Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/94a1e0-c180-4baf-9ea0-f67e7078878e/1/ko0MONJSRT6c06YKLvARSnyCZFA.roa
File: ko0MONJSRT6c06YKLvARSnyCZFA.roa (raw, json)
Hash identifier: Vri4WiUQvtqa5awiQr+otO1zxu4Q6XAUyQydoPtyo+o=
Subject key identifier: 92:8D:0C:38:D2:52:45:3E:9C:D3:A6:0A:2E:F0:11:4A:7C:82:64:50
Certificate issuer: /CN=f83272c0c32db004f078f874b99da9a0b7e63afd
Certificate serial: 018572837E28004B1AE8D72DD14385F2DA5F
Authority key identifier: F8:32:72:C0:C3:2D:B0:04:F0:78:F8:74:B9:9D:A9:A0:B7:E6:3A:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-DJywMMtsATwePh0uZ2poLfmOv0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/94a1e0-c180-4baf-9ea0-f67e7078878e/1/ko0MONJSRT6c06YKLvARSnyCZFA.roa
Signing time: Mon 02 Jan 2023 12:44:58 +0000
ROA not before: Mon 02 Jan 2023 12:44:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60501
IP address blocks: 77.72.87.0/24 maxlen: 24
2a11:dd00::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:83:7e:28:00:4b:1a:e8:d7:2d:d1:43:85:f2:da:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f83272c0c32db004f078f874b99da9a0b7e63afd
Validity
Not Before: Jan 2 12:44:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=928d0c38d252453e9cd3a60a2ef0114a7c826450
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:e5:06:95:a2:62:2e:30:f7:ca:9a:34:98:ff:
f1:72:7c:c5:ce:cd:f5:e8:a9:f3:ba:68:06:dd:17:
7c:52:90:cb:bd:0e:4b:c0:eb:d1:f6:37:dd:1c:c8:
53:42:fe:61:ac:56:df:8c:cc:17:12:7c:5c:84:99:
b1:3c:a9:db:6f:fe:b0:11:df:99:ee:21:61:be:5b:
77:44:cc:45:58:40:35:e2:c6:9e:10:61:f5:02:d4:
8e:26:7e:b8:05:1a:8e:ad:47:f7:c3:51:5b:1b:73:
8a:cf:88:ad:d6:a9:67:f5:ad:44:bd:b4:69:1c:0e:
1d:22:3b:94:23:9e:66:ca:bd:bf:97:4f:cc:7b:02:
1c:c0:07:9c:b6:c4:d9:54:51:23:c1:e4:93:0e:e6:
5b:8b:8c:c9:82:e6:ce:80:bb:7f:4f:40:ff:f4:83:
31:fd:95:f6:78:01:98:5b:cd:d6:f6:e1:ef:12:ff:
a1:35:f7:98:82:9b:c5:0c:e9:48:67:12:9c:19:9a:
3c:20:10:63:07:31:e6:a3:32:25:f1:0f:6d:d6:b4:
7f:dd:82:e8:1f:53:d7:4b:e2:36:86:1d:a7:83:b0:
8b:18:cf:0b:a1:9a:26:33:b3:9c:48:e7:34:78:ed:
d7:0c:14:44:df:56:38:13:7e:4b:25:09:d8:aa:8a:
c6:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:8D:0C:38:D2:52:45:3E:9C:D3:A6:0A:2E:F0:11:4A:7C:82:64:50
X509v3 Authority Key Identifier:
keyid:F8:32:72:C0:C3:2D:B0:04:F0:78:F8:74:B9:9D:A9:A0:B7:E6:3A:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-DJywMMtsATwePh0uZ2poLfmOv0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/94a1e0-c180-4baf-9ea0-f67e7078878e/1/ko0MONJSRT6c06YKLvARSnyCZFA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/94a1e0-c180-4baf-9ea0-f67e7078878e/1/1-DJywMMtsATwePh0uZ2poLfmOv0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.72.87.0/24
IPv6:
2a11:dd00::/29
Signature Algorithm: sha256WithRSAEncryption
a1:eb:ac:2d:6c:38:91:c9:32:0c:1c:02:7e:35:3e:37:02:9c:
b2:f1:9a:d1:c3:65:64:e9:b4:8d:0f:91:6f:1b:7c:60:c0:86:
80:34:bc:5c:ed:3f:60:cb:e1:df:e2:9b:70:94:d2:4b:ea:ce:
09:f1:0f:82:4a:37:41:56:13:43:20:41:c0:f9:59:83:e6:e1:
47:bf:ed:e3:8d:5f:1f:11:d8:df:75:70:45:f0:d1:f4:bf:35:
17:9d:43:df:d1:8f:b5:55:08:94:93:04:9e:65:05:25:0d:6e:
47:3d:a7:71:12:fc:d8:c8:76:fb:75:64:27:66:90:2d:bb:e9:
a6:b9:df:0d:89:ae:f1:d0:24:0b:d4:22:1d:99:be:30:67:3e:
8d:40:3a:66:62:19:1c:7a:a4:d7:a6:7c:39:67:0e:75:3a:87:
1b:b0:24:54:7f:26:f4:34:a8:87:ef:43:18:a8:8d:5f:7c:a7:
12:e3:d9:be:d8:77:31:fd:43:1f:67:09:73:be:84:2d:72:2c:
fe:ad:c4:2a:9d:fa:22:3d:19:a4:4a:13:61:e9:fb:3a:15:e8:
25:64:f0:d8:e5:2e:01:db:80:85:34:74:cc:77:76:02:0e:07:
6f:b5:3a:f2:26:a8:4b:c4:1f:65:68:60:e0:78:e8:4e:20:91:
5c:db:52:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 04:10:17 2024 by rpki-client on console-ams.rpki-client.org