Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/95c3c8-6ab1-4951-8f59-65503a9306a0/1/Xx4bk0WOy__MMHAgo_KCnaT3Yt4.roa
File: Xx4bk0WOy__MMHAgo_KCnaT3Yt4.roa (raw, json)
Hash identifier: U+Q3WQGBNpP343hUVITYtKI2N972RWrjLLaqUTTKhqw=
Subject key identifier: 5F:1E:1B:93:45:8E:CB:FF:CC:30:70:20:A3:F2:82:9D:A4:F7:62:DE
Certificate issuer: /CN=18d801de9fe8a6680758817823ae36ba065c610d
Certificate serial: 018CC501507A3233EB496167375427A57B5F
Authority key identifier: 18:D8:01:DE:9F:E8:A6:68:07:58:81:78:23:AE:36:BA:06:5C:61:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GNgB3p_opmgHWIF4I642ugZcYQ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/95c3c8-6ab1-4951-8f59-65503a9306a0/1/Xx4bk0WOy__MMHAgo_KCnaT3Yt4.roa
Signing time: Mon 01 Jan 2024 12:30:46 +0000
ROA not before: Mon 01 Jan 2024 12:30:46 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 209917
IP address blocks: 77.72.220.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 23:48:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:01:50:7a:32:33:eb:49:61:67:37:54:27:a5:7b:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18d801de9fe8a6680758817823ae36ba065c610d
Validity
Not Before: Jan 1 12:30:46 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5f1e1b93458ecbffcc307020a3f2829da4f762de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:25:3f:0a:fa:97:4d:0b:2f:d6:2f:0d:be:0b:
97:ad:b9:6d:ff:d3:5c:8b:5c:ff:74:67:dd:95:c3:
c5:fd:eb:ae:17:a1:cc:31:79:26:5b:f5:be:e4:9e:
96:d9:38:7b:b2:94:89:47:6a:10:ab:5c:72:f7:40:
3c:00:15:89:ed:1e:db:ba:c6:d3:9f:db:05:05:ad:
44:7a:26:1d:6a:22:74:5f:a9:a2:73:e3:78:1c:f6:
18:d9:d3:4e:8a:44:d2:67:d4:52:91:c0:7d:99:b2:
c9:56:af:2c:ad:15:d3:45:2c:3e:a7:a0:1e:6a:97:
f6:66:80:23:2b:2b:d6:d3:46:26:78:5b:4f:66:fd:
34:51:78:cd:72:7b:7b:d8:d4:6d:40:3c:98:1b:ac:
98:b5:20:78:4e:47:7a:a6:43:81:ad:3d:8b:9c:8c:
e5:b2:34:ee:ae:b3:dc:86:bf:1b:e0:9b:dc:d2:87:
14:76:89:06:e8:97:a4:7f:a3:c9:7c:1c:80:01:1b:
a8:cb:4e:27:15:f3:a5:64:34:1d:da:96:e5:27:92:
52:1b:7b:67:cb:3f:a5:26:16:86:b1:03:da:d1:79:
86:9e:69:b7:17:4f:63:4d:d8:cb:8d:25:a4:23:1e:
a3:0b:1a:12:9d:23:94:4a:4e:d1:d1:42:e8:14:f3:
87:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:1E:1B:93:45:8E:CB:FF:CC:30:70:20:A3:F2:82:9D:A4:F7:62:DE
X509v3 Authority Key Identifier:
keyid:18:D8:01:DE:9F:E8:A6:68:07:58:81:78:23:AE:36:BA:06:5C:61:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GNgB3p_opmgHWIF4I642ugZcYQ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/95c3c8-6ab1-4951-8f59-65503a9306a0/1/Xx4bk0WOy__MMHAgo_KCnaT3Yt4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/95c3c8-6ab1-4951-8f59-65503a9306a0/1/GNgB3p_opmgHWIF4I642ugZcYQ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.72.220.0/24
Signature Algorithm: sha256WithRSAEncryption
c2:53:e4:60:6b:95:22:21:d9:77:e6:08:ba:c0:3c:34:4d:ba:
fa:cb:f1:ea:3a:b8:a0:a8:e5:29:02:fc:d1:79:76:6a:1e:75:
99:9b:bf:6f:fd:c0:c8:b5:63:87:fb:34:e5:30:4b:28:2d:f5:
2f:cf:45:e7:e9:28:3b:73:2a:49:4d:59:df:fb:3f:3f:16:2b:
13:27:28:b5:c7:ac:02:26:bd:79:56:a2:66:69:f7:72:9a:5a:
ff:0d:21:38:2a:46:72:87:67:fb:b3:e4:46:ed:4a:e0:56:c0:
55:9d:24:92:50:60:4f:2a:f7:69:0e:1c:4f:f0:90:17:4c:e5:
53:35:f8:9f:a1:8b:2b:4d:b0:e9:94:32:48:e8:0b:35:39:28:
26:02:58:d0:11:a4:b3:5b:fa:0f:01:42:b6:c3:41:8b:01:48:
a5:1b:66:08:1f:2a:39:b1:e5:e3:1f:78:dc:c3:3b:f9:3b:25:
e8:7d:d1:d7:98:8b:ea:42:4e:6e:62:c3:50:93:1b:d5:f7:21:
0d:8a:1a:e1:2a:a7:ed:e5:3f:20:ad:35:5a:e5:6e:09:30:5f:
4c:9e:66:34:6b:ce:1b:ac:d8:22:b8:d9:9c:2a:c6:f5:2c:45:
9a:a8:15:69:a4:26:04:f5:c1:d7:dc:0b:aa:66:31:e8:75:27:
b7:17:4f:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 15:30:05 2025 by rpki-client