Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/0917a7-9ebd-45b9-9de2-27473ca612de/1/9jifntqG-P7tGNpVt305UrE7ZmA.roa
File: 9jifntqG-P7tGNpVt305UrE7ZmA.roa (raw, json)
Hash identifier: gfLNxGMyxS24gc9iZqJguxHXN1PtoOIa13Cv7qO0O9E=
Subject key identifier: F6:38:9F:9E:DA:86:F8:FE:ED:18:DA:55:B7:7D:39:52:B1:3B:66:60
Certificate issuer: /CN=b914961f67f22c61e84a66c8ad9c1a8ce51d099b
Certificate serial: 01928BE3C0D9F5B6834AE2B3D93A19766897
Authority key identifier: B9:14:96:1F:67:F2:2C:61:E8:4A:66:C8:AD:9C:1A:8C:E5:1D:09:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uRSWH2fyLGHoSmbIrZwajOUdCZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/0917a7-9ebd-45b9-9de2-27473ca612de/1/9jifntqG-P7tGNpVt305UrE7ZmA.roa
Signing time: Mon 14 Oct 2024 16:36:51 +0000
ROA not before: Mon 14 Oct 2024 16:36:51 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42325
IP address blocks: 77.72.104.0/21 maxlen: 24
Validation: Failed, certificate revoked on Mon 21 Oct 2024 12:09:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:8b:e3:c0:d9:f5:b6:83:4a:e2:b3:d9:3a:19:76:68:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b914961f67f22c61e84a66c8ad9c1a8ce51d099b
Validity
Not Before: Oct 14 16:36:51 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f6389f9eda86f8feed18da55b77d3952b13b6660
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:c0:bf:19:99:ce:fe:cf:fd:68:11:cf:28:54:
3a:a2:a9:26:af:b3:dc:8d:a7:44:1d:56:b4:c9:38:
f3:0d:9f:8b:3d:1d:bf:3c:a6:29:bd:14:d2:cf:3a:
e4:2f:54:e8:39:41:76:c8:7a:81:47:32:79:06:1e:
0d:90:f7:bd:6f:86:bf:f7:46:19:cd:2f:17:0d:d6:
a3:9a:cc:df:0e:46:ba:fc:e4:8f:6f:b4:82:94:9b:
d0:1e:16:d2:90:be:94:bc:19:45:71:7c:bb:ea:80:
21:62:23:72:56:3d:5f:ac:7c:01:45:2e:51:b5:b6:
ba:58:5f:ff:57:71:42:35:45:7f:3d:a3:5b:c2:86:
0b:08:7c:a9:67:4b:80:a9:fb:92:64:ff:71:7a:7c:
35:c3:62:fc:54:13:e5:38:07:3e:06:67:95:39:96:
62:1e:60:ae:2f:47:74:8d:0f:56:6c:11:cf:ba:80:
bd:36:3b:a9:9f:6d:c1:d9:77:39:36:5e:5c:54:d8:
03:83:f7:e8:4e:dd:0e:a4:e7:8d:08:67:b9:0b:60:
b0:b6:56:1e:3a:a5:75:db:74:52:9c:db:c9:d7:6d:
7f:4c:d2:b0:4e:41:8c:b5:c0:6b:9c:ed:25:9a:f0:
cc:cb:6e:a8:54:f6:a7:d6:c3:4e:93:19:2c:af:cb:
b3:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:38:9F:9E:DA:86:F8:FE:ED:18:DA:55:B7:7D:39:52:B1:3B:66:60
X509v3 Authority Key Identifier:
keyid:B9:14:96:1F:67:F2:2C:61:E8:4A:66:C8:AD:9C:1A:8C:E5:1D:09:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uRSWH2fyLGHoSmbIrZwajOUdCZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0917a7-9ebd-45b9-9de2-27473ca612de/1/9jifntqG-P7tGNpVt305UrE7ZmA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0917a7-9ebd-45b9-9de2-27473ca612de/1/uRSWH2fyLGHoSmbIrZwajOUdCZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.72.104.0/21
Signature Algorithm: sha256WithRSAEncryption
33:58:6c:7b:a0:aa:a0:ec:02:e0:5c:1c:00:f5:25:dd:db:6f:
b6:e8:72:8e:7d:85:d2:b8:f0:c2:01:e0:af:44:fd:2e:7d:cc:
6a:65:82:79:17:59:3f:67:f7:7c:5c:64:c9:6a:89:9e:77:15:
20:8b:0d:94:00:ff:01:f1:02:24:22:b1:a9:91:8a:bd:ff:16:
4d:c8:80:4f:93:1d:42:fc:12:87:db:7c:28:35:f9:53:5e:61:
0f:17:f5:b3:c9:66:8f:4d:0e:79:87:82:1e:6a:aa:5c:1c:23:
00:46:3d:bb:b5:2e:b6:83:67:cc:7d:74:a3:17:9b:15:88:ce:
35:f3:fe:d9:28:49:66:28:2c:83:71:d9:da:39:cd:b1:01:25:
b1:92:56:fc:5e:e7:61:c7:51:6c:f7:3c:0a:e9:84:a3:2a:8c:
33:e2:83:e6:f1:fd:60:40:ab:78:bf:d2:c6:b5:0a:2f:72:d4:
5e:80:2f:56:99:7e:99:fb:ef:80:25:e1:85:9a:20:50:fd:2b:
fd:db:16:8e:c0:0a:72:df:6c:2b:da:35:d4:fc:5e:7f:e1:2c:
47:43:24:81:cc:55:9f:cf:db:68:54:bd:2b:78:11:2c:4f:2b:
24:cf:e1:13:11:80:ae:91:b6:6a:08:27:ac:b8:12:d0:f4:e8:
5e:fd:c0:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 16:36:34 2024 by rpki-client on console-ams.rpki-client.org