Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/b11a40-48e9-4e06-bf11-92c81f22e712/1/0OTmGfqOfHN_eba1FDrOxw5jjqE.roa
File: 0OTmGfqOfHN_eba1FDrOxw5jjqE.roa (raw, json)
Hash identifier: pT0U96BN7giq6aLykmCJU/hQ334RPt3DB/P4dH+hkT4=
Subject key identifier: D0:E4:E6:19:FA:8E:7C:73:7F:79:B6:B5:14:3A:CE:C7:0E:63:8E:A1
Certificate issuer: /CN=1b2c219f3c297b775880c3b651a2003f9be6de5e
Certificate serial: 018EA9958D465E7313C42BA301BFF58CA805
Authority key identifier: 1B:2C:21:9F:3C:29:7B:77:58:80:C3:B6:51:A2:00:3F:9B:E6:DE:5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gywhnzwpe3dYgMO2UaIAP5vm3l4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/b11a40-48e9-4e06-bf11-92c81f22e712/1/0OTmGfqOfHN_eba1FDrOxw5jjqE.roa
Signing time: Thu 04 Apr 2024 14:48:54 +0000
ROA not before: Thu 04 Apr 2024 14:48:54 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216319
IP address blocks: 77.221.151.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 27 May 2024 06:57:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:a9:95:8d:46:5e:73:13:c4:2b:a3:01:bf:f5:8c:a8:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b2c219f3c297b775880c3b651a2003f9be6de5e
Validity
Not Before: Apr 4 14:48:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d0e4e619fa8e7c737f79b6b5143acec70e638ea1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:f6:c0:f8:b1:ed:60:84:5c:a7:eb:a2:a4:af:
67:ce:c9:11:67:0a:1e:cf:14:54:a3:fb:62:8d:6a:
0f:5b:c2:ff:4a:dc:50:f8:7a:04:3a:10:ec:9c:68:
88:24:b9:0f:2a:b5:02:16:65:40:af:66:11:0e:15:
75:a7:b2:2e:e2:f5:84:0c:a6:ba:36:7a:08:96:0c:
ec:fe:8a:54:ae:f7:32:f6:0e:c2:77:cc:d8:77:eb:
54:76:de:d7:a9:ae:5f:10:1c:23:18:65:a5:c8:49:
cd:8e:56:3e:d9:d7:3c:8d:90:9d:a6:b0:40:7d:ae:
80:e3:4e:99:c3:0a:cf:e6:3d:d1:80:2e:46:e1:74:
91:16:13:e4:48:e2:b7:b7:6e:ab:ac:9c:38:64:72:
1e:8e:86:f3:77:c2:bc:0f:e8:78:f9:be:ca:7b:5c:
4c:6d:00:16:3d:59:8b:ac:ca:ee:85:b0:05:27:0e:
83:7f:24:5a:fc:88:c2:ca:0c:2a:c9:e5:b8:40:ae:
3c:33:7a:fc:cb:e6:c5:aa:2b:14:07:da:54:49:b1:
86:be:a6:4f:50:8c:cf:3f:98:a0:33:95:67:e5:98:
53:9f:f1:6f:37:fd:41:e9:a7:98:21:fd:2c:96:e6:
7a:89:d6:37:da:6b:00:40:ea:15:a8:fe:e0:97:26:
5e:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:E4:E6:19:FA:8E:7C:73:7F:79:B6:B5:14:3A:CE:C7:0E:63:8E:A1
X509v3 Authority Key Identifier:
keyid:1B:2C:21:9F:3C:29:7B:77:58:80:C3:B6:51:A2:00:3F:9B:E6:DE:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gywhnzwpe3dYgMO2UaIAP5vm3l4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/b11a40-48e9-4e06-bf11-92c81f22e712/1/0OTmGfqOfHN_eba1FDrOxw5jjqE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/b11a40-48e9-4e06-bf11-92c81f22e712/1/Gywhnzwpe3dYgMO2UaIAP5vm3l4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.221.151.0/24
Signature Algorithm: sha256WithRSAEncryption
10:08:dc:d9:44:ce:1e:e1:37:aa:13:77:ee:60:a2:55:0c:22:
54:05:64:e6:c5:dc:c9:8b:bc:98:00:7a:01:8f:c1:c8:3d:0d:
30:b2:7c:eb:48:2b:4a:3b:9d:f8:82:3b:45:9c:ab:58:24:a6:
aa:5b:d0:69:c8:1a:27:95:16:03:8a:79:57:d8:81:74:b5:2f:
da:25:d7:97:02:28:69:10:43:1c:e9:ce:ff:7c:ff:b0:59:66:
88:f7:be:17:35:dd:cb:a3:b8:fe:0c:99:4c:31:91:f1:2b:c1:
eb:1d:ce:4c:f2:a3:0b:06:c1:a0:79:1c:37:c1:99:b4:99:d2:
25:e7:29:8e:cd:00:13:6f:f6:d7:9d:0b:c5:c0:97:f7:ed:3c:
0f:d7:8a:ac:0b:4f:35:fc:40:9b:ca:e1:30:7f:a6:79:48:60:
c1:ce:95:4f:6f:ec:c3:4e:e3:76:0a:13:e3:fa:dc:1a:cc:4b:
f9:86:7a:6d:d4:6b:88:73:2f:72:33:86:f9:df:02:54:9c:53:
d8:02:b9:af:eb:dc:a7:a5:c6:f1:7a:61:85:e5:cd:e5:c7:1b:
95:6f:ec:a9:a0:59:b0:5a:38:b4:ae:3a:40:03:28:27:5a:0a:
d4:0f:0a:93:78:66:b1:e7:db:23:b3:99:df:96:87:cc:1b:55:
0e:ad:2f:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 27 07:46:12 2024 by rpki-client on console-fra.rpki-client.org