Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/jI6kkqW1qqtdrIXfU8DjQaVkfIg.roa
File: jI6kkqW1qqtdrIXfU8DjQaVkfIg.roa (raw, json)
Hash identifier: 1iJ+agLcrWBquH6KgSIlc13hL7Cww7H+K2GA8KXGxlU=
Subject key identifier: 8C:8E:A4:92:A5:B5:AA:AB:5D:AC:85:DF:53:C0:E3:41:A5:64:7C:88
Certificate issuer: /CN=5124fba1e401c03e5ba1cd77ae9ee39cfd631bfb
Certificate serial: 018ECD07DED7A26B0C61E323BF60EB77D361
Authority key identifier: 51:24:FB:A1:E4:01:C0:3E:5B:A1:CD:77:AE:9E:E3:9C:FD:63:1B:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/jI6kkqW1qqtdrIXfU8DjQaVkfIg.roa
Signing time: Thu 11 Apr 2024 12:00:28 +0000
ROA not before: Thu 11 Apr 2024 12:00:28 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 29802
IP address blocks: 77.246.220.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 12 Apr 2024 15:45:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:cd:07:de:d7:a2:6b:0c:61:e3:23:bf:60:eb:77:d3:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5124fba1e401c03e5ba1cd77ae9ee39cfd631bfb
Validity
Not Before: Apr 11 12:00:28 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8c8ea492a5b5aaab5dac85df53c0e341a5647c88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:d2:bd:c0:c7:5d:27:6e:2a:9d:ca:3e:ad:64:
a3:51:8a:a1:e1:be:e2:98:40:4d:22:94:ba:bb:c8:
8a:20:10:c0:bf:b9:3d:70:ad:9e:92:2e:9f:be:d9:
0f:00:76:c3:57:f1:c7:dd:45:0d:f4:76:13:5d:28:
d1:96:5c:56:02:ba:e5:6a:20:d2:0a:94:b4:da:02:
50:e7:ab:54:c6:d6:d4:7a:37:b0:46:da:a4:d0:54:
d9:96:49:44:5e:80:10:4b:31:f5:26:ea:39:d4:9a:
49:78:83:0f:94:86:af:cb:4c:84:c3:cf:ec:8b:79:
63:db:e8:e1:cd:25:cf:4a:2e:4d:2e:f9:3e:32:76:
00:6b:d2:38:6a:6d:d6:76:9e:b0:bf:1b:50:df:1d:
22:3b:a7:75:f1:31:bf:b6:5b:c7:35:4d:e9:39:f4:
ab:e4:dd:1b:ad:19:94:6e:48:c3:76:99:41:1a:ec:
49:a0:a6:34:86:f3:92:6d:79:c1:5b:46:b4:4f:1b:
65:44:06:02:87:1b:33:3e:9d:23:fa:f5:32:13:78:
de:1a:48:43:74:9a:24:db:c0:64:ff:4d:31:c5:29:
e0:1f:b1:a4:2d:02:f5:ca:1a:46:b4:c8:5f:e2:67:
15:97:d9:80:12:6f:36:9a:b1:f6:6d:c1:41:40:61:
a5:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:8E:A4:92:A5:B5:AA:AB:5D:AC:85:DF:53:C0:E3:41:A5:64:7C:88
X509v3 Authority Key Identifier:
keyid:51:24:FB:A1:E4:01:C0:3E:5B:A1:CD:77:AE:9E:E3:9C:FD:63:1B:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/jI6kkqW1qqtdrIXfU8DjQaVkfIg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/UST7oeQBwD5boc13rp7jnP1jG_s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.246.220.0/24
Signature Algorithm: sha256WithRSAEncryption
12:65:32:03:b3:d0:60:4b:f3:68:f1:fa:e4:e1:d2:97:25:1a:
93:7c:a9:db:47:4b:e9:ec:81:d9:8a:50:15:73:74:a9:1f:08:
c3:29:70:7c:1d:16:5e:1b:30:1c:3a:2b:f8:69:c9:c5:40:44:
0c:d7:41:62:ea:27:3b:9d:d1:f8:fb:dd:a2:06:63:a8:de:11:
a8:63:13:30:96:21:44:31:b9:d2:59:ff:66:b0:6b:a7:5e:4a:
ee:34:3b:17:5d:f9:ae:f8:94:d0:7b:86:ae:26:e3:47:e3:dc:
5a:53:19:dd:9e:ff:65:72:2e:6b:c5:01:dc:87:6b:e0:27:2a:
68:d1:af:88:ba:93:ac:07:d2:24:49:03:68:92:cf:98:da:4f:
72:a4:bc:50:0c:fa:04:1e:97:2b:94:d3:33:73:c3:f3:1d:1d:
2e:ad:e0:69:d6:8f:50:e0:c4:81:3f:de:f9:e8:5a:65:17:6d:
9a:26:64:c3:81:7e:4b:65:52:4d:ab:df:e0:e9:75:39:fb:76:
93:c1:52:a7:04:c6:3e:29:c9:26:1e:4a:4f:5f:a9:1d:e4:04:
58:15:6a:31:11:30:f0:99:94:0b:a7:26:17:a2:1d:02:e0:af:
32:2e:1b:64:ec:38:dd:c6:d1:f2:33:78:b0:c5:e4:c3:0a:a2:
ae:36:08:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 12 18:36:08 2024 by rpki-client on console-fra.rpki-client.org