Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/OkuwS3xOosbM3YZXQyoKmWeeaW8.roa
File: OkuwS3xOosbM3YZXQyoKmWeeaW8.roa (raw, json)
Hash identifier: tCacof1oe1oJUN2UrDNaPOjWDI2aNcD85o7IP3rjU5c=
Subject key identifier: 3A:4B:B0:4B:7C:4E:A2:C6:CC:DD:86:57:43:2A:0A:99:67:9E:69:6F
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018D3B872F2B45AC2588C857B1D62734687C
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/OkuwS3xOosbM3YZXQyoKmWeeaW8.roa
Signing time: Wed 24 Jan 2024 12:52:11 +0000
ROA not before: Wed 24 Jan 2024 12:52:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 203394
IP address blocks: 77.81.88.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 05 Feb 2024 12:47:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:3b:87:2f:2b:45:ac:25:88:c8:57:b1:d6:27:34:68:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Jan 24 12:52:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3a4bb04b7c4ea2c6ccdd8657432a0a99679e696f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:9c:00:af:35:75:09:e3:bc:82:e7:c6:98:a9:
47:06:54:78:9a:8f:e1:fa:85:d4:b3:7c:da:d6:4b:
ea:61:98:8f:02:80:3b:dd:e0:35:a7:de:7d:dd:41:
1b:4d:12:73:24:4e:67:ea:bc:2a:d7:63:bf:af:7c:
a9:81:49:53:a0:30:d0:d8:1f:f9:9b:5d:fb:04:b7:
b7:d0:3f:ee:28:5f:a9:56:98:9e:c1:10:b7:f8:b4:
0f:32:c3:86:fe:94:7d:80:d8:e7:c4:a0:2e:8a:c7:
57:5b:cd:f6:f7:30:01:f9:89:7b:7a:0a:fe:2d:50:
88:c7:de:c8:f3:a8:82:da:3b:34:3e:3d:7c:ec:51:
08:bd:27:7f:bd:66:1d:26:f4:39:54:b0:d9:02:8d:
e8:da:d0:d5:cb:84:43:bf:73:06:62:60:ce:cf:5b:
2a:c8:51:2f:a1:c3:a8:de:e7:9e:de:40:c5:66:a0:
af:d1:c7:30:63:6c:44:34:ce:25:cb:d8:cf:8b:4d:
39:8a:59:a1:04:b9:c3:14:f8:6f:43:e5:0b:c5:12:
77:e7:64:2b:9e:06:2c:61:e4:ed:28:9a:06:1a:fd:
a6:73:0e:1b:b9:e2:90:87:02:ad:33:47:f4:34:c5:
d4:de:ce:0b:c3:fa:8c:38:13:f7:f0:76:40:ed:9c:
0d:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:4B:B0:4B:7C:4E:A2:C6:CC:DD:86:57:43:2A:0A:99:67:9E:69:6F
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/OkuwS3xOosbM3YZXQyoKmWeeaW8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.81.88.0/24
Signature Algorithm: sha256WithRSAEncryption
63:7b:ea:d7:30:a6:bb:af:7d:07:6e:1e:02:cb:4f:99:2b:b0:
0d:64:f1:68:43:db:60:47:f3:fb:9a:a4:74:c7:93:c7:bf:bb:
19:3c:16:ce:53:7e:49:05:09:36:32:69:ff:62:70:cf:51:a7:
92:6b:5d:ae:6f:92:ab:32:0c:7c:fa:66:6e:ec:b7:09:e6:ef:
14:36:3d:56:1b:2e:aa:61:df:43:44:f8:0d:bc:ba:45:dd:c7:
e1:34:ee:e0:0b:d3:42:21:8d:d8:64:02:dd:83:b5:0f:67:07:
59:9d:e2:a6:2f:78:a1:b1:ff:da:6f:c6:03:ab:5e:85:b3:61:
ca:0f:f1:bc:76:c9:c1:9b:3f:b4:73:80:c6:93:f2:bc:2b:50:
4c:5a:de:00:77:72:97:41:49:70:2e:28:45:46:62:0c:25:80:
38:66:2c:47:f1:56:bf:17:ff:6a:05:13:15:ea:35:66:94:74:
a3:b2:5b:ad:7b:87:47:f3:47:f9:69:47:2e:9b:9b:f4:71:74:
9c:26:cd:28:2f:72:e7:85:7d:08:a4:98:7a:79:e9:58:e7:54:
b9:bb:8a:58:31:16:35:9c:52:00:a7:5d:09:87:4f:cf:95:b8:
10:5d:68:55:a8:ef:d5:72:c6:8e:b1:50:5a:2b:a0:d5:4e:26:
8c:66:ce:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:06 2024 by rpki-client on console-fra.rpki-client.org