Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/f8314e-a3bc-45e9-a9f5-4c98d9a51405/1/ZDJYtP3BUAO0E8aSlvKUrDf5wwg.roa
File: ZDJYtP3BUAO0E8aSlvKUrDf5wwg.roa (raw, json)
Hash identifier: Knsmp/D23pqhBJpKLBBP0upxxQHO2AGDAi7OwEHPV9c=
Subject key identifier: 64:32:58:B4:FD:C1:50:03:B4:13:C6:92:96:F2:94:AC:37:F9:C3:08
Certificate issuer: /CN=c441738baab988b1d68693bb05e29bfbb4f0f671
Certificate serial: 01856D4ABC83317729F14632B481E5038141
Authority key identifier: C4:41:73:8B:AA:B9:88:B1:D6:86:93:BB:05:E2:9B:FB:B4:F0:F6:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xEFzi6q5iLHWhpO7BeKb-7Tw9nE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/f8314e-a3bc-45e9-a9f5-4c98d9a51405/1/ZDJYtP3BUAO0E8aSlvKUrDf5wwg.roa
Signing time: Sun 01 Jan 2023 12:24:52 +0000
ROA not before: Sun 01 Jan 2023 12:24:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8540
IP address blocks: 77.220.109.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:4a:bc:83:31:77:29:f1:46:32:b4:81:e5:03:81:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c441738baab988b1d68693bb05e29bfbb4f0f671
Validity
Not Before: Jan 1 12:24:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=643258b4fdc15003b413c69296f294ac37f9c308
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:35:7b:89:c0:a9:d8:6d:9b:1c:02:dc:ef:7c:
64:d5:f7:64:a5:e8:c9:cf:65:11:19:49:c9:5b:aa:
b8:31:fc:59:19:a3:cf:8c:3e:b7:b8:85:af:73:b0:
32:27:5a:ee:61:6b:06:f0:85:91:1c:30:24:23:06:
8e:f3:81:88:58:f5:2f:99:9f:0d:11:eb:c4:9c:3f:
4d:90:6c:e6:49:b9:e7:ba:7c:f2:9d:41:7d:f8:27:
7f:d3:40:7c:fa:45:b1:a5:a7:76:d7:57:fc:2c:93:
5f:5b:e4:16:32:9f:cf:f6:ab:b5:e3:70:56:dc:f4:
f8:c8:7a:a9:85:0a:1e:1c:a6:94:b3:55:1b:18:bd:
c2:77:fc:9d:8a:c8:2e:21:87:d0:f9:63:1b:f6:27:
0d:7a:26:3c:7b:65:6a:62:18:f7:8b:af:2b:b4:1c:
d8:40:90:e8:5d:be:61:5d:94:b0:4d:12:3b:34:ed:
9f:96:2a:14:1d:fe:62:30:46:d7:e8:04:82:1e:f0:
a0:7c:39:bc:12:3d:0a:89:c2:2b:9b:87:2d:ef:d9:
22:c3:ca:88:f7:9d:42:95:ef:04:3a:26:99:63:bd:
8b:8f:c6:3a:61:ac:8f:7b:62:9b:d6:1b:f8:67:6a:
b8:cb:c4:8e:62:65:fb:f6:26:5e:5b:c4:d6:74:2a:
70:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:32:58:B4:FD:C1:50:03:B4:13:C6:92:96:F2:94:AC:37:F9:C3:08
X509v3 Authority Key Identifier:
keyid:C4:41:73:8B:AA:B9:88:B1:D6:86:93:BB:05:E2:9B:FB:B4:F0:F6:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xEFzi6q5iLHWhpO7BeKb-7Tw9nE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/f8314e-a3bc-45e9-a9f5-4c98d9a51405/1/ZDJYtP3BUAO0E8aSlvKUrDf5wwg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/f8314e-a3bc-45e9-a9f5-4c98d9a51405/1/xEFzi6q5iLHWhpO7BeKb-7Tw9nE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.220.109.0/24
Signature Algorithm: sha256WithRSAEncryption
bb:46:12:7a:5e:c0:a1:77:ab:43:c9:ce:7f:73:61:b3:f2:0d:
d4:77:c9:78:0b:f4:bb:28:76:b5:c0:23:66:3a:50:f9:bd:98:
93:df:04:54:57:02:aa:f6:6e:9a:00:d0:87:5a:a9:3c:f7:ef:
db:22:36:7b:ca:13:62:e6:18:81:41:fc:72:0c:5c:32:f9:05:
81:74:50:f2:db:4e:60:41:23:44:ad:2f:94:42:b8:8f:40:da:
bc:5a:6b:e6:60:da:fb:c7:97:73:a1:6d:4f:a9:08:e4:b5:8d:
64:32:60:c6:a6:c1:ea:a8:91:ac:80:3f:27:ec:b4:07:cf:2e:
0d:e4:bb:5f:97:9b:81:1d:d9:47:30:db:6d:02:6a:2a:17:84:
e9:cb:90:cd:e7:9d:b2:70:96:3c:8b:51:96:07:8c:32:53:96:
c2:79:e1:39:a4:fb:db:d9:f5:75:42:d1:bb:a2:74:61:57:57:
47:b1:8e:9f:8f:33:b2:61:2b:fa:91:62:1f:b3:21:5b:92:0e:
8b:e5:1b:d5:5a:36:4b:3b:47:75:a4:fe:b8:8c:ea:ca:fd:22:
ae:c4:59:dc:cd:d6:50:25:df:a2:9b:f0:47:b4:03:04:fd:56:
cf:a8:94:94:6b:d1:10:b8:91:67:43:ad:1e:dd:4b:42:20:95:
29:2c:1d:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 15:03:04 2024 by rpki-client on console-ams.rpki-client.org