Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/IodbylII8Y05W2CZeqgfQghESQw.roa
File: IodbylII8Y05W2CZeqgfQghESQw.roa (raw, json)
Hash identifier: hFVum3FWDsil9J1vaeOPB8JlUMG/LQcWIpDz/xwKsFY=
Subject key identifier: 22:87:5B:CA:52:08:F1:8D:39:5B:60:99:7A:A8:1F:42:08:44:49:0C
Certificate issuer: /CN=5124fba1e401c03e5ba1cd77ae9ee39cfd631bfb
Certificate serial: 018CF338954B871AB23BE889932C8B2B7A7F
Authority key identifier: 51:24:FB:A1:E4:01:C0:3E:5B:A1:CD:77:AE:9E:E3:9C:FD:63:1B:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/IodbylII8Y05W2CZeqgfQghESQw.roa
Signing time: Wed 10 Jan 2024 11:53:40 +0000
ROA not before: Wed 10 Jan 2024 11:53:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 29802
IP address blocks: 77.246.211.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 29 Mar 2024 07:31:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:f3:38:95:4b:87:1a:b2:3b:e8:89:93:2c:8b:2b:7a:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5124fba1e401c03e5ba1cd77ae9ee39cfd631bfb
Validity
Not Before: Jan 10 11:53:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=22875bca5208f18d395b60997aa81f420844490c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:0d:4e:d6:fb:95:7d:62:af:ec:d0:1c:f5:a3:
ca:97:a5:a0:46:a7:00:4e:ab:57:d5:44:5f:c1:78:
d4:22:61:46:76:f2:36:4e:76:f9:00:77:dd:f4:23:
61:bf:4a:f6:2a:fa:9c:8e:97:cd:38:78:2a:38:f1:
7f:9b:4a:ec:d9:00:f6:09:75:6d:20:90:e9:18:3d:
9b:1e:85:f9:a7:80:aa:40:1b:d7:38:dc:03:fa:a1:
c1:52:61:6a:0d:37:35:69:63:56:5c:93:3f:69:23:
21:74:50:92:87:38:99:3e:28:e6:21:4b:75:8b:ff:
bc:4c:7e:59:00:ee:44:5e:07:b3:00:70:5c:14:6a:
5a:6b:af:87:1b:d7:67:13:85:bf:60:c2:f8:3e:54:
2e:53:fa:18:eb:97:fa:b5:35:12:31:69:b0:b6:4d:
d6:9d:26:76:63:34:b5:f1:76:ab:ad:66:7c:5e:4b:
c9:33:6b:26:49:c6:f2:67:49:60:35:06:d3:9e:5d:
81:8a:c4:97:ab:4d:00:b6:7c:47:97:bc:77:9e:a3:
83:6a:96:65:ce:1e:60:21:d2:ca:11:13:f7:b1:d0:
53:ff:ad:25:ad:4a:92:09:62:85:e9:d6:bb:ba:53:
6f:24:e4:81:d2:7e:8d:89:e9:fc:fd:79:9e:1c:8e:
d1:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:87:5B:CA:52:08:F1:8D:39:5B:60:99:7A:A8:1F:42:08:44:49:0C
X509v3 Authority Key Identifier:
keyid:51:24:FB:A1:E4:01:C0:3E:5B:A1:CD:77:AE:9E:E3:9C:FD:63:1B:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/IodbylII8Y05W2CZeqgfQghESQw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/UST7oeQBwD5boc13rp7jnP1jG_s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.246.211.0/24
Signature Algorithm: sha256WithRSAEncryption
27:59:ff:2a:7e:bf:d1:9f:1c:07:fd:4a:cd:e8:47:e4:99:9c:
11:e8:4c:68:ee:52:ab:f2:a2:15:3f:07:d4:5f:d9:19:46:b5:
4a:89:09:e2:57:02:59:dd:3c:25:fd:d9:e9:f4:b0:59:20:b8:
51:16:65:2f:dd:2d:45:27:89:e7:3e:1a:54:b3:81:74:0f:5c:
e5:6c:18:14:e3:48:42:41:2f:d3:bd:94:98:0e:7f:bb:4d:c9:
99:d6:48:af:dc:b4:76:72:ae:a6:a1:8d:a3:cf:cc:df:ac:a0:
13:40:57:2c:82:75:f5:6a:26:09:c7:60:a6:b9:d6:87:ea:1a:
2c:f7:4f:e8:7f:fd:cf:90:f2:2d:7a:77:70:d2:d2:cf:11:36:
b9:e9:0c:9e:36:33:5e:00:b3:e0:c1:4d:5e:85:7c:95:ea:f9:
97:df:6f:5f:8c:5f:c1:20:bf:a1:4e:b3:b7:b4:74:0f:ed:4d:
f3:69:e2:73:c4:c3:31:68:5d:dd:3a:e1:ff:23:08:34:e7:11:
96:b8:cd:27:9e:51:40:85:d9:13:6d:a0:9f:bc:37:91:e4:5e:
2c:22:6f:51:4a:4f:22:08:05:21:30:32:e1:4b:16:d3:39:c9:
c0:54:42:27:99:8d:b7:6c:82:1f:4f:b5:a2:7f:34:1e:04:4b:
ed:50:e4:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:13 2024 by rpki-client on console-fra.rpki-client.org