Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/8b856a-38ae-4cfb-81d2-271a9576eae7/1/ItKvNl8KZ0TZWwLkPlyEO-kTpYI.roa
File: ItKvNl8KZ0TZWwLkPlyEO-kTpYI.roa (raw, json)
Hash identifier: B5TQ0f33rttsctwpjmNbZV/dnFqC1ofb8mFOlnEOka4=
Subject key identifier: 22:D2:AF:36:5F:0A:67:44:D9:5B:02:E4:3E:5C:84:3B:E9:13:A5:82
Certificate issuer: /CN=2eeec5231d212b310579d78fc41479ca6ec2aa07
Certificate serial: 018572BA79350B96B22BDD964A312839A2C8
Authority key identifier: 2E:EE:C5:23:1D:21:2B:31:05:79:D7:8F:C4:14:79:CA:6E:C2:AA:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Lu7FIx0hKzEFedePxBR5ym7Cqgc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/8b856a-38ae-4cfb-81d2-271a9576eae7/1/ItKvNl8KZ0TZWwLkPlyEO-kTpYI.roa
Signing time: Mon 02 Jan 2023 13:45:01 +0000
ROA not before: Mon 02 Jan 2023 13:45:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61237
IP address blocks: 77.247.239.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:30:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:ba:79:35:0b:96:b2:2b:dd:96:4a:31:28:39:a2:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2eeec5231d212b310579d78fc41479ca6ec2aa07
Validity
Not Before: Jan 2 13:45:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=22d2af365f0a6744d95b02e43e5c843be913a582
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:4c:eb:0b:ec:76:54:10:0e:8c:be:1a:4c:75:
30:53:b4:53:f7:ec:f1:13:0e:e0:f5:d2:64:73:fb:
45:63:a0:75:c2:75:0b:dd:0e:dc:b7:7a:c6:a5:8c:
49:87:ee:ee:10:02:ce:25:80:1a:af:c9:21:36:bd:
fd:2d:ef:63:94:8b:19:1d:64:9d:b8:e1:0f:02:af:
a6:29:e1:16:5e:22:a6:60:98:e9:60:ad:fd:1f:41:
5f:98:7a:6d:da:40:59:42:93:0e:a6:1c:dd:95:69:
de:19:f7:9f:f5:2a:ae:72:9d:5e:a4:2d:8a:a6:9d:
9f:48:40:c4:32:81:6a:48:aa:d2:8f:82:6c:ba:4e:
b3:70:af:c9:bd:e8:47:d9:94:1c:67:21:75:11:94:
43:21:92:e6:f9:c7:d3:24:21:ed:cc:e7:6d:e5:37:
8c:f3:a6:d2:8e:c3:c1:60:ab:9f:4b:e7:4c:ba:43:
13:5a:7a:08:25:8b:a9:2c:0b:84:08:0c:b1:a2:a1:
68:8c:85:bc:ef:e8:5a:ab:5a:b0:7c:a5:fe:13:fb:
89:02:d9:d1:fd:61:01:11:66:67:e4:5b:6b:41:98:
4a:d8:fe:76:6e:b2:9b:51:f8:f2:5d:03:5b:78:5b:
c6:f7:13:02:62:e7:bd:47:a0:9f:98:83:fc:cf:c3:
08:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:D2:AF:36:5F:0A:67:44:D9:5B:02:E4:3E:5C:84:3B:E9:13:A5:82
X509v3 Authority Key Identifier:
keyid:2E:EE:C5:23:1D:21:2B:31:05:79:D7:8F:C4:14:79:CA:6E:C2:AA:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Lu7FIx0hKzEFedePxBR5ym7Cqgc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/8b856a-38ae-4cfb-81d2-271a9576eae7/1/ItKvNl8KZ0TZWwLkPlyEO-kTpYI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/8b856a-38ae-4cfb-81d2-271a9576eae7/1/Lu7FIx0hKzEFedePxBR5ym7Cqgc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.247.239.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:51:df:85:18:a5:db:8c:1e:33:39:b2:f8:3a:89:a1:35:16:
d5:78:0b:85:8a:07:d9:31:d8:d9:92:02:6c:81:8b:b4:63:bf:
ec:ac:7a:78:88:34:29:75:d1:5e:33:17:f4:b3:6d:c6:f1:ff:
b4:2f:a0:8e:06:53:11:75:50:20:8c:34:d8:72:0b:2a:60:6d:
0a:a8:08:c3:45:0f:0c:7f:bf:22:56:42:63:76:b1:cb:25:59:
23:1b:49:88:a3:fd:6f:d2:bd:03:d4:50:dd:17:6d:92:4f:5e:
fc:e4:dd:0a:23:30:23:2a:28:07:47:4f:55:e9:95:37:b3:a3:
a2:9e:94:85:69:1c:a1:52:73:7c:d0:6c:1c:b8:66:f5:8c:29:
69:26:20:ff:43:70:ff:f7:d4:6b:85:b3:10:76:48:fa:15:8c:
f2:8b:81:ba:92:08:83:11:13:e7:0b:e6:c6:5d:fd:54:41:94:
c8:c7:e7:47:d9:90:68:c8:21:de:e7:cc:98:88:2b:48:56:0c:
32:9c:eb:5a:7c:7a:32:eb:d1:93:58:b7:63:43:97:be:9c:eb:
04:e8:3f:5d:85:3b:86:d6:43:e7:b6:8e:be:ff:f8:57:4e:04:
96:f7:d0:3b:63:05:3d:26:98:4a:b1:12:90:9b:bb:5c:42:5d:
58:2e:54:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:08 2024 by rpki-client on console-fra.rpki-client.org