Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/df719a-492f-47cb-9212-644bd0fc7f80/1/IB0uQV-XDTsJVHg5qamC1doyFGs.roa
File: IB0uQV-XDTsJVHg5qamC1doyFGs.roa (raw, json)
Hash identifier: k6MwkyxPEEy/kefpSQQUkQa0T/mgkKbbe3uy87FxW9w=
Subject key identifier: 20:1D:2E:41:5F:97:0D:3B:09:54:78:39:A9:A9:82:D5:DA:32:14:6B
Certificate issuer: /CN=aff6f85aad101c456c1ac9a01a7192fc5788e92c
Certificate serial: 0192F8FCFA11902353C7852A93F30A16C6FE
Authority key identifier: AF:F6:F8:5A:AD:10:1C:45:6C:1A:C9:A0:1A:71:92:FC:57:88:E9:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r_b4Wq0QHEVsGsmgGnGS_FeI6Sw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/df719a-492f-47cb-9212-644bd0fc7f80/1/IB0uQV-XDTsJVHg5qamC1doyFGs.roa
Signing time: Mon 04 Nov 2024 21:03:01 +0000
ROA not before: Mon 04 Nov 2024 21:03:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 9009
IP address blocks: 77.83.223.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 21 Nov 2024 19:26:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:f8:fc:fa:11:90:23:53:c7:85:2a:93:f3:0a:16:c6:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aff6f85aad101c456c1ac9a01a7192fc5788e92c
Validity
Not Before: Nov 4 21:03:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=201d2e415f970d3b09547839a9a982d5da32146b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:45:bd:e9:79:45:ad:28:2d:4e:77:65:15:77:
1c:e7:3a:7b:de:cc:50:db:55:73:28:8b:c6:e7:24:
75:da:1f:62:78:57:d7:ab:8b:40:fa:6b:d8:79:76:
99:67:25:d2:0e:a8:e3:81:64:16:34:01:90:cc:e1:
50:ff:b1:dd:34:01:89:65:9a:f3:a5:e7:e5:c9:e9:
b4:43:af:02:64:40:8c:b4:70:48:6d:93:e6:4d:ef:
48:b6:2f:95:79:04:bb:3a:42:f9:a1:51:dc:62:35:
53:a5:dd:36:4e:e2:1e:aa:09:b2:e3:a1:80:2c:b5:
ec:0c:44:5a:c7:29:28:fe:be:54:da:39:fc:1e:8f:
f8:74:84:2e:ae:8c:da:20:9f:5f:62:5a:a1:59:83:
e1:87:f7:ef:4e:79:d6:f1:38:e9:0d:38:83:55:5b:
c9:02:f7:04:5b:52:98:8b:1f:c4:bd:45:4c:f2:8d:
ee:b4:e2:7f:a1:8d:66:61:00:e3:88:7f:54:5d:fd:
ec:1b:c2:e3:35:5c:59:9a:75:63:21:85:c1:9b:60:
66:91:a6:98:87:92:75:bc:02:80:b1:6d:8a:44:39:
9f:bb:dc:25:59:98:22:71:40:f4:4d:ea:fd:30:22:
22:87:11:21:60:7d:38:63:a7:56:f8:5e:ca:3e:1f:
c3:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:1D:2E:41:5F:97:0D:3B:09:54:78:39:A9:A9:82:D5:DA:32:14:6B
X509v3 Authority Key Identifier:
keyid:AF:F6:F8:5A:AD:10:1C:45:6C:1A:C9:A0:1A:71:92:FC:57:88:E9:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r_b4Wq0QHEVsGsmgGnGS_FeI6Sw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/df719a-492f-47cb-9212-644bd0fc7f80/1/IB0uQV-XDTsJVHg5qamC1doyFGs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/df719a-492f-47cb-9212-644bd0fc7f80/1/r_b4Wq0QHEVsGsmgGnGS_FeI6Sw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.83.223.0/24
Signature Algorithm: sha256WithRSAEncryption
01:7f:17:8a:54:37:20:42:bf:79:5e:6a:bd:21:2d:4b:93:b6:
a6:89:7b:e0:89:ca:52:c4:c0:da:f7:8d:92:be:84:d9:a0:5b:
72:bb:68:12:f6:d6:0d:7e:b9:54:f1:a5:2b:3a:e6:ee:ad:36:
82:cc:88:4d:f7:5e:06:19:6a:81:3c:0b:d7:ee:77:fa:53:ae:
cc:26:19:cf:7c:16:95:13:0a:50:b1:1b:d0:51:e3:9e:7e:34:
42:93:f5:68:a1:e2:77:0a:fa:ab:76:3d:e5:07:77:f8:e2:c8:
8e:77:f4:d2:1a:c4:4e:21:14:c9:e9:6b:6a:9f:da:81:5d:db:
85:fa:19:01:29:53:ef:e4:e0:c1:f9:35:21:a8:c3:26:34:92:
dc:af:13:20:ea:fa:04:cb:c9:f8:f9:ed:01:69:78:3d:fc:fe:
fc:69:18:4f:4e:e9:50:60:aa:cf:1e:e0:10:6d:9f:8c:48:9e:
9f:c1:8e:2b:80:e0:de:4a:9c:e6:3e:e6:c4:f7:e7:46:de:ae:
2e:78:2f:0c:1b:70:ff:44:a0:64:c2:97:52:bf:55:32:2a:d3:
47:a2:be:2a:20:a8:d0:1c:1a:8f:c7:95:33:5b:22:c4:c9:ab:
15:2c:4e:52:f8:f1:72:44:b9:d1:11:d6:86:fa:ad:c9:02:77:
c6:9f:07:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 21:15:37 2024 by rpki-client on console-fra.rpki-client.org