Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/77217d-814b-486a-8ef2-fe0333ed005f/1/tlDQAOi1gcqK9HHJwhE2i3BUojU.roa
File: tlDQAOi1gcqK9HHJwhE2i3BUojU.roa (raw, json)
Hash identifier: J+DZB5CngtDDt25+8wtuUQtwaLAzATsVO+8EIfsrF1w=
Subject key identifier: B6:50:D0:00:E8:B5:81:CA:8A:F4:71:C9:C2:11:36:8B:70:54:A2:35
Certificate issuer: /CN=7302cdc29fdca09e9a0f3f7d2113da85a7e1d654
Certificate serial: 01856D0A9FCA01CDDB35847AB88723D61DEC
Authority key identifier: 73:02:CD:C2:9F:DC:A0:9E:9A:0F:3F:7D:21:13:DA:85:A7:E1:D6:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cwLNwp_coJ6aDz99IRPahafh1lQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/77217d-814b-486a-8ef2-fe0333ed005f/1/tlDQAOi1gcqK9HHJwhE2i3BUojU.roa
Signing time: Sun 01 Jan 2023 11:14:50 +0000
ROA not before: Sun 01 Jan 2023 11:14:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51540
IP address blocks: 77.223.146.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:0a:9f:ca:01:cd:db:35:84:7a:b8:87:23:d6:1d:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7302cdc29fdca09e9a0f3f7d2113da85a7e1d654
Validity
Not Before: Jan 1 11:14:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b650d000e8b581ca8af471c9c211368b7054a235
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:ae:bc:ce:27:47:98:b1:7d:62:51:9f:45:b3:
7e:01:8a:5f:e2:39:54:e5:46:4f:1a:23:02:1d:f6:
2a:41:e2:91:f5:6d:1b:64:62:80:29:61:08:3a:71:
11:68:3a:d4:a1:e5:36:40:88:cd:13:b0:7f:78:3d:
aa:71:93:fb:6b:67:4a:b5:19:2e:f2:ab:93:b3:36:
41:c4:aa:25:ce:87:1f:ed:98:55:cb:f9:3c:ec:4a:
05:49:c0:f6:7c:36:a8:93:72:c7:c1:50:65:05:2a:
53:52:16:65:ca:16:40:94:37:88:8f:20:09:6b:ac:
b3:06:07:5f:7e:64:5c:b1:da:ed:38:4a:5f:fa:5e:
a5:4f:15:31:44:16:5a:aa:ff:04:be:5b:82:af:8e:
62:8c:54:48:8f:bd:08:21:5b:85:16:4e:d7:36:a0:
92:c5:ed:b7:a0:ae:f2:3a:30:7a:54:b0:0c:7f:98:
d4:12:d1:d2:34:be:1e:d8:71:96:ed:51:04:c1:e8:
93:29:4c:3c:dd:d9:4e:eb:e3:38:de:2d:35:9f:7b:
b1:c0:4b:4e:0e:73:59:0a:e7:15:b8:16:6b:6e:cb:
71:22:39:cb:e3:91:4c:23:c5:51:d8:c8:06:f2:7a:
0a:df:62:6e:36:37:90:42:70:21:ee:67:85:a9:1c:
9f:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:50:D0:00:E8:B5:81:CA:8A:F4:71:C9:C2:11:36:8B:70:54:A2:35
X509v3 Authority Key Identifier:
keyid:73:02:CD:C2:9F:DC:A0:9E:9A:0F:3F:7D:21:13:DA:85:A7:E1:D6:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cwLNwp_coJ6aDz99IRPahafh1lQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/77217d-814b-486a-8ef2-fe0333ed005f/1/tlDQAOi1gcqK9HHJwhE2i3BUojU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/77217d-814b-486a-8ef2-fe0333ed005f/1/cwLNwp_coJ6aDz99IRPahafh1lQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.223.146.0/23
Signature Algorithm: sha256WithRSAEncryption
93:19:9a:2f:3a:a3:df:39:7b:79:c0:53:d5:4d:52:8f:f8:3b:
c2:31:f9:17:3d:00:db:7c:8c:5a:cc:a3:e4:3c:5d:1b:8f:35:
94:55:0f:f1:4c:a5:cd:a5:c9:ce:27:af:7c:9e:c3:e2:0e:ff:
a5:85:f2:6d:2c:27:09:fb:64:12:65:ea:2c:a9:f0:94:5f:99:
7b:37:22:c9:a7:24:1f:45:4d:43:31:01:a0:f6:5c:6c:d2:e0:
69:25:35:6d:a7:32:a1:a9:7c:28:9c:32:e5:69:e3:ab:6c:0c:
01:98:70:0d:a2:ff:18:67:1f:9a:a7:8d:01:47:b8:74:bb:cd:
ca:3f:9d:18:d4:46:87:06:6b:b8:87:61:e4:af:44:a8:a1:c2:
8a:2f:9e:21:90:c7:1f:78:59:1b:05:ed:3a:a1:cb:01:72:cd:
c0:93:16:90:5c:76:64:74:39:6c:a5:b8:3d:29:c8:63:c0:5e:
2d:89:7e:32:fa:3b:ee:d0:0c:80:0d:d2:5b:c5:03:83:bb:a2:
9f:d7:f0:74:88:5c:d3:f4:af:70:7e:75:a3:32:bc:7c:99:50:
d9:8e:30:9c:d0:eb:56:e4:2f:d8:55:08:97:19:69:05:93:0c:
da:da:f5:15:10:3b:17:39:a6:5d:b6:5a:50:2e:63:f0:91:b9:
08:09:77:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:22:02 2024 by rpki-client on console-ams.rpki-client.org