Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/KIhvZkWsnhaHCGliOK4xy9nvdgU.roa
File: KIhvZkWsnhaHCGliOK4xy9nvdgU.roa (raw, json)
Hash identifier: dqTyY9kuFzzaubnN495B/PrQvBzlBxr49oWov3Rb8+8=
Subject key identifier: 28:88:6F:66:45:AC:9E:16:87:08:69:62:38:AE:31:CB:D9:EF:76:05
Certificate issuer: /CN=5124fba1e401c03e5ba1cd77ae9ee39cfd631bfb
Certificate serial: 018C2EFE37D88A79E26500D50AA4B85C11D0
Authority key identifier: 51:24:FB:A1:E4:01:C0:3E:5B:A1:CD:77:AE:9E:E3:9C:FD:63:1B:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/KIhvZkWsnhaHCGliOK4xy9nvdgU.roa
Signing time: Sun 03 Dec 2023 09:24:21 +0000
ROA not before: Sun 03 Dec 2023 09:24:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 77.246.223.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:2e:fe:37:d8:8a:79:e2:65:00:d5:0a:a4:b8:5c:11:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5124fba1e401c03e5ba1cd77ae9ee39cfd631bfb
Validity
Not Before: Dec 3 09:24:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=28886f6645ac9e168708696238ae31cbd9ef7605
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:3d:d8:fd:98:54:5c:7d:ae:b7:01:ad:79:28:
b6:30:1a:67:cf:ce:dc:f8:a5:3c:14:9d:45:67:39:
a9:f2:4a:88:55:2d:c9:a5:e7:00:98:e6:07:22:af:
68:60:a9:56:6c:fe:12:f4:15:0e:cc:6d:1b:bc:bf:
a5:b4:05:37:37:97:6e:8c:08:a1:16:12:e4:e1:1b:
37:66:66:50:a1:95:8a:4c:28:ef:54:0e:b6:60:03:
38:bb:b0:4b:be:46:c4:dc:da:00:ca:5d:4c:cf:bc:
90:de:7f:64:c2:3c:e0:e3:c2:58:44:76:b0:da:35:
5a:49:e5:0b:cc:8d:7f:f0:16:26:ba:c8:6c:ce:4b:
29:b9:e3:26:67:45:9d:94:af:c2:d9:3c:1e:d5:fd:
8d:73:8e:36:cb:df:5b:16:45:4e:0d:a9:d9:1d:2e:
88:2d:a8:00:29:6c:d7:c1:03:20:21:d5:da:7e:a5:
f1:21:5e:62:1c:4c:60:46:58:77:61:50:54:9c:ce:
7d:61:b0:05:d6:f3:6e:80:11:87:25:0e:be:9e:bb:
d6:27:ff:87:34:08:31:9a:d2:26:bf:df:9e:82:bc:
55:59:c2:5f:29:47:3f:b6:9c:4b:f8:ac:1f:fd:f1:
1b:2c:00:42:8d:39:a4:7d:5f:19:25:57:0a:9d:ee:
2d:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:88:6F:66:45:AC:9E:16:87:08:69:62:38:AE:31:CB:D9:EF:76:05
X509v3 Authority Key Identifier:
keyid:51:24:FB:A1:E4:01:C0:3E:5B:A1:CD:77:AE:9E:E3:9C:FD:63:1B:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/KIhvZkWsnhaHCGliOK4xy9nvdgU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/UST7oeQBwD5boc13rp7jnP1jG_s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.246.223.0/24
Signature Algorithm: sha256WithRSAEncryption
75:a6:83:37:05:f1:ae:3f:2a:17:9b:d0:b7:e9:ff:c9:30:c4:
df:79:e2:b8:16:91:82:d5:c5:58:bb:d6:97:71:bb:b7:4a:26:
a1:51:bb:c7:49:6f:06:e6:73:0d:41:9e:90:84:17:c6:4d:a7:
08:0c:1b:16:c4:d5:44:3c:ef:3a:35:ba:68:ba:31:04:e3:91:
aa:db:3d:b7:ae:d5:61:3b:f8:4c:7f:d8:e6:70:30:f9:6d:c4:
7d:15:98:06:1e:48:e6:df:f7:22:77:68:39:10:29:31:ce:5e:
2d:87:e8:f9:04:98:68:f0:b4:14:a5:8b:5d:c1:48:c2:5b:71:
f6:a0:30:b1:08:9f:22:cf:49:3a:c8:82:d2:e3:84:5d:8f:8f:
1b:0b:99:65:f5:7c:9e:f9:ed:e7:50:a7:7c:85:5e:97:cc:6f:
3b:4e:50:40:18:c1:e1:b1:7b:a5:f2:98:07:d3:8e:69:46:7f:
d9:e3:1c:91:5a:41:d7:ab:d8:87:b9:4b:cc:da:7b:b1:41:55:
22:f9:64:ff:78:46:c7:8c:48:de:25:1b:98:25:11:3c:16:56:
59:3e:91:f4:7c:14:ea:6f:22:42:5c:da:61:e3:b5:d1:29:43:
db:7a:ee:89:52:ca:6b:21:38:5b:07:54:a3:b2:f9:d7:0c:2e:
79:28:6b:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Dec 14 14:52:16 2023 by rpki-client on console-fra.rpki-client.org