Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/3bfc31-dc32-4541-8460-c927b8c2c7c4/1/d8HYPEJZ4vLkMs_Kwr3mRi9nfuk.roa
File: d8HYPEJZ4vLkMs_Kwr3mRi9nfuk.roa (raw, json)
Hash identifier: gy4SaxFxkVO4ng2mrtEiYdb8lwC4rr73AVU/2qK7V2s=
Subject key identifier: 77:C1:D8:3C:42:59:E2:F2:E4:32:CF:CA:C2:BD:E6:46:2F:67:7E:E9
Certificate issuer: /CN=c398060f1bf22f0999cb071b1b42696dbc43e10c
Certificate serial: 0185723A353E6A4417207872FD718D100C89
Authority key identifier: C3:98:06:0F:1B:F2:2F:09:99:CB:07:1B:1B:42:69:6D:BC:43:E1:0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w5gGDxvyLwmZywcbG0JpbbxD4Qw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/3bfc31-dc32-4541-8460-c927b8c2c7c4/1/d8HYPEJZ4vLkMs_Kwr3mRi9nfuk.roa
Signing time: Mon 02 Jan 2023 11:24:55 +0000
ROA not before: Mon 02 Jan 2023 11:24:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57626
IP address blocks: 77.87.56.0/21 maxlen: 24
91.123.240.0/20 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:3a:35:3e:6a:44:17:20:78:72:fd:71:8d:10:0c:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c398060f1bf22f0999cb071b1b42696dbc43e10c
Validity
Not Before: Jan 2 11:24:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=77c1d83c4259e2f2e432cfcac2bde6462f677ee9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:2b:7d:4f:cd:b8:a3:45:c6:f5:e6:14:42:9b:
bd:09:f8:a4:0e:9f:e8:bf:b9:5d:51:a0:31:3f:c5:
70:11:7e:f1:09:b7:c9:c3:7a:0d:47:00:c2:9c:a8:
9b:e1:dd:d3:04:bc:fe:7f:7a:86:26:6a:55:5d:9b:
79:61:0d:13:48:16:f6:35:3b:a1:6c:10:5f:42:a1:
ab:69:e0:49:c1:87:47:ba:fc:e2:27:fb:4d:4e:37:
c3:42:33:da:c9:de:0d:2c:1e:18:c6:a3:fb:e4:07:
08:9b:23:1d:dc:91:51:2b:a5:31:5c:56:d0:1a:fa:
57:89:dd:c7:dd:f5:9c:2f:71:31:d0:16:81:ef:dd:
56:fc:0b:e2:64:13:4c:25:a5:47:75:cd:b5:03:bc:
bf:19:16:c7:3b:7f:2b:c6:20:30:00:48:2d:5f:76:
40:67:af:f7:32:21:98:3b:b0:90:60:7d:6d:92:e0:
3a:4d:e9:86:cf:a0:1a:a8:f9:9d:14:c9:d6:aa:66:
96:9d:e0:58:57:18:49:84:f9:92:a3:84:f8:89:46:
dc:27:61:3f:72:87:58:92:65:23:d4:25:49:f7:e7:
38:47:a6:ce:2b:75:ca:4b:0b:ba:4b:77:c6:e4:60:
5d:d1:89:b9:e1:f7:a0:1e:13:dc:83:3d:f8:7e:70:
7b:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:C1:D8:3C:42:59:E2:F2:E4:32:CF:CA:C2:BD:E6:46:2F:67:7E:E9
X509v3 Authority Key Identifier:
keyid:C3:98:06:0F:1B:F2:2F:09:99:CB:07:1B:1B:42:69:6D:BC:43:E1:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w5gGDxvyLwmZywcbG0JpbbxD4Qw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/3bfc31-dc32-4541-8460-c927b8c2c7c4/1/d8HYPEJZ4vLkMs_Kwr3mRi9nfuk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/3bfc31-dc32-4541-8460-c927b8c2c7c4/1/w5gGDxvyLwmZywcbG0JpbbxD4Qw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.87.56.0/21
91.123.240.0/20
Signature Algorithm: sha256WithRSAEncryption
55:67:c9:d8:5e:0e:5e:af:01:c2:ed:63:3c:30:e7:c6:f3:6e:
81:86:2d:ba:0d:06:33:c8:0e:fc:10:a3:55:e4:8c:2e:9c:53:
3f:7a:54:e1:c1:99:86:c3:f1:c8:fb:36:e7:f7:02:eb:36:80:
be:f9:94:a1:52:a8:47:4f:f0:bf:7d:da:e4:82:33:bd:71:d5:
75:ac:57:c4:94:0b:f2:b8:ea:7f:9a:f0:99:33:a1:d7:36:59:
d0:b6:af:d2:a9:8b:90:98:dc:4c:60:75:2b:8f:ff:98:ac:aa:
c0:e6:fb:b3:a1:d7:45:cd:d7:88:90:ff:b9:e0:7a:92:26:1b:
ea:68:02:34:78:48:9a:42:d9:5d:34:53:ca:62:6f:2e:e1:28:
7c:d1:a4:e5:3c:21:ca:3f:90:ea:d9:10:2c:7b:49:10:88:65:
fa:3c:95:75:57:c7:f5:6e:21:67:1d:56:ab:bc:bd:0e:a6:99:
11:57:af:2e:2e:38:a1:5b:c1:fb:ba:b8:e0:5f:c5:f0:75:8f:
c3:4e:8a:10:88:5b:23:4c:28:24:d4:7a:ee:f5:13:a3:5b:26:
e1:90:ff:05:ad:7a:4d:0a:16:97:70:f4:8b:74:70:d1:99:ae:
d2:0a:7e:9b:8f:a6:b0:11:41:69:8a:4d:a5:fd:3f:7d:67:05:
4a:e6:80:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:51 2024 by rpki-client on console-ams.rpki-client.org