Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/soxEJSHJvOxLDiL-9ZUaLYzEXbk.roa
File: soxEJSHJvOxLDiL-9ZUaLYzEXbk.roa (raw, json)
Hash identifier: LmT2W9c2O89buCtvvE+Q6oGR1dPjUn1dK299QvjG9vU=
Subject key identifier: B2:8C:44:25:21:C9:BC:EC:4B:0E:22:FE:F5:95:1A:2D:8C:C4:5D:B9
Certificate issuer: /CN=affa13f1ae053916280ec68ee1b0976f9ebd3ea8
Certificate serial: 018CC6B83CBB2769B1170970D8D4F8308CBC
Authority key identifier: AF:FA:13:F1:AE:05:39:16:28:0E:C6:8E:E1:B0:97:6F:9E:BD:3E:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r_oT8a4FORYoDsaO4bCXb569Pqg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/soxEJSHJvOxLDiL-9ZUaLYzEXbk.roa
Signing time: Mon 01 Jan 2024 20:30:12 +0000
ROA not before: Mon 01 Jan 2024 20:30:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207713
IP address blocks: 77.73.134.0/24 maxlen: 24
77.73.133.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 03 May 2024 05:47:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b8:3c:bb:27:69:b1:17:09:70:d8:d4:f8:30:8c:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=affa13f1ae053916280ec68ee1b0976f9ebd3ea8
Validity
Not Before: Jan 1 20:30:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b28c442521c9bcec4b0e22fef5951a2d8cc45db9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:80:47:ba:4a:e1:ed:1f:1e:2e:37:7f:fa:44:
c4:93:26:db:9c:3f:e3:81:52:78:f1:5a:a9:d8:5e:
10:87:68:a2:e7:b6:4b:06:e2:e4:bc:e9:eb:ce:a7:
22:08:98:fc:55:60:a0:3f:07:ef:88:53:f4:92:24:
ca:9a:92:b5:08:c4:25:b6:1e:ad:77:c8:c5:22:d7:
a7:ba:19:ae:c2:44:d0:98:b3:21:f8:3f:f3:64:c5:
50:de:83:00:ca:0c:36:4b:fb:c3:7b:dd:07:32:05:
aa:f8:e9:a3:0d:82:fc:cd:b1:28:3d:a7:59:ab:b7:
1b:2e:1a:54:dc:22:0d:f1:ae:1a:f5:db:54:b8:04:
16:b6:ff:bd:54:e1:02:8d:cd:bf:c7:2b:71:0a:66:
e5:8d:db:9c:b7:5e:d4:ea:c8:3b:7e:77:84:13:bf:
d5:e4:cc:b7:3a:94:7f:f8:45:19:0c:68:eb:0e:db:
8e:46:60:16:4d:cb:6d:e0:e8:84:78:a2:6b:69:37:
c9:ad:79:66:11:5c:b5:98:ee:c0:67:0e:38:e1:1a:
1a:56:9a:c2:5f:df:c7:57:55:4f:03:6b:51:cb:f5:
c0:de:e7:98:0f:b7:ff:7b:09:56:f2:bd:f6:d2:d0:
7a:db:f9:66:b4:98:71:1b:ed:a5:be:13:26:67:4b:
0d:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:8C:44:25:21:C9:BC:EC:4B:0E:22:FE:F5:95:1A:2D:8C:C4:5D:B9
X509v3 Authority Key Identifier:
keyid:AF:FA:13:F1:AE:05:39:16:28:0E:C6:8E:E1:B0:97:6F:9E:BD:3E:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r_oT8a4FORYoDsaO4bCXb569Pqg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/soxEJSHJvOxLDiL-9ZUaLYzEXbk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/r_oT8a4FORYoDsaO4bCXb569Pqg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.73.133.0-77.73.134.255
Signature Algorithm: sha256WithRSAEncryption
46:19:3a:f8:c9:d2:a3:85:a5:09:a2:96:29:cb:02:17:e1:69:
57:0e:e2:ca:43:7d:ce:be:7f:dd:b2:bc:f9:b9:19:1a:73:dc:
1f:d4:51:48:6f:24:94:ef:da:e1:97:bd:4c:f7:1e:cd:7a:c9:
c9:af:05:ca:32:f2:b1:e1:7c:38:af:16:7f:2d:be:5a:05:26:
45:60:64:9d:9a:48:a5:28:aa:0f:4e:1e:7e:14:ab:4e:d0:b3:
33:71:ac:08:84:b1:e4:e1:24:8d:ae:4d:34:53:84:e4:9b:93:
01:02:1c:49:1e:37:5b:96:b2:1d:b0:ad:af:02:c4:f1:c6:aa:
87:ee:e2:9a:3e:55:ce:a2:0f:6a:07:7d:29:b3:3e:e2:f7:2c:
0f:b4:b3:21:ea:e0:c8:9c:41:d0:29:19:4b:22:f0:62:3c:f5:
47:d7:1b:d8:cc:47:21:58:cc:0f:28:75:09:fa:a5:9e:d1:5b:
11:2c:9a:db:eb:99:7b:e0:45:35:02:7c:55:9e:83:bf:25:f3:
5f:b0:d9:c9:77:04:ed:16:bf:18:1a:eb:83:5f:53:2e:44:22:
a2:52:12:17:46:44:97:bf:22:46:8f:92:19:a8:4e:68:ab:ac:
77:d8:67:f6:c8:42:af:7b:db:e9:5a:7b:cd:fa:7b:de:b6:2b:
c0:da:47:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:18 2024 by rpki-client on console-ams.rpki-client.org