Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/987979-9693-45e3-85ba-ed5358b6da31/1/2K0PU5NZPhMSR6tpqim0a3hK038.roa
File: 2K0PU5NZPhMSR6tpqim0a3hK038.roa (raw, json)
Hash identifier: fkj9bQlDHflmCsGic3FXGBd8kbazuybL62CiQ10ET/g=
Subject key identifier: D8:AD:0F:53:93:59:3E:13:12:47:AB:69:AA:29:B4:6B:78:4A:D3:7F
Certificate issuer: /CN=7415fec4ae76b24e4f02991649917b99b740044a
Certificate serial: 018DB35CD4ECE6C22CA9F8A52F1614BE5A26
Authority key identifier: 74:15:FE:C4:AE:76:B2:4E:4F:02:99:16:49:91:7B:99:B7:40:04:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dBX-xK52sk5PApkWSZF7mbdABEo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/987979-9693-45e3-85ba-ed5358b6da31/1/2K0PU5NZPhMSR6tpqim0a3hK038.roa
Signing time: Fri 16 Feb 2024 19:20:21 +0000
ROA not before: Fri 16 Feb 2024 19:20:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215481
IP address blocks: 77.105.132.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 24 Mar 2024 08:07:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:b3:5c:d4:ec:e6:c2:2c:a9:f8:a5:2f:16:14:be:5a:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7415fec4ae76b24e4f02991649917b99b740044a
Validity
Not Before: Feb 16 19:20:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d8ad0f5393593e131247ab69aa29b46b784ad37f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:2d:1b:e5:4b:cd:e2:75:f3:27:f4:cb:1e:2b:
a4:b0:92:a9:06:97:73:a6:5c:8f:e7:29:81:7e:08:
6c:0b:f9:9a:7c:a6:2e:78:f9:fc:aa:35:ff:d0:4a:
30:04:69:05:ba:52:d6:90:9c:7c:08:61:63:f0:fb:
d6:21:cf:86:8b:a3:dd:e3:8c:0e:d3:8d:2d:a1:9e:
48:42:b2:e1:6a:f9:19:ea:31:08:3f:50:90:7f:86:
43:56:3b:82:85:7f:0c:34:9b:61:70:9f:91:da:09:
5c:58:25:60:be:cd:a8:cf:9c:3a:ca:02:49:4b:f3:
96:6c:d1:de:26:48:7c:bf:72:52:38:88:fe:6d:84:
25:71:ba:57:6f:49:8c:3b:6f:07:8c:0b:b7:91:92:
9c:b6:b1:e8:4d:57:a8:80:b3:1b:d9:d0:ee:5d:e7:
d4:cc:f8:a8:ef:b4:84:c1:7f:54:9d:d7:55:ad:6e:
e9:82:db:7e:9c:0d:02:8e:6b:cc:5f:45:1d:e2:07:
38:e9:c8:1e:cc:aa:cd:9a:c4:61:07:59:77:a3:d6:
cf:35:75:f1:22:69:3b:fe:ff:a5:68:29:8e:31:54:
50:d6:e2:eb:be:ce:bb:60:25:76:69:18:2e:59:be:
6d:9b:8a:98:5a:07:33:b7:20:dc:9f:56:69:fa:b2:
e0:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:AD:0F:53:93:59:3E:13:12:47:AB:69:AA:29:B4:6B:78:4A:D3:7F
X509v3 Authority Key Identifier:
keyid:74:15:FE:C4:AE:76:B2:4E:4F:02:99:16:49:91:7B:99:B7:40:04:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dBX-xK52sk5PApkWSZF7mbdABEo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/987979-9693-45e3-85ba-ed5358b6da31/1/2K0PU5NZPhMSR6tpqim0a3hK038.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/987979-9693-45e3-85ba-ed5358b6da31/1/dBX-xK52sk5PApkWSZF7mbdABEo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.105.132.0/24
Signature Algorithm: sha256WithRSAEncryption
cd:a8:01:33:7d:b4:43:d0:1c:e1:30:79:e9:d4:19:64:35:fe:
35:bb:92:16:3f:e5:cc:77:71:72:81:c8:71:99:97:44:e6:66:
c1:1a:45:e5:91:2f:ea:88:9a:de:29:7d:6f:df:25:9f:3f:99:
2c:5a:bc:4f:61:c5:33:53:54:5c:aa:f5:a1:d9:ab:79:c9:62:
7c:c6:a7:5d:f7:b2:73:40:cd:fb:90:21:e9:ab:6b:87:99:1a:
69:a5:76:02:24:11:2a:b7:44:86:55:ab:7f:87:9c:30:8d:e5:
08:af:d9:01:92:4b:63:71:48:2c:86:09:51:df:b3:7e:03:a2:
a3:15:13:2d:ef:ce:ca:bc:e8:ef:56:31:ec:c7:61:77:4e:08:
01:51:cf:f0:e4:79:8a:3c:3b:38:f3:4a:60:2e:70:fa:e7:59:
3f:17:f5:24:79:13:37:65:02:6c:b0:ba:ce:93:1b:03:41:7d:
89:63:19:a3:3a:23:42:e6:c0:93:65:1a:06:e2:d3:cd:00:f8:
8f:f5:b4:d1:3f:b7:73:f9:5f:2a:3a:4f:6a:ba:76:8a:97:91:
e6:1e:fc:b9:13:8d:e5:c0:c5:ad:18:0d:78:79:0f:d1:54:58:
a7:77:e6:ca:e0:81:8f:10:c4:a9:d5:39:bc:51:26:a4:ee:0a:
65:fd:94:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 24 11:04:45 2024 by rpki-client on console-ams.rpki-client.org