Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/aHCsBlM35Uwh2uGc4zisU1JsnKw.roa
File: aHCsBlM35Uwh2uGc4zisU1JsnKw.roa (raw, json)
Hash identifier: Aa9a16jdH09BSgxSeKQrRiSHk8ajPctQTGXOd6186G4=
Subject key identifier: 68:70:AC:06:53:37:E5:4C:21:DA:E1:9C:E3:38:AC:53:52:6C:9C:AC
Certificate issuer: /CN=5124fba1e401c03e5ba1cd77ae9ee39cfd631bfb
Certificate serial: 018DE4651D690D861C078834D4BE67BEACD8
Authority key identifier: 51:24:FB:A1:E4:01:C0:3E:5B:A1:CD:77:AE:9E:E3:9C:FD:63:1B:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/aHCsBlM35Uwh2uGc4zisU1JsnKw.roa
Signing time: Mon 26 Feb 2024 07:50:48 +0000
ROA not before: Mon 26 Feb 2024 07:50:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 77.246.220.0/24 maxlen: 24
88.80.136.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 26 Feb 2024 15:03:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:e4:65:1d:69:0d:86:1c:07:88:34:d4:be:67:be:ac:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5124fba1e401c03e5ba1cd77ae9ee39cfd631bfb
Validity
Not Before: Feb 26 07:50:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6870ac065337e54c21dae19ce338ac53526c9cac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:27:7a:13:73:0b:a1:b8:d3:13:a4:cc:ee:05:
8c:9c:d5:2f:93:5e:22:ac:22:38:ff:64:a7:47:0b:
e9:b6:6e:8b:e9:e9:ee:f6:28:6f:80:f6:50:06:6e:
78:92:b1:61:96:1c:f4:c1:3b:2d:15:88:b7:5e:ed:
af:61:25:bb:95:2f:b1:26:ce:ca:26:2d:5c:b5:22:
e9:21:d3:ac:87:93:86:39:b9:48:0d:79:cb:47:19:
14:0e:f6:c8:d5:48:9b:6a:38:9a:fd:14:59:cc:ac:
0d:40:b5:3e:f2:ee:fc:ff:ce:5d:64:71:f8:dc:0c:
26:90:0b:b5:a9:80:77:cf:b4:5e:3f:6d:9d:11:57:
55:6e:d5:98:da:f9:92:1a:12:fe:80:aa:16:87:84:
59:28:14:cb:cd:39:6b:7b:7c:d5:a4:cd:ae:a0:eb:
14:b9:bd:8b:8f:12:0f:cc:f7:f6:30:8a:17:23:73:
ef:b6:a9:d4:cf:9b:86:d1:19:16:80:8d:9b:a1:5b:
79:50:21:04:dc:dc:a3:93:3f:57:65:fe:22:56:75:
3b:a7:76:80:23:b3:86:5b:b2:11:e9:75:7b:f5:59:
fb:63:ef:25:51:af:5e:da:8e:53:be:c5:8c:14:4b:
af:f8:d4:04:2c:1d:1d:ee:c0:35:c7:ef:c0:78:52:
db:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:70:AC:06:53:37:E5:4C:21:DA:E1:9C:E3:38:AC:53:52:6C:9C:AC
X509v3 Authority Key Identifier:
keyid:51:24:FB:A1:E4:01:C0:3E:5B:A1:CD:77:AE:9E:E3:9C:FD:63:1B:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/aHCsBlM35Uwh2uGc4zisU1JsnKw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/UST7oeQBwD5boc13rp7jnP1jG_s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.246.220.0/24
88.80.136.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:d1:6c:4b:e4:f7:82:5e:e5:62:eb:15:f4:d6:d0:46:81:4c:
e5:ad:2b:aa:6f:28:d5:a9:0b:79:e0:6c:a6:6e:7e:5b:d6:aa:
30:39:63:82:47:e8:aa:ca:72:29:71:90:c1:25:ff:65:90:89:
e0:e1:36:b9:ea:7d:04:29:91:61:86:1c:eb:dc:50:bd:e8:68:
01:be:11:a6:82:30:82:08:95:c0:27:e3:e9:1a:49:61:b1:a6:
ba:8f:69:cf:9a:ee:75:e3:cd:20:6b:0f:6c:65:4b:48:d4:f8:
62:65:46:1c:5b:72:1a:67:6a:0d:bd:10:5a:ae:8b:59:79:46:
1b:1e:69:ff:e1:ee:cc:3e:25:ab:21:c5:7b:5c:d0:bb:3a:9d:
24:84:9c:43:25:82:ff:d8:db:93:f9:ab:93:f7:4d:85:ce:d2:
4c:2a:5e:1c:f6:9a:cd:68:05:8d:79:6b:fa:3f:70:95:01:d4:
84:5b:d5:d8:5d:bd:91:91:e7:2d:4b:44:ac:2f:b7:3e:af:e4:
ad:21:e9:46:58:52:4a:8a:4f:e0:ba:39:0c:ad:2a:f9:95:80:
f5:c0:73:79:06:e7:0a:9e:ad:87:fc:14:f7:3d:5b:e6:3c:68:
08:af:08:c0:e4:cb:11:29:02:46:7b:b6:47:10:5e:e7:13:eb:
66:29:82:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:13 2024 by rpki-client on console-fra.rpki-client.org