Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/d5wmg85p66AVpcWT5csVUpkquNQ.roa
File: d5wmg85p66AVpcWT5csVUpkquNQ.roa (raw, json)
Hash identifier: R+S5eq5OGo3MrFqh0I1k63fmap6itfJ78WS7EbJeDYc=
Subject key identifier: 77:9C:26:83:CE:69:EB:A0:15:A5:C5:93:E5:CB:15:52:99:2A:B8:D4
Certificate issuer: /CN=5124fba1e401c03e5ba1cd77ae9ee39cfd631bfb
Certificate serial: 01944A39A415CBDA27695B80ABB8C464ED68
Authority key identifier: 51:24:FB:A1:E4:01:C0:3E:5B:A1:CD:77:AE:9E:E3:9C:FD:63:1B:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/d5wmg85p66AVpcWT5csVUpkquNQ.roa
Signing time: Thu 09 Jan 2025 08:41:19 +0000
ROA not before: Thu 09 Jan 2025 08:41:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 834
IP address blocks: 77.246.220.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 09 Jan 2025 21:28:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:4a:39:a4:15:cb:da:27:69:5b:80:ab:b8:c4:64:ed:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5124fba1e401c03e5ba1cd77ae9ee39cfd631bfb
Validity
Not Before: Jan 9 08:41:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=779c2683ce69eba015a5c593e5cb1552992ab8d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:ed:93:55:9f:c5:91:db:a2:48:a0:c6:aa:1c:
fa:a7:90:c5:3f:53:8e:db:e8:1a:ad:82:2f:8b:47:
12:ad:bd:14:4b:90:a8:1b:63:88:d1:22:2e:78:66:
95:44:c2:ed:6b:db:41:aa:7a:51:fd:09:f2:91:79:
99:f8:d8:62:26:0a:61:9e:74:43:65:78:a9:b0:00:
6c:6d:00:53:a7:a1:ee:32:39:c0:4b:f2:c9:c1:bb:
7b:a4:35:c2:79:33:c6:ed:2e:55:89:76:4c:d3:14:
25:c1:45:83:d6:7f:33:98:4c:88:72:43:e3:7f:60:
c7:c8:2f:8a:8e:5e:56:71:7a:e5:67:d3:f6:a8:f6:
ee:57:af:74:25:9f:f4:86:c6:0d:2b:c6:cb:c8:27:
f4:65:b2:2d:c7:ca:d4:45:1b:41:ce:dd:25:bd:2a:
4b:bc:5c:69:1d:a9:d1:80:de:90:af:2c:cb:e9:90:
8e:3b:ed:3d:3e:45:19:39:eb:9d:25:cc:1c:55:f8:
b6:ed:81:16:8c:3c:9a:6e:4e:71:8a:07:31:27:c1:
68:46:9a:15:bd:0a:d2:5d:34:de:a5:88:e0:9f:f9:
91:e0:f1:8a:b1:6c:7e:3c:b1:95:c0:b4:a8:36:ce:
39:e7:02:d5:73:41:93:20:27:57:51:cc:5b:3f:0b:
54:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:9C:26:83:CE:69:EB:A0:15:A5:C5:93:E5:CB:15:52:99:2A:B8:D4
X509v3 Authority Key Identifier:
keyid:51:24:FB:A1:E4:01:C0:3E:5B:A1:CD:77:AE:9E:E3:9C:FD:63:1B:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/d5wmg85p66AVpcWT5csVUpkquNQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/UST7oeQBwD5boc13rp7jnP1jG_s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.246.220.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:82:40:5a:85:4b:08:0d:1e:22:4e:a4:9f:2d:e9:57:5a:a3:
c4:37:c7:7b:08:2b:ea:d1:08:17:c0:98:86:49:a7:3c:04:7c:
9c:3c:51:c3:3f:f0:5b:64:72:06:50:5d:36:9f:13:76:60:f8:
c2:c4:76:3c:52:e1:46:30:60:0b:60:ef:6b:6f:fe:00:42:51:
a8:f9:5e:6e:b9:19:38:8e:99:e9:ad:6f:78:ee:97:82:f9:b9:
46:8c:c7:78:f5:79:c9:48:85:f9:e6:af:84:68:7c:a2:a9:6a:
6a:1d:f7:c4:82:fb:8c:95:39:83:27:be:43:51:ae:2f:f1:de:
d4:df:17:04:dc:36:a9:02:24:a5:d6:df:73:ca:ff:bf:87:5c:
d4:eb:0c:db:5b:7a:8b:60:cf:37:9b:74:e2:13:74:50:44:a2:
d0:f4:52:da:3a:d5:ba:66:01:ec:14:bb:2a:c0:83:b3:e2:20:
31:34:d7:9c:7c:64:c8:90:4a:13:fc:88:7e:76:8a:6a:e0:c1:
43:19:55:29:10:99:f7:2c:4b:f5:0e:87:50:e0:ef:ca:76:59:
9c:d2:c3:1e:ef:63:e1:54:40:39:4b:dd:e4:60:d9:22:cd:7b:
70:9d:9d:21:62:b5:38:f8:f8:ce:17:28:8d:96:dd:79:75:ab:
60:12:7f:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 09:36:59 2025 by rpki-client