Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/aZKrON2snQDQWsfMlsvFwGamv50.roa
File: aZKrON2snQDQWsfMlsvFwGamv50.roa (raw, json)
Hash identifier: Le2p0Ejyp6wRT9Pt0Xaf6A7dQpxw/GFNOjCHmRjctcc=
Subject key identifier: 69:92:AB:38:DD:AC:9D:00:D0:5A:C7:CC:96:CB:C5:C0:66:A6:BF:9D
Certificate issuer: /CN=5124fba1e401c03e5ba1cd77ae9ee39cfd631bfb
Certificate serial: 018B9049C70E0CE5B6C51EEE263121B74D23
Authority key identifier: 51:24:FB:A1:E4:01:C0:3E:5B:A1:CD:77:AE:9E:E3:9C:FD:63:1B:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/aZKrON2snQDQWsfMlsvFwGamv50.roa
Signing time: Thu 02 Nov 2023 13:47:16 +0000
ROA not before: Thu 02 Nov 2023 13:47:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 88.80.134.0/23 maxlen: 24
77.246.222.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 22 Nov 2023 18:57:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:90:49:c7:0e:0c:e5:b6:c5:1e:ee:26:31:21:b7:4d:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5124fba1e401c03e5ba1cd77ae9ee39cfd631bfb
Validity
Not Before: Nov 2 13:47:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6992ab38ddac9d00d05ac7cc96cbc5c066a6bf9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:08:f2:b8:ff:6c:62:10:72:b2:34:de:06:d6:
a9:c5:68:ae:5b:a4:73:8a:64:db:e8:21:cd:71:33:
66:ad:15:36:5e:e8:17:24:8a:fc:bb:90:eb:20:2e:
76:ea:76:0d:59:ac:fd:d2:b5:65:14:de:cb:13:1e:
22:fa:29:fe:eb:a8:5b:9f:1e:d8:9f:63:c1:80:8f:
1c:6e:47:8f:1d:0b:76:d8:21:fd:2f:f5:7f:e2:bc:
41:08:ad:ab:a9:d5:e3:0f:12:17:4e:af:3c:2a:f0:
5c:96:a3:01:60:a7:f8:e4:09:b3:70:34:e4:08:77:
05:fc:d2:66:38:ac:bd:85:05:f6:fc:3b:44:c0:f8:
8b:cc:f6:70:37:eb:8f:28:cb:25:82:e2:02:1c:78:
62:fe:59:34:e0:48:30:60:86:c9:3b:3a:48:b9:51:
c1:b7:cf:39:ea:a2:c5:ac:cb:d1:6a:73:01:3b:a3:
36:95:06:12:4d:f2:38:95:93:a1:f0:97:bb:16:56:
7c:4d:02:b1:c1:54:4e:8c:db:4b:82:a9:60:08:03:
24:b5:aa:fb:5e:bf:da:b5:df:60:03:88:20:6a:c7:
8f:05:2d:aa:85:da:31:3d:22:a9:73:9a:6c:58:72:
0f:f2:f1:44:1f:a4:a1:19:12:d7:1c:2c:df:e9:84:
53:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:92:AB:38:DD:AC:9D:00:D0:5A:C7:CC:96:CB:C5:C0:66:A6:BF:9D
X509v3 Authority Key Identifier:
keyid:51:24:FB:A1:E4:01:C0:3E:5B:A1:CD:77:AE:9E:E3:9C:FD:63:1B:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/aZKrON2snQDQWsfMlsvFwGamv50.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/UST7oeQBwD5boc13rp7jnP1jG_s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.246.222.0/24
88.80.134.0/23
Signature Algorithm: sha256WithRSAEncryption
6a:d0:53:ff:c8:4f:39:dc:a4:47:21:29:28:cc:ce:ff:e4:91:
be:a8:fb:d3:bc:37:e2:4b:7a:19:85:5b:37:50:3a:ce:68:12:
98:53:8b:25:9f:d2:ae:3f:68:ba:43:e3:28:cf:50:80:19:61:
5f:3e:94:9a:1a:fa:ea:39:fb:f3:b0:43:33:6b:82:93:e5:60:
5c:54:b0:58:58:92:04:dd:49:00:ee:54:92:9c:cb:a4:b7:c2:
2e:2b:19:12:2c:4e:c1:47:c4:c0:09:46:fd:3e:2b:82:a7:53:
f5:d9:c3:2a:c9:d8:87:85:90:d4:d6:46:d9:01:94:b3:f2:f7:
84:41:0f:34:50:0c:e8:1b:a9:0c:16:ff:07:81:0e:88:d1:9c:
c5:81:9b:05:e8:27:84:5b:ea:16:47:eb:68:6b:83:10:48:08:
fe:a9:f3:92:0a:32:12:13:cb:08:33:d8:46:c0:fa:66:1f:73:
f2:ed:0e:47:8c:ab:00:a0:b5:26:91:5d:f5:a0:eb:b7:27:d4:
40:24:13:8d:22:89:8e:86:ab:9a:af:d0:de:27:d2:53:d7:df:
6d:d3:8c:5e:be:cf:54:bf:47:44:9c:d8:2b:d8:ac:6f:cf:a9:
09:5f:21:b7:02:96:f1:8e:42:53:52:77:db:a8:bb:78:7f:78:
51:42:9f:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:20 2024 by rpki-client on console-ams.rpki-client.org