Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/Cuqm7VkCZOkbVonXMRIAKCCGq4E.roa
File: Cuqm7VkCZOkbVonXMRIAKCCGq4E.roa (raw, json)
Hash identifier: zAAUQOIZkXxu9673XphIxo5ATVLWOP8IHF6pxms+ouc=
Subject key identifier: 0A:EA:A6:ED:59:02:64:E9:1B:56:89:D7:31:12:00:28:20:86:AB:81
Certificate issuer: /CN=affa13f1ae053916280ec68ee1b0976f9ebd3ea8
Certificate serial: 0186110170636CF5E33D02F2E4C8D27B6886
Authority key identifier: AF:FA:13:F1:AE:05:39:16:28:0E:C6:8E:E1:B0:97:6F:9E:BD:3E:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r_oT8a4FORYoDsaO4bCXb569Pqg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/Cuqm7VkCZOkbVonXMRIAKCCGq4E.roa
Signing time: Thu 02 Feb 2023 07:22:32 +0000
ROA not before: Thu 02 Feb 2023 07:22:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207967
IP address blocks: 77.73.128.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:11:01:70:63:6c:f5:e3:3d:02:f2:e4:c8:d2:7b:68:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=affa13f1ae053916280ec68ee1b0976f9ebd3ea8
Validity
Not Before: Feb 2 07:22:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0aeaa6ed590264e91b5689d7311200282086ab81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:b1:2a:73:af:ce:bd:df:11:39:53:7b:83:db:
f7:05:1b:1e:d3:1f:10:68:72:ca:7a:bb:91:52:84:
0e:b2:65:bd:fc:9c:de:af:48:89:bb:4c:5a:9b:01:
a0:ca:4b:24:fe:3c:12:80:e4:fa:68:f0:6b:76:c3:
b5:cf:31:67:26:86:d3:c9:96:b1:93:2c:78:1b:ad:
21:ce:eb:ed:f9:70:65:f9:29:3b:55:c9:66:70:3f:
59:8a:92:25:b6:f8:2c:81:24:8e:cc:9e:87:28:c6:
41:33:30:7a:9f:2a:e1:4b:d5:18:dd:f3:fb:e4:c0:
12:30:3a:12:44:c0:44:f1:b8:98:c7:25:20:e4:d9:
d9:82:74:6c:fe:12:20:8f:a7:23:a4:28:1b:45:8a:
dc:ea:60:f8:6f:5e:7a:54:a8:0e:f0:62:ce:56:cf:
9b:b7:ab:77:88:3c:cb:8f:82:f0:1d:52:4c:a1:22:
ce:a5:9d:72:54:fd:e5:e0:68:4a:91:28:4c:55:de:
af:50:92:92:45:95:b1:ff:e9:d6:eb:da:de:31:32:
2b:c9:20:67:c2:c1:c8:e1:86:02:42:92:e0:76:59:
6b:63:25:b6:47:5c:f7:4b:79:18:e9:9a:fc:f6:56:
83:81:34:6b:4d:8d:3b:da:9d:a1:11:8c:44:38:88:
b6:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:EA:A6:ED:59:02:64:E9:1B:56:89:D7:31:12:00:28:20:86:AB:81
X509v3 Authority Key Identifier:
keyid:AF:FA:13:F1:AE:05:39:16:28:0E:C6:8E:E1:B0:97:6F:9E:BD:3E:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r_oT8a4FORYoDsaO4bCXb569Pqg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/Cuqm7VkCZOkbVonXMRIAKCCGq4E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/r_oT8a4FORYoDsaO4bCXb569Pqg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.73.128.0/24
Signature Algorithm: sha256WithRSAEncryption
09:f1:96:e8:33:d8:ea:23:d0:27:a0:bc:c1:c2:de:24:69:d6:
b3:bd:9e:b5:cc:a6:d7:cf:21:a4:52:86:b6:e6:8a:b3:10:ab:
16:14:8a:1f:97:6e:41:c1:27:8e:81:b9:8e:22:74:3a:29:10:
50:60:67:39:5b:4e:17:e0:1f:20:2a:c3:20:31:b0:e3:23:42:
61:46:d2:1e:8e:43:31:de:b1:74:91:d0:6b:21:c7:69:d8:bf:
4e:65:4f:c9:08:ef:57:0b:eb:15:a1:a2:55:48:1a:75:c4:08:
49:88:85:0d:c5:1b:d3:ce:3d:5e:bd:75:33:fc:57:cf:31:21:
3a:e3:96:ee:3b:8a:26:11:d7:62:f1:58:b6:d7:7f:a4:96:20:
7d:84:e2:cd:74:1c:6d:61:1c:ce:9f:5a:9b:fb:0f:66:1e:f6:
f6:cd:0f:70:30:96:cd:09:54:3f:ba:f8:ae:ee:28:b7:74:a6:
ac:12:9d:2a:ff:0a:3c:b6:b1:3d:e1:33:63:23:32:32:80:d5:
a1:7a:c4:86:e5:e5:eb:62:17:72:bb:15:34:8b:3c:48:3c:6d:
48:57:fc:5d:aa:cb:31:c7:24:1a:c7:43:37:72:10:61:35:90:
45:30:fa:f7:1f:01:ad:55:7d:2e:bb:5d:a6:7d:87:4f:2a:92:
6e:d6:d5:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:36 2023 by rpki-client on console-ams.rpki-client.org