Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/gQkvgJoSrtnxZvHWktioOo9eACc.roa
File: gQkvgJoSrtnxZvHWktioOo9eACc.roa (raw, json)
Hash identifier: h91gXsShEIbB4NpKXU0xNto5iL3RRXmUCxpsbiA89ng=
Subject key identifier: 81:09:2F:80:9A:12:AE:D9:F1:66:F1:D6:92:D8:A8:3A:8F:5E:00:27
Certificate issuer: /CN=5124fba1e401c03e5ba1cd77ae9ee39cfd631bfb
Certificate serial: 018B5B3EAE29C675FF60C72C7B719D6D0A03
Authority key identifier: 51:24:FB:A1:E4:01:C0:3E:5B:A1:CD:77:AE:9E:E3:9C:FD:63:1B:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/gQkvgJoSrtnxZvHWktioOo9eACc.roa
Signing time: Mon 23 Oct 2023 06:35:16 +0000
ROA not before: Mon 23 Oct 2023 06:35:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60949
IP address blocks: 77.246.221.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:32:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:5b:3e:ae:29:c6:75:ff:60:c7:2c:7b:71:9d:6d:0a:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5124fba1e401c03e5ba1cd77ae9ee39cfd631bfb
Validity
Not Before: Oct 23 06:35:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=81092f809a12aed9f166f1d692d8a83a8f5e0027
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:af:c4:45:0b:e4:39:13:79:40:4c:66:af:c0:
68:07:85:3e:24:a8:3d:c2:6f:d0:df:32:08:b7:cd:
be:ed:ff:19:d3:16:af:e5:0b:31:c0:ab:4f:2d:c1:
d2:ed:73:8c:46:c3:7b:c8:bb:6c:d6:18:d6:4a:49:
7e:fb:e4:17:6b:6a:f1:7e:b3:0f:e7:23:6a:c4:86:
38:4e:3e:6b:44:dc:da:6f:78:41:7e:2d:a4:5c:93:
7e:8d:a2:c7:8a:de:17:38:37:7c:e3:dc:9f:84:30:
d3:b7:8c:bb:97:29:e0:47:e7:22:67:e2:00:43:45:
95:5d:dd:7e:c8:25:8d:9f:0f:51:67:6c:22:10:1d:
cb:80:d6:80:28:3e:6f:eb:1d:d9:5f:76:35:f5:41:
dd:b5:a9:19:5d:9c:f2:38:54:b1:1d:e4:5f:bc:fc:
d1:b4:27:ba:0f:79:ab:5a:09:74:d0:97:8e:f9:7d:
81:7d:29:f4:13:0c:c5:d8:9e:b9:de:86:6a:b0:82:
d7:dd:9d:81:41:ce:43:f5:8e:65:a0:d0:6d:0f:2e:
10:69:d9:11:2f:f6:d4:0a:da:4f:62:ea:91:f4:71:
5c:4f:e4:3c:98:9d:74:bb:b5:f4:6b:3c:4d:a2:3f:
83:3b:9f:10:d8:c6:d7:9b:93:7b:73:f7:01:e5:66:
95:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:09:2F:80:9A:12:AE:D9:F1:66:F1:D6:92:D8:A8:3A:8F:5E:00:27
X509v3 Authority Key Identifier:
keyid:51:24:FB:A1:E4:01:C0:3E:5B:A1:CD:77:AE:9E:E3:9C:FD:63:1B:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/gQkvgJoSrtnxZvHWktioOo9eACc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/UST7oeQBwD5boc13rp7jnP1jG_s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.246.221.0/24
Signature Algorithm: sha256WithRSAEncryption
37:91:03:11:c6:80:64:0f:d7:b2:85:a9:de:bc:ce:a5:47:b5:
47:1c:f4:ee:24:7e:0d:d8:49:5a:77:df:bb:99:3a:79:1c:f2:
e3:23:0c:a8:45:e9:92:4f:da:96:35:3d:c7:af:e7:84:b9:ed:
9c:1c:44:51:d7:e7:dc:ce:0a:8d:ba:be:8b:6c:8b:5e:9b:3e:
46:14:00:57:78:fe:b0:15:43:55:22:76:e4:8a:25:21:e4:21:
e0:bd:15:9e:4f:35:e6:48:b3:9e:ec:3e:45:f2:ce:a5:db:8a:
2a:af:0b:8e:6c:ee:f4:7b:67:d8:34:c8:6d:2c:bb:3b:0d:25:
5e:f1:89:56:11:e8:2e:3a:df:a3:29:e7:95:cc:20:2e:be:96:
84:20:14:9c:59:2f:82:bb:b8:52:8e:7f:a6:15:4c:8e:4e:1b:
ae:af:1c:ac:3b:cf:92:94:46:56:a6:ad:c0:91:d5:a7:27:6c:
26:05:1f:14:b7:8a:52:32:6a:5d:b9:ad:a3:75:87:49:2f:ec:
b2:dd:8a:8b:12:d9:9c:4e:90:53:ac:b5:a9:60:a3:7d:e4:4e:
52:87:37:70:22:06:69:64:7a:59:f4:71:4e:7b:1f:84:34:fc:
15:e8:19:3b:28:d0:be:43:2e:6f:3b:8c:5c:de:be:0c:94:06:
c5:95:29:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:13 2024 by rpki-client on console-fra.rpki-client.org