Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/XXxVCIg0Ja3XHIFji8KtTgCEedI.roa
File: XXxVCIg0Ja3XHIFji8KtTgCEedI.roa (raw, json)
Hash identifier: v6nl9LyEsDzsTYpO+oi1btU9kPFGrclwbTxChCbwlqo=
Subject key identifier: 5D:7C:55:08:88:34:25:AD:D7:1C:81:63:8B:C2:AD:4E:00:84:79:D2
Certificate issuer: /CN=affa13f1ae053916280ec68ee1b0976f9ebd3ea8
Certificate serial: 01888ACBCC81609D51D07148D44335D8121D
Authority key identifier: AF:FA:13:F1:AE:05:39:16:28:0E:C6:8E:E1:B0:97:6F:9E:BD:3E:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r_oT8a4FORYoDsaO4bCXb569Pqg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/XXxVCIg0Ja3XHIFji8KtTgCEedI.roa
Signing time: Mon 05 Jun 2023 09:03:11 +0000
ROA not before: Mon 05 Jun 2023 09:03:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207713
IP address blocks: 77.73.133.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:8a:cb:cc:81:60:9d:51:d0:71:48:d4:43:35:d8:12:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=affa13f1ae053916280ec68ee1b0976f9ebd3ea8
Validity
Not Before: Jun 5 09:03:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5d7c5508883425add71c81638bc2ad4e008479d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:12:b1:49:d8:77:45:e9:db:69:49:36:28:1c:
42:7f:f7:0f:0b:ca:22:87:5a:f1:df:21:3e:6e:e0:
71:06:1d:7d:c9:26:0d:46:e8:eb:48:06:bc:65:a9:
58:f0:59:a0:c7:2a:37:73:b5:31:ca:1e:5c:42:ef:
05:95:81:2a:6d:15:7d:4e:de:dc:79:ab:f2:02:a9:
06:b1:95:d0:b0:9a:ed:06:6a:15:55:f3:69:c0:20:
10:18:70:ef:e4:55:53:ea:9d:91:fc:12:40:d3:d6:
33:50:1e:bf:fc:62:55:32:9f:a1:5d:14:86:d1:a8:
20:ac:59:d5:53:cf:0f:d5:2d:35:47:08:e8:13:74:
b4:7e:65:37:7b:01:38:1a:74:b3:ad:dd:68:bd:e7:
76:eb:72:ac:49:3b:24:86:a0:21:4c:2a:2a:e0:23:
f0:34:b2:5b:d6:65:66:1b:aa:be:a2:4e:25:91:d8:
48:b8:e5:73:c9:fa:e7:3b:33:a0:33:b5:80:0b:f8:
5b:61:5d:54:8d:2e:44:b3:23:18:15:87:8c:f1:1f:
38:3f:8c:b0:2a:de:9f:da:a0:0c:dd:85:4f:82:3d:
30:9b:e9:59:40:5c:0c:d1:d6:d8:05:95:7a:1a:e5:
ee:02:54:5d:45:43:f8:c6:84:bc:89:41:18:54:ab:
e4:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:7C:55:08:88:34:25:AD:D7:1C:81:63:8B:C2:AD:4E:00:84:79:D2
X509v3 Authority Key Identifier:
keyid:AF:FA:13:F1:AE:05:39:16:28:0E:C6:8E:E1:B0:97:6F:9E:BD:3E:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r_oT8a4FORYoDsaO4bCXb569Pqg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/XXxVCIg0Ja3XHIFji8KtTgCEedI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/r_oT8a4FORYoDsaO4bCXb569Pqg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.73.133.0/24
Signature Algorithm: sha256WithRSAEncryption
d4:2f:c7:c6:b3:fd:16:e0:7e:04:6a:b2:f9:a4:43:5a:24:21:
d2:c4:ba:e4:3d:b3:0b:7e:e9:eb:49:10:6e:eb:50:2a:18:22:
3f:3b:90:a5:1f:77:8e:9e:6d:d5:9e:05:23:89:39:91:78:e3:
72:01:35:e2:57:d4:b0:ad:5a:e1:48:9c:21:a4:4d:ac:47:ae:
d2:c2:10:b0:60:13:05:77:81:b8:2a:8a:36:4f:b3:d1:89:64:
48:42:ef:8e:fe:3e:08:8b:15:87:a5:44:0a:f1:a6:71:98:14:
ce:6e:90:b3:00:76:22:c8:95:08:68:51:61:33:1a:56:52:e5:
b5:f5:e5:a8:0f:7c:a3:a8:40:78:a4:3f:d5:dc:08:8d:28:f3:
4b:4c:a8:fd:1f:da:23:df:22:5e:e4:6f:e3:49:9d:08:19:36:
65:8f:d1:a0:ad:ed:00:fa:4c:04:27:34:1d:7e:bc:f5:1c:0f:
f6:72:7e:4f:04:97:b3:a4:fb:53:5d:ec:fc:85:71:94:2d:69:
f5:d2:ad:1b:30:8f:cb:03:07:5f:34:29:97:27:ad:d2:04:0a:
69:62:77:25:b4:a5:4e:5d:d1:52:23:2e:8a:8c:1c:c9:fc:bf:
cb:be:a8:38:ef:c7:1b:3f:1e:b1:7b:87:40:e5:51:14:af:74:
c2:bb:b0:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:51 2023 by rpki-client on console-fra.rpki-client.org