Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/LeYqONss0l8NxW9TkICzKVODwis.roa
File: LeYqONss0l8NxW9TkICzKVODwis.roa (raw, json)
Hash identifier: 5zGueVem6eI/FueXMJdKlDj4qzxr0IO4cb5FbiUBJvs=
Subject key identifier: 2D:E6:2A:38:DB:2C:D2:5F:0D:C5:6F:53:90:80:B3:29:53:83:C2:2B
Certificate issuer: /CN=5124fba1e401c03e5ba1cd77ae9ee39cfd631bfb
Certificate serial: 018B49CCBB5FF153548E0122AC780CC030DE
Authority key identifier: 51:24:FB:A1:E4:01:C0:3E:5B:A1:CD:77:AE:9E:E3:9C:FD:63:1B:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/LeYqONss0l8NxW9TkICzKVODwis.roa
Signing time: Thu 19 Oct 2023 21:17:15 +0000
ROA not before: Thu 19 Oct 2023 21:17:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60447
IP address blocks: 77.246.208.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:49:cc:bb:5f:f1:53:54:8e:01:22:ac:78:0c:c0:30:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5124fba1e401c03e5ba1cd77ae9ee39cfd631bfb
Validity
Not Before: Oct 19 21:17:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2de62a38db2cd25f0dc56f539080b3295383c22b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:0e:07:26:41:df:e4:d7:42:4b:97:04:a7:69:
41:f9:4b:71:83:47:f3:d3:79:ae:14:26:13:c7:b0:
8d:91:11:19:5d:3d:f9:8d:9d:a5:4d:1c:1f:7f:57:
fc:bb:1a:e5:1e:98:62:24:c7:e2:e2:8d:3d:9f:cf:
55:17:b7:d6:69:04:5a:73:cb:85:99:c4:9c:5b:ee:
c2:7d:da:15:92:4b:4a:fe:c1:e5:62:51:1e:c6:c5:
40:6a:2b:cf:d2:5b:f5:d4:c5:b1:02:e1:60:e6:7c:
8e:6c:5e:d6:eb:8c:32:15:36:23:2e:4d:27:62:43:
cd:88:74:30:14:16:a5:0a:52:89:c2:ce:7b:e0:9a:
d0:77:cd:4e:e2:ec:88:95:6b:b0:17:59:b5:b1:99:
03:54:c0:a9:97:2d:d2:d6:aa:e9:1d:65:dd:27:cf:
b0:fa:24:89:66:43:6e:0d:0d:43:b6:98:93:07:85:
78:12:c6:75:a6:46:89:fb:dc:71:f4:72:0f:1c:7d:
d2:46:0a:4f:3f:e0:63:d4:70:e9:0e:26:2a:c1:56:
dd:fc:ee:59:46:31:00:71:00:b3:4b:67:de:28:55:
3b:8d:3b:d2:76:fc:f3:46:de:f2:08:b9:b4:88:c2:
7b:66:d7:80:23:39:b4:06:c5:8e:36:58:27:1d:01:
41:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:E6:2A:38:DB:2C:D2:5F:0D:C5:6F:53:90:80:B3:29:53:83:C2:2B
X509v3 Authority Key Identifier:
keyid:51:24:FB:A1:E4:01:C0:3E:5B:A1:CD:77:AE:9E:E3:9C:FD:63:1B:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/LeYqONss0l8NxW9TkICzKVODwis.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/UST7oeQBwD5boc13rp7jnP1jG_s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.246.208.0/23
Signature Algorithm: sha256WithRSAEncryption
70:80:1f:39:6a:51:17:9b:f4:b7:c7:23:81:fc:7b:a6:49:bf:
e1:aa:a0:0d:64:8a:a8:89:5c:d3:7d:91:54:dd:74:de:3a:ad:
e1:71:3b:3f:ad:9b:3d:3a:c2:4a:a2:32:69:88:1e:0b:bd:49:
55:dc:34:72:ce:d0:83:cf:0d:fe:cf:fa:05:b5:a5:33:99:a9:
21:b0:0a:57:d8:6d:30:a1:8c:93:08:38:5b:4c:49:33:d3:ce:
99:ee:af:1f:27:3a:3a:df:b1:e2:93:51:9f:11:aa:a1:10:32:
34:a6:68:d8:a2:c1:da:75:a1:58:f2:52:f6:e4:e3:c1:54:d1:
2e:d1:88:de:89:e5:88:07:b3:23:b3:34:64:04:a7:9f:ae:c0:
74:a3:51:56:e0:4f:e8:4e:17:15:45:03:e9:74:76:5a:e6:89:
16:06:de:3a:6c:22:aa:25:77:04:90:45:6b:94:a3:30:9a:f8:
2f:d4:a3:df:95:6c:8a:4f:6b:bf:53:99:2e:68:ac:a7:fa:06:
4c:b3:6a:f5:21:e8:b0:15:3b:2a:c9:2a:57:42:3c:a1:ec:b3:
cd:35:1f:00:b0:21:90:a1:3e:51:bb:d1:d8:04:b4:09:60:85:
4f:66:ab:36:af:88:70:da:16:ad:91:bb:35:e4:38:e9:c3:ac:
3c:87:3a:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 09:01:46 2024 by rpki-client on console-ams.rpki-client.org