:69:a5:5e:74:4e:95:
46:52:6d:d2:b9:09:86:7e:60:a8:25:bb:db:43:71:
82:34:bb:9c:e3:c5:3b:62:b8:79:5f:cd:ea:7b:f8:
a5:4f:a5:f5:db:c5:71:16:45:57:45:af:e2:e5:25:
4c:fe:85:32:65:b4:5c:2a:aa:76:b2:91:bd:ed:97:
d3:af:50:6e:1f:45:57:80:5b:05:67:86:02:87:c1:
3d:4b:b9:14:52:1c:52:c4:18:73:04:d9:8d:ed:69:
13:83:af:b0:5f:b7:d9:dd:16:17:59:04:1c:bd:7d:
b0:65:1b:d1:68:33:8a:d4:eb:b6:e8:dc:f0:cb:59:
9a:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:0C:76:90:75:85:B0:04:5C:AD:AF:81:BD:42:40:7D:FE:0C:F4:30
X509v3 Authority Key Identifier:
keyid:DA:70:C4:41:FB:89:2B:8C:98:16:53:48:85:06:9F:CD:33:00:C9:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2nDEQfuJK4yYFlNIhQafzTMAyaQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/e53de5-1b5f-4467-a68c-15fc0b68f844/1/Vwx2kHWFsARcra-BvUJAff4M9DA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/e53de5-1b5f-4467-a68c-15fc0b68f844/1/2nDEQfuJK4yYFlNIhQafzTMAyaQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.105.166.0/23
Signature Algorithm: sha256WithRSAEncryption
18:f2:ec:3a:00:79:42:6c:e8:d6:47:b1:57:ab:4c:56:e3:2a:
78:cf:ad:b6:3d:f5:fd:e1:a9:6e:3e:57:a4:ea:73:60:1b:83:
02:e7:b8:a2:51:96:a9:14:3a:47:f6:52:49:ad:37:0e:95:0c:
ae:c7:d0:65:68:37:d8:1a:1a:77:54:5b:a9:84:a0:87:ee:ba:
97:3d:11:a8:46:7c:b1:d6:ff:ae:ee:de:0c:89:44:36:8b:83:
64:5a:3e:88:ad:e6:a6:a0:ea:3e:5c:32:0c:67:44:92:67:96:
1e:45:2a:df:e4:7e:cc:3c:f0:20:31:1a:cb:ad:10:49:61:9f:
ea:f0:bd:49:fa:9c:24:9e:e8:30:96:9a:6b:a4:3d:2a:ed:da:
28:e2:15:f5:2b:bd:9b:e5:bc:cd:bc:73:2c:53:48:43:20:7e:
25:3e:1c:49:84:4b:68:0d:57:b9:39:04:d7:44:c1:28:2d:c6:
f6:1f:06:7f:c7:cb:b9:ac:c3:34:e7:5d:b5:84:39:b3:34:79:
04:29:1a:7f:40:a8:ec:8d:27:8a:e5:aa:70:6d:16:c9:dd:5b:
f9:d1:49:ba:13:81:bf:6f:f5:ad:9d:1f:18:e6:8e:0a:30:2c:
dc:e4:a9:65:19:67:16:0d:21:d0:f8:68:e4:d7:8f:cf:fc:d7:
14:57:7c:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:28 2024 by rpki-client on console-fra.rpki-client.org