Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/ycD8Lp5FNeYwRUZLXBGno0UIkh4.roa
File: ycD8Lp5FNeYwRUZLXBGno0UIkh4.roa (raw, json)
Hash identifier: g/DMnXnpJVS9/mCYPY9js0khxOoH+garkgjjh22FNZE=
Subject key identifier: C9:C0:FC:2E:9E:45:35:E6:30:45:46:4B:5C:11:A7:A3:45:08:92:1E
Certificate issuer: /CN=affa13f1ae053916280ec68ee1b0976f9ebd3ea8
Certificate serial: 018625B9A918E3FFA1F6E1E5C0F87B159F1F
Authority key identifier: AF:FA:13:F1:AE:05:39:16:28:0E:C6:8E:E1:B0:97:6F:9E:BD:3E:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r_oT8a4FORYoDsaO4bCXb569Pqg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/ycD8Lp5FNeYwRUZLXBGno0UIkh4.roa
Signing time: Mon 06 Feb 2023 07:56:09 +0000
ROA not before: Mon 06 Feb 2023 07:56:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207967
IP address blocks: 77.73.132.0/24 maxlen: 24
77.73.128.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 15 Feb 2023 05:33:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:25:b9:a9:18:e3:ff:a1:f6:e1:e5:c0:f8:7b:15:9f:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=affa13f1ae053916280ec68ee1b0976f9ebd3ea8
Validity
Not Before: Feb 6 07:56:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c9c0fc2e9e4535e63045464b5c11a7a34508921e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:3b:6f:7a:21:3f:6e:db:86:5e:38:7f:af:49:
6e:72:33:33:af:0d:c6:d9:ec:a5:8f:bd:23:60:19:
c6:99:1a:a6:05:8e:74:84:db:69:67:ed:cf:7e:93:
86:b7:a1:c9:9c:20:62:c3:87:da:50:4f:43:ed:8f:
cd:fc:de:2b:5f:ed:d0:d4:1f:ab:1f:14:99:0f:f9:
5e:b6:45:23:c3:97:91:1e:c4:15:b8:a2:40:24:9c:
37:dd:a8:d6:d6:6c:d1:06:ce:c4:ec:f3:2b:68:4c:
c1:00:a7:88:d8:c9:e9:e5:06:9c:bb:0d:49:30:11:
c8:00:6f:4b:6d:73:7d:cd:78:55:26:f7:3f:02:17:
cd:89:c0:13:80:01:f7:0d:5a:61:2d:00:7b:a3:cb:
74:fc:7a:e7:23:48:6c:7a:f5:43:4a:70:7d:e4:c0:
a3:2c:2b:57:7d:bd:9d:83:69:57:c6:01:26:f1:bc:
60:9c:69:9a:82:b5:a6:d2:80:a2:ff:ef:02:98:ba:
1d:89:b9:cd:b1:96:09:28:04:fa:df:64:4d:de:7b:
8b:dc:3d:87:fd:5f:4c:05:a1:15:5d:4e:fb:82:79:
7a:3d:e6:f8:6f:bd:df:f5:06:41:8e:4a:49:46:7f:
48:68:84:65:6b:c3:b9:aa:3b:c6:ca:10:2a:91:5f:
11:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:C0:FC:2E:9E:45:35:E6:30:45:46:4B:5C:11:A7:A3:45:08:92:1E
X509v3 Authority Key Identifier:
keyid:AF:FA:13:F1:AE:05:39:16:28:0E:C6:8E:E1:B0:97:6F:9E:BD:3E:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r_oT8a4FORYoDsaO4bCXb569Pqg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/ycD8Lp5FNeYwRUZLXBGno0UIkh4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/r_oT8a4FORYoDsaO4bCXb569Pqg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.73.128.0/24
77.73.132.0/24
Signature Algorithm: sha256WithRSAEncryption
83:b7:f0:56:e9:cb:b8:99:08:95:a8:ee:66:76:ee:31:39:15:
ab:8d:56:0a:49:2b:e3:36:51:e1:fe:3c:ee:93:0b:d8:9b:bc:
9e:84:3a:f1:31:b8:81:e7:2c:83:8d:a9:76:ca:b3:45:7e:c5:
b9:a8:31:f5:4a:69:58:89:3a:45:1f:55:84:17:ea:7c:58:e2:
01:41:3b:de:68:7f:12:12:1a:78:10:c8:df:4e:01:82:54:99:
77:32:d5:78:63:b7:8e:ab:b5:e6:56:aa:8a:e9:85:b0:58:92:
02:a9:3c:2a:59:ef:98:dd:3e:f9:5e:79:ba:04:51:46:18:ca:
d6:83:54:fa:79:68:67:50:d8:6c:15:63:51:5c:c1:93:17:b7:
bf:78:a8:26:ca:ae:72:5e:35:6b:3d:22:48:d0:f2:d6:c7:c2:
97:3c:71:63:38:97:2c:74:da:1d:5e:7c:fc:41:00:32:47:f0:
3d:d9:e8:4a:1d:a0:bf:16:c9:8c:76:21:3b:67:30:64:14:24:
a1:b1:d0:4d:64:47:d3:eb:6d:d7:e7:c3:d4:d8:14:76:08:25:
17:09:56:63:e8:9b:fb:60:1c:d6:c5:5f:61:e4:38:a2:ea:3e:
68:47:3f:55:6d:fd:cb:b6:4d:06:53:65:18:10:67:c3:b0:de:
4f:9e:39:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:18 2024 by rpki-client on console-ams.rpki-client.org