Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/3ShyLIgObwnPQdHRHVcUTjLcCis.roa
File: 3ShyLIgObwnPQdHRHVcUTjLcCis.roa (raw, json)
Hash identifier: FM01dWUg87aW3MpD/i9sHpq6yJn/M1jp4NXnJLNK9wU=
Subject key identifier: DD:28:72:2C:88:0E:6F:09:CF:41:D1:D1:1D:57:14:4E:32:DC:0A:2B
Certificate issuer: /CN=5124fba1e401c03e5ba1cd77ae9ee39cfd631bfb
Certificate serial: 018BC0DEEE7EFF71B292B51BB46B64CA187B
Authority key identifier: 51:24:FB:A1:E4:01:C0:3E:5B:A1:CD:77:AE:9E:E3:9C:FD:63:1B:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/3ShyLIgObwnPQdHRHVcUTjLcCis.roa
Signing time: Sun 12 Nov 2023 00:11:57 +0000
ROA not before: Sun 12 Nov 2023 00:11:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56913
IP address blocks: 77.246.211.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:32:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:c0:de:ee:7e:ff:71:b2:92:b5:1b:b4:6b:64:ca:18:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5124fba1e401c03e5ba1cd77ae9ee39cfd631bfb
Validity
Not Before: Nov 12 00:11:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dd28722c880e6f09cf41d1d11d57144e32dc0a2b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:84:2b:37:eb:29:6f:70:6c:07:8d:ae:34:3a:
11:11:3f:78:8d:f0:8a:80:fc:19:3e:3b:2b:65:4d:
ed:61:fc:02:a0:52:63:39:0a:3e:2f:1e:76:2e:f3:
df:6e:4d:17:d3:4f:a0:5e:ea:60:0a:14:d3:51:df:
40:96:03:0b:52:9a:00:ac:67:5f:aa:26:a7:5b:71:
6d:10:e4:34:6b:86:0a:9b:23:5a:8d:9a:86:ef:7f:
65:36:e1:fa:a2:18:73:34:fa:44:37:2e:ae:1a:9c:
ce:ad:95:c6:5c:e7:9b:1a:89:28:10:b7:65:f2:8c:
57:1f:85:e1:30:7c:e3:21:94:67:61:64:77:5c:c2:
75:b3:21:8e:b7:b6:d1:17:42:c5:cc:b6:b7:f5:81:
c3:40:7c:22:69:35:96:fe:9b:ab:f4:ab:ac:bf:be:
ce:3e:f5:d0:cc:85:28:ab:5f:d6:6c:ac:51:59:b5:
da:fa:4a:01:62:90:3f:95:f5:4f:71:8d:7a:14:d3:
e3:cd:27:8a:c1:db:f2:d7:d1:35:bd:a8:3b:05:6f:
de:d3:f3:35:26:a8:1a:3c:d3:cc:75:c9:b3:45:e7:
ff:7e:4f:6b:ca:9a:5b:10:41:94:86:2f:3b:4b:81:
3f:93:8b:5a:0b:53:30:7e:21:11:ca:cb:22:d8:0d:
d1:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:28:72:2C:88:0E:6F:09:CF:41:D1:D1:1D:57:14:4E:32:DC:0A:2B
X509v3 Authority Key Identifier:
keyid:51:24:FB:A1:E4:01:C0:3E:5B:A1:CD:77:AE:9E:E3:9C:FD:63:1B:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/3ShyLIgObwnPQdHRHVcUTjLcCis.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/UST7oeQBwD5boc13rp7jnP1jG_s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.246.211.0/24
Signature Algorithm: sha256WithRSAEncryption
70:f4:3a:64:0d:bb:b9:f8:ed:92:a6:fc:c7:f5:0c:4d:4f:be:
cd:0f:3a:35:1b:40:94:d3:44:ae:6d:c2:08:95:f2:93:37:87:
b4:16:64:0d:46:8c:17:1f:0e:b9:21:bf:37:31:f4:ce:0f:fa:
39:3f:94:23:47:5d:e2:61:63:cb:1f:75:bb:51:8f:ba:d5:fc:
05:fe:0f:ba:21:73:e8:63:a0:ab:6e:65:3f:04:5a:34:c0:10:
17:a0:34:ff:44:20:ac:78:9b:db:9b:07:08:96:31:f3:d2:d8:
de:a6:cc:0f:04:02:f9:8c:54:3c:45:31:95:85:d8:ec:63:bd:
24:a6:3e:bd:43:b9:66:1d:8c:77:ae:f7:5d:16:6c:49:df:e8:
0a:53:ef:4b:2c:89:17:f7:b6:23:92:3b:91:e2:d1:88:46:88:
1a:55:46:c1:60:1c:ec:ba:9a:53:5c:cb:97:95:ba:c9:00:bc:
d3:b5:5b:13:b7:c5:db:91:5d:c0:80:6d:e2:80:05:41:3b:81:
54:eb:d0:88:2d:9a:35:59:f6:3e:cd:fc:83:91:2e:f2:d8:9b:
c9:8e:a9:3f:47:18:77:c9:3e:30:e6:4d:ff:d2:0b:1b:0f:7a:
d5:a8:30:1d:5d:01:ff:8e:12:5d:09:a3:56:a6:c4:53:e9:bd:
03:c0:b7:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:13 2024 by rpki-client on console-fra.rpki-client.org