Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/0-pucb-4yZ43YSsLK3C7Hh6DXpg.roa
File: 0-pucb-4yZ43YSsLK3C7Hh6DXpg.roa (raw, json)
Hash identifier: 8Y4WODsQqiTQgO+AAUHkBX7S1kh6EXP9FJ5KOrKESLc=
Subject key identifier: D3:EA:6E:71:BF:B8:C9:9E:37:61:2B:0B:2B:70:BB:1E:1E:83:5E:98
Certificate issuer: /CN=5124fba1e401c03e5ba1cd77ae9ee39cfd631bfb
Certificate serial: 0190A58DD607BE356BEA7491106B4C7F9471
Authority key identifier: 51:24:FB:A1:E4:01:C0:3E:5B:A1:CD:77:AE:9E:E3:9C:FD:63:1B:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/0-pucb-4yZ43YSsLK3C7Hh6DXpg.roa
Signing time: Fri 12 Jul 2024 06:07:34 +0000
ROA not before: Fri 12 Jul 2024 06:07:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 29802
IP address blocks: 77.246.220.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 30 Aug 2024 10:22:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:a5:8d:d6:07:be:35:6b:ea:74:91:10:6b:4c:7f:94:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5124fba1e401c03e5ba1cd77ae9ee39cfd631bfb
Validity
Not Before: Jul 12 06:07:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d3ea6e71bfb8c99e37612b0b2b70bb1e1e835e98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:38:41:e4:89:98:e8:2a:16:5f:05:01:5e:c3:
d3:81:e5:55:4e:1f:43:e9:7d:06:27:e9:ff:52:41:
b1:44:d0:02:8b:5c:89:43:94:25:e1:72:65:ff:d3:
1b:5f:d7:47:b5:a2:f0:2e:b6:d8:7f:af:bb:25:82:
32:60:7b:b1:f9:1a:17:40:33:e3:ea:69:3f:35:54:
5c:d2:88:63:9a:d5:e7:85:84:89:ea:bf:f0:50:c4:
21:d9:6e:11:e0:2e:fa:9e:d1:ac:44:c9:f6:d6:37:
b3:92:d6:b3:7f:32:e8:6a:bd:11:04:6e:fb:a7:c2:
57:d9:39:3e:0c:f6:77:73:e2:45:e5:57:5b:8b:6d:
6e:e8:83:5a:50:ac:1d:24:8f:4a:24:94:bf:47:40:
27:50:91:8c:fd:c6:b8:f8:7a:41:c8:65:54:2d:b0:
23:2f:12:85:0e:6e:01:fc:c5:03:42:dd:b1:39:c4:
1f:2b:d5:dc:72:7d:dc:b0:6c:83:16:1d:82:ed:e0:
ad:a3:9d:c8:ca:39:6b:21:68:24:02:54:73:99:77:
26:b1:2c:a0:3b:8b:c1:1f:94:35:a7:9a:c9:98:ba:
5d:8f:96:54:0d:43:7f:9e:fe:5e:27:76:52:fd:4c:
c4:5d:68:c7:4e:4f:da:7d:8a:eb:4e:51:c4:38:7e:
9b:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:EA:6E:71:BF:B8:C9:9E:37:61:2B:0B:2B:70:BB:1E:1E:83:5E:98
X509v3 Authority Key Identifier:
keyid:51:24:FB:A1:E4:01:C0:3E:5B:A1:CD:77:AE:9E:E3:9C:FD:63:1B:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/0-pucb-4yZ43YSsLK3C7Hh6DXpg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/UST7oeQBwD5boc13rp7jnP1jG_s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.246.220.0/24
Signature Algorithm: sha256WithRSAEncryption
65:d9:d3:85:b3:80:47:72:06:a8:aa:c6:e8:71:10:07:e9:5e:
23:c8:9b:bf:88:08:ef:11:24:39:aa:b3:0f:a1:42:f6:94:ae:
49:b1:66:f0:74:a4:6a:e7:87:bf:7f:0f:7b:16:59:68:98:f7:
e5:b7:f7:a7:89:68:f3:7f:e2:62:60:0c:ac:7a:bd:75:77:52:
04:d2:86:23:ec:2b:a9:b9:66:36:4e:23:95:3d:e2:c4:0e:ca:
27:75:62:3f:0f:dc:44:12:50:23:30:84:48:2d:4e:88:91:ac:
eb:90:35:10:bd:dd:2c:4b:7b:8e:7e:04:1c:92:77:d3:c3:d4:
f1:01:04:0d:78:a3:e2:9c:32:c8:d1:c4:94:82:77:10:3f:af:
44:17:9d:e2:e5:7a:e8:2e:c5:2d:37:4f:3e:67:b3:48:4b:b5:
8a:83:bd:e1:fd:ed:59:9b:25:1f:73:50:6a:d6:0a:dc:8e:36:
b5:1f:e8:45:0c:4f:e0:47:c0:e0:83:30:9c:f5:be:26:5b:29:
92:5c:73:44:fa:cf:9b:89:d2:30:18:72:ab:b1:97:7b:27:c2:
4b:cf:fe:6f:5d:50:04:06:e5:c3:13:c8:40:b4:f6:46:59:d3:
89:f7:c9:d7:04:23:46:ef:7a:b1:a9:13:22:97:e4:19:09:71:
f6:29:1c:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 30 13:00:13 2024 by rpki-client on console-ams.rpki-client.org