Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/be7894-0ccc-4fbd-880b-9758cb2b844e/1/OC-psPc1mNtCJKhesXIzEtTo6xI.roa
File: OC-psPc1mNtCJKhesXIzEtTo6xI.roa (raw, json)
Hash identifier: Fkxxg/iTqu20cusSmS4b/SvznGVoZyu+szeqQoE1DRg=
Subject key identifier: 38:2F:A9:B0:F7:35:98:DB:42:24:A8:5E:B1:72:33:12:D4:E8:EB:12
Certificate issuer: /CN=8ad2930d1fe1dd430491fd7b831de9c61692ade4
Certificate serial: 018CC9B8874A9CA7E397AB97182696E26D2E
Authority key identifier: 8A:D2:93:0D:1F:E1:DD:43:04:91:FD:7B:83:1D:E9:C6:16:92:AD:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/itKTDR_h3UMEkf17gx3pxhaSreQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/be7894-0ccc-4fbd-880b-9758cb2b844e/1/OC-psPc1mNtCJKhesXIzEtTo6xI.roa
Signing time: Tue 02 Jan 2024 10:29:22 +0000
ROA not before: Tue 02 Jan 2024 10:29:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216046
IP address blocks: 77.247.88.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 02 Mar 2024 20:27:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:b8:87:4a:9c:a7:e3:97:ab:97:18:26:96:e2:6d:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8ad2930d1fe1dd430491fd7b831de9c61692ade4
Validity
Not Before: Jan 2 10:29:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=382fa9b0f73598db4224a85eb1723312d4e8eb12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:f1:bc:ed:5d:89:a8:99:64:87:c8:8c:51:5d:
a0:c0:80:01:cb:5d:e2:8c:68:97:0f:a7:75:f5:20:
2b:68:ae:f5:fd:c8:cd:7a:62:d9:18:86:71:d9:21:
e7:98:09:59:9e:51:20:09:db:00:a5:4f:fc:ca:0a:
2e:3b:cf:ea:e3:85:41:b6:d3:0c:dd:de:5f:77:0d:
f6:77:55:69:3f:4f:ff:ff:82:fa:56:43:b0:60:06:
2e:12:ac:9c:b1:60:98:2b:10:5a:ba:2c:81:b1:20:
0f:09:9d:3b:f1:77:01:98:3b:20:a3:87:d9:56:eb:
6c:82:62:0a:9f:82:19:a9:c1:50:08:9d:4e:9a:c2:
ed:2c:7c:97:09:51:74:0e:f3:d8:1d:b5:be:df:c9:
23:a6:bb:f3:70:dc:07:c9:c2:4a:70:33:53:9f:be:
5c:0d:eb:45:e7:d6:31:97:7b:06:d8:26:61:ef:13:
62:1d:1e:a9:0f:e5:55:b5:4f:5f:d8:6e:6b:29:40:
18:7b:8d:cd:1e:94:41:57:4a:bb:09:ea:2e:49:4e:
07:41:1a:94:72:2e:cf:d2:e6:59:61:3b:67:e4:28:
b6:29:2b:0d:69:1a:9f:9d:31:ae:01:ee:10:65:ff:
02:12:f8:1a:33:f9:bd:14:d6:17:d8:d1:26:4f:0a:
cc:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:2F:A9:B0:F7:35:98:DB:42:24:A8:5E:B1:72:33:12:D4:E8:EB:12
X509v3 Authority Key Identifier:
keyid:8A:D2:93:0D:1F:E1:DD:43:04:91:FD:7B:83:1D:E9:C6:16:92:AD:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/itKTDR_h3UMEkf17gx3pxhaSreQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/be7894-0ccc-4fbd-880b-9758cb2b844e/1/OC-psPc1mNtCJKhesXIzEtTo6xI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/be7894-0ccc-4fbd-880b-9758cb2b844e/1/itKTDR_h3UMEkf17gx3pxhaSreQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.247.88.0/24
Signature Algorithm: sha256WithRSAEncryption
06:62:04:20:56:25:64:46:45:1c:4e:fd:42:0d:bd:0f:93:34:
ea:ac:b1:8e:8f:65:ae:80:04:b1:3f:22:10:84:20:aa:d3:f3:
cb:c3:5f:7a:ae:b8:27:01:8a:0f:5e:9b:ff:c1:5f:a0:ba:c6:
e8:d2:6b:20:a5:a8:29:bb:25:48:87:68:b4:5b:8b:0b:35:58:
aa:af:a9:7d:c2:36:e6:85:3a:31:97:42:84:0b:9c:c5:ee:85:
d3:97:d1:fb:87:84:56:f8:5f:8f:f3:68:a7:d7:91:51:29:b3:
64:76:91:71:d8:dd:c0:2e:d7:1d:69:c9:0c:9e:6d:27:3c:84:
e4:7c:e5:9f:30:a3:00:b3:ef:aa:46:f9:86:29:c1:26:13:ee:
d1:29:79:22:37:73:5d:28:d3:3f:73:60:4d:9f:9f:d3:7c:c0:
ab:72:8e:b0:c0:c5:68:b2:6d:66:68:50:98:c0:80:35:9e:ca:
85:4f:c7:ec:3a:70:fd:68:2f:f4:d1:2f:af:eb:aa:34:10:19:
4b:73:75:e1:88:63:87:9c:df:a5:fa:28:9a:91:b3:44:f3:53:
60:f7:95:c8:5a:ca:d7:4d:ce:b1:c7:5f:09:f8:de:3b:f0:a8:
72:66:bd:20:63:19:7f:4e:ad:30:79:80:62:29:77:c7:f4:42:
7c:cc:14:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:26 2024 by rpki-client on console-fra.rpki-client.org