Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/c43e1c-b676-48c6-863f-9ade396f7c4c/1/sUkXRScY3HAz5pa9MlzdolC2Erg.roa
File: sUkXRScY3HAz5pa9MlzdolC2Erg.roa (raw, json)
Hash identifier: z6Fblpb10R/JrpeTVsssBI1CAoh3iq/WyBO6CBX/2XU=
Subject key identifier: B1:49:17:45:27:18:DC:70:33:E6:96:BD:32:5C:DD:A2:50:B6:12:B8
Certificate issuer: /CN=86f6e524fc15aadc489ee975815a37286de4bb52
Certificate serial: 01856EEFE257CE37D6939A5AAAB913879471
Authority key identifier: 86:F6:E5:24:FC:15:AA:DC:48:9E:E9:75:81:5A:37:28:6D:E4:BB:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hvblJPwVqtxInul1gVo3KG3ku1I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/c43e1c-b676-48c6-863f-9ade396f7c4c/1/sUkXRScY3HAz5pa9MlzdolC2Erg.roa
Signing time: Sun 01 Jan 2023 20:04:52 +0000
ROA not before: Sun 01 Jan 2023 20:04:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20676
IP address blocks: 185.39.77.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:ef:e2:57:ce:37:d6:93:9a:5a:aa:b9:13:87:94:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86f6e524fc15aadc489ee975815a37286de4bb52
Validity
Not Before: Jan 1 20:04:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b14917452718dc7033e696bd325cdda250b612b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:09:9c:f2:f6:28:f5:b0:49:f9:78:d4:c5:9f:
ee:8c:20:58:34:f6:79:97:c5:8b:61:6d:98:bc:ea:
de:4f:b8:f5:d3:b4:0a:83:f5:52:68:25:a6:29:1f:
8a:e2:da:44:8b:29:3f:0c:04:f3:f0:d0:a4:97:8b:
8d:75:08:e7:47:90:c3:61:f0:91:f5:f2:ff:17:15:
a3:15:6a:f2:1a:6a:ab:f9:e8:32:31:8c:8f:56:36:
fd:f0:23:e0:ee:3c:ba:82:6f:18:e1:10:fd:8d:12:
08:23:3a:45:cc:24:2e:4c:a7:76:23:db:62:c7:d7:
82:e0:a3:dd:3f:71:ac:81:2c:40:06:50:db:79:a6:
be:8a:2b:55:0c:5d:be:52:b3:43:19:d3:85:93:0f:
e7:22:11:44:7c:77:aa:e5:6f:ef:fa:ad:73:55:58:
1b:61:51:93:ab:6c:11:22:6b:67:89:06:a7:87:8b:
20:cc:9c:44:aa:2b:45:e6:29:99:cf:0b:9d:26:88:
ef:d2:c3:cf:35:b4:c2:05:33:ce:44:46:fc:70:18:
9b:e3:55:82:ae:aa:74:bc:cc:e3:6a:5b:8f:ca:92:
12:ac:96:be:a6:ab:00:ec:ee:b2:f8:2b:5f:23:c4:
d5:4c:24:f6:17:cb:11:cb:ed:7c:5f:df:98:6f:6d:
73:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:49:17:45:27:18:DC:70:33:E6:96:BD:32:5C:DD:A2:50:B6:12:B8
X509v3 Authority Key Identifier:
keyid:86:F6:E5:24:FC:15:AA:DC:48:9E:E9:75:81:5A:37:28:6D:E4:BB:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hvblJPwVqtxInul1gVo3KG3ku1I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/c43e1c-b676-48c6-863f-9ade396f7c4c/1/sUkXRScY3HAz5pa9MlzdolC2Erg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/c43e1c-b676-48c6-863f-9ade396f7c4c/1/hvblJPwVqtxInul1gVo3KG3ku1I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.39.77.0/24
Signature Algorithm: sha256WithRSAEncryption
20:ab:07:69:f0:e4:d6:64:c3:c8:a2:62:21:b1:a6:99:34:80:
2d:b8:db:ff:74:d3:e4:e9:8c:70:f8:7c:1c:e9:37:00:a2:a6:
b0:96:98:aa:f9:71:a2:69:af:1d:71:e9:38:da:a5:5a:84:a2:
21:2d:19:56:96:88:88:09:0a:10:6e:75:bb:76:36:89:09:b8:
13:b0:ae:39:0d:0c:4e:9d:20:af:a0:7e:da:ce:f8:c2:68:77:
1b:c3:41:3a:18:60:18:8f:c2:5d:b8:25:8e:1b:d4:d8:30:1a:
25:24:f3:06:41:f5:a8:40:d7:99:4c:d8:53:e8:e7:c2:70:1f:
b1:60:66:15:22:01:a8:10:05:ba:24:6f:0e:a5:6b:c5:52:5a:
81:18:d3:50:91:a5:1d:80:6b:de:21:25:d5:cf:92:b2:5e:c4:
c7:e5:c9:30:79:78:4d:77:57:f4:ba:19:5a:63:57:69:dc:cc:
04:57:8c:db:17:8a:da:cc:d5:7d:47:b6:ac:a3:49:44:b1:3b:
41:13:59:26:41:c4:a9:8e:cb:36:5b:7d:ac:d0:ab:ee:a7:93:
85:aa:45:e1:ed:7b:ad:5e:15:2b:c7:8a:5d:8a:36:d8:42:24:
d5:a6:f4:49:25:71:c6:ce:37:f8:57:65:11:bb:41:4e:37:0e:
47:0b:79:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:48 2024 by rpki-client on console-fra.rpki-client.org