Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/ffc349-f326-4096-bcb3-c2c2acb908bc/1/q9S8gWVzi87TShr6HnYWnxkxBPM.roa
File: q9S8gWVzi87TShr6HnYWnxkxBPM.roa (raw, json)
Hash identifier: KLdFp+RGKLHUgpCErG6NbIgPh9jGVWcbunAlxWGu2xY=
Subject key identifier: AB:D4:BC:81:65:73:8B:CE:D3:4A:1A:FA:1E:76:16:9F:19:31:04:F3
Certificate issuer: /CN=040dd3d3c52d4c6fa51b7a833578cefb3ab26649
Certificate serial: 01856D9D2AEA55F870530843A74C3047C7E5
Authority key identifier: 04:0D:D3:D3:C5:2D:4C:6F:A5:1B:7A:83:35:78:CE:FB:3A:B2:66:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BA3T08UtTG-lG3qDNXjO-zqyZkk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/ffc349-f326-4096-bcb3-c2c2acb908bc/1/q9S8gWVzi87TShr6HnYWnxkxBPM.roa
Signing time: Sun 01 Jan 2023 13:54:54 +0000
ROA not before: Sun 01 Jan 2023 13:54:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43022
IP address blocks: 77.93.32.0/19 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:9d:2a:ea:55:f8:70:53:08:43:a7:4c:30:47:c7:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=040dd3d3c52d4c6fa51b7a833578cefb3ab26649
Validity
Not Before: Jan 1 13:54:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=abd4bc8165738bced34a1afa1e76169f193104f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:11:e8:85:de:7e:b4:ad:11:9f:5e:b8:9e:bf:
af:32:3a:0d:df:44:13:76:58:a3:12:53:69:2d:ac:
94:3a:eb:11:7f:dd:44:e6:58:34:43:ae:12:94:4c:
c1:c5:61:f4:d2:91:d1:e3:57:3a:6b:87:5d:11:0b:
ff:e3:e7:9d:d3:8c:5a:14:3d:1b:6c:91:dd:99:bf:
0d:1e:60:6e:9f:f9:88:d3:07:75:5a:16:1d:d7:32:
3d:ec:7b:8e:b8:23:de:4f:bd:b9:0f:29:e8:5e:9d:
ad:1d:e4:a5:2a:e0:3d:80:de:be:89:58:e9:49:5e:
ce:3c:ee:59:71:9f:42:b5:5d:e9:fc:b3:6b:b8:b1:
26:39:23:9c:19:c2:06:e2:35:28:83:14:8a:bc:88:
06:f4:98:ef:05:c0:7e:ee:51:77:bf:8d:94:90:70:
ca:b0:82:8e:11:f8:a6:64:ab:24:55:07:ad:80:cb:
9c:84:53:ab:34:fa:b0:56:4b:ca:e7:cb:8a:f6:16:
e2:82:64:60:0e:66:e3:10:83:1f:2e:54:5f:6e:38:
45:b4:45:be:f9:ee:ca:5b:fb:59:3a:39:a8:a2:63:
5c:6b:20:5b:77:c5:d0:06:ff:8d:9c:10:77:95:44:
9c:25:cc:39:8a:50:4b:78:50:22:09:75:4c:4c:2c:
d1:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:D4:BC:81:65:73:8B:CE:D3:4A:1A:FA:1E:76:16:9F:19:31:04:F3
X509v3 Authority Key Identifier:
keyid:04:0D:D3:D3:C5:2D:4C:6F:A5:1B:7A:83:35:78:CE:FB:3A:B2:66:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BA3T08UtTG-lG3qDNXjO-zqyZkk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/ffc349-f326-4096-bcb3-c2c2acb908bc/1/q9S8gWVzi87TShr6HnYWnxkxBPM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/ffc349-f326-4096-bcb3-c2c2acb908bc/1/BA3T08UtTG-lG3qDNXjO-zqyZkk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.93.32.0/19
Signature Algorithm: sha256WithRSAEncryption
66:5e:83:16:85:0a:5c:c1:28:89:54:af:1f:01:0a:be:74:93:
a1:5e:5b:30:5a:dd:98:b1:d7:0b:77:7d:24:cb:4f:c9:be:9f:
6c:8f:2a:c8:1b:06:96:44:56:e8:94:6c:0b:a2:2f:a5:cf:65:
9e:fd:56:1e:da:83:7b:15:ef:59:d8:3d:79:ce:6b:fd:8a:60:
3c:f3:91:6d:de:60:5e:c8:61:e5:1b:4d:e9:10:65:87:1c:15:
27:49:03:8a:e4:d4:81:65:f9:8a:8c:f4:cf:0d:2e:61:51:3d:
0d:6a:90:1a:1f:be:61:23:45:d2:43:fb:c3:4e:99:32:c5:e3:
c1:43:b9:39:23:74:7c:b3:21:73:48:9e:2b:84:3e:c1:fc:d9:
fc:b7:60:09:d4:50:c8:76:6a:35:ea:b2:b6:b0:0b:9c:61:10:
f1:ea:6e:d3:79:f4:ad:f1:d4:67:e7:00:07:c0:a2:96:df:1d:
7d:65:4b:c3:53:d6:96:ab:1f:4a:d6:50:ab:e8:4c:49:4e:15:
89:a0:bf:18:d9:78:22:44:2f:b8:35:75:3e:69:99:17:8d:bb:
ac:9f:a9:6f:76:60:dc:b7:08:bb:53:68:09:72:66:02:f1:07:
67:c3:23:79:05:cf:49:6c:67:60:5d:c5:19:d9:47:7b:d9:0f:
d5:29:cf:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:45 2024 by rpki-client on console-ams.rpki-client.org