Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/kqhh6BG6KH653mXKxDWiuKgJ7Ss.roa
File: kqhh6BG6KH653mXKxDWiuKgJ7Ss.roa (raw, json)
Hash identifier: oV0K00zywqGwDU6MA0/CmXTIVGInj5FBnTqz4AtuPr8=
Subject key identifier: 92:A8:61:E8:11:BA:28:7E:B9:DE:65:CA:C4:35:A2:B8:A8:09:ED:2B
Certificate issuer: /CN=5124fba1e401c03e5ba1cd77ae9ee39cfd631bfb
Certificate serial: 018B390FEB588FD164D576E8F7E42FEEAA88
Authority key identifier: 51:24:FB:A1:E4:01:C0:3E:5B:A1:CD:77:AE:9E:E3:9C:FD:63:1B:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/kqhh6BG6KH653mXKxDWiuKgJ7Ss.roa
Signing time: Mon 16 Oct 2023 15:17:06 +0000
ROA not before: Mon 16 Oct 2023 15:17:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44901
IP address blocks: 77.246.220.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 15 Nov 2023 21:58:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:39:0f:eb:58:8f:d1:64:d5:76:e8:f7:e4:2f:ee:aa:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5124fba1e401c03e5ba1cd77ae9ee39cfd631bfb
Validity
Not Before: Oct 16 15:17:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=92a861e811ba287eb9de65cac435a2b8a809ed2b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:ac:17:a6:d9:4e:25:ea:e5:c7:10:88:7b:2b:
db:b6:ba:e2:d3:8f:76:9e:88:4a:72:71:88:46:dc:
41:68:82:fc:db:2d:24:e3:27:89:ef:9d:03:a9:36:
b5:83:10:14:21:80:8f:42:8f:72:64:cf:ec:ad:5a:
f8:ab:09:c2:c8:5e:74:78:35:a7:89:15:79:ce:55:
c6:05:d9:11:68:e9:97:c6:02:43:4e:c5:6d:53:0d:
a4:68:3e:fb:04:f9:df:bc:d3:11:52:14:46:b0:a1:
22:3f:8f:69:dc:4f:84:d0:40:2d:e0:7e:e6:ae:44:
a9:ea:9e:f0:08:e3:a7:08:a1:e9:55:7b:08:78:a0:
b7:d6:c5:4a:6f:0c:8b:28:17:07:c7:37:09:94:95:
d9:de:29:54:41:22:39:6b:cd:f1:4e:fa:e1:3d:c5:
b5:ca:3c:8d:3e:21:7f:81:77:63:4e:78:57:1b:3a:
8f:e4:15:42:27:30:ae:1c:51:b7:3c:af:bf:41:16:
e2:ce:a8:87:ca:83:df:bc:12:e4:c2:98:0c:c9:6f:
ab:3e:ce:2f:79:23:1b:82:72:8b:4d:50:ec:f3:16:
25:e8:c2:93:51:d8:be:7b:d2:ad:83:0e:bf:cf:52:
3f:fd:e8:86:2a:34:17:47:14:3d:dd:0b:cf:e1:bc:
72:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:A8:61:E8:11:BA:28:7E:B9:DE:65:CA:C4:35:A2:B8:A8:09:ED:2B
X509v3 Authority Key Identifier:
keyid:51:24:FB:A1:E4:01:C0:3E:5B:A1:CD:77:AE:9E:E3:9C:FD:63:1B:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/kqhh6BG6KH653mXKxDWiuKgJ7Ss.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/UST7oeQBwD5boc13rp7jnP1jG_s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.246.220.0/24
Signature Algorithm: sha256WithRSAEncryption
41:5c:1c:91:e7:a0:67:cf:42:7e:ca:93:93:73:fd:c5:bd:4f:
60:6b:e5:15:d8:16:ba:61:fb:d8:c6:2f:75:a2:81:c1:b1:04:
68:65:47:40:3e:15:6a:4a:ac:93:d8:3b:82:0e:74:81:d3:e6:
56:cc:26:b3:21:55:df:2d:41:9b:c5:bd:63:b6:87:aa:5c:cc:
75:a9:f2:64:a6:cc:4e:74:97:8d:82:13:2f:e4:72:29:bf:e6:
09:a7:2d:13:39:1a:9e:c2:d7:a5:c2:58:2d:6f:76:b0:0f:dd:
be:04:1b:8b:a0:19:ed:df:e4:bb:9d:8e:b3:ed:d3:6e:60:ae:
eb:d4:36:a6:c1:5d:52:f2:52:95:e6:50:f7:35:92:54:55:51:
d4:9f:f7:80:3e:ac:dd:83:b8:da:b1:7d:72:d5:65:14:9e:4a:
c7:e6:e7:8b:0f:c5:37:83:de:29:dd:60:ba:7f:98:15:ad:5d:
51:e4:59:57:be:56:fe:94:bb:32:8d:01:8a:67:b0:b6:0c:1e:
5c:b1:48:a2:19:4d:92:4a:ab:88:01:df:1f:a1:d2:5e:81:41:
3f:8d:74:b0:e4:b1:9f:74:75:58:4d:4b:e3:f0:42:94:be:01:
ba:75:2a:5a:62:e7:56:40:26:99:dc:e3:12:be:d2:61:a7:ba:
37:60:8f:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:13 2024 by rpki-client on console-fra.rpki-client.org