Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/be7894-0ccc-4fbd-880b-9758cb2b844e/1/tvAcamdR1oqjb93-B86JaHV3uXA.roa
File: tvAcamdR1oqjb93-B86JaHV3uXA.roa (raw, json)
Hash identifier: cpCiQMge2uQKk0LxOwAzrWlnLZ7e6CxccyCZIViEV+E=
Subject key identifier: B6:F0:1C:6A:67:51:D6:8A:A3:6F:DD:FE:07:CE:89:68:75:77:B9:70
Certificate issuer: /CN=8ad2930d1fe1dd430491fd7b831de9c61692ade4
Certificate serial: 018BE431F66377D9B3FA22FDACE36972B736
Authority key identifier: 8A:D2:93:0D:1F:E1:DD:43:04:91:FD:7B:83:1D:E9:C6:16:92:AD:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/itKTDR_h3UMEkf17gx3pxhaSreQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/be7894-0ccc-4fbd-880b-9758cb2b844e/1/tvAcamdR1oqjb93-B86JaHV3uXA.roa
Signing time: Sat 18 Nov 2023 20:49:21 +0000
ROA not before: Sat 18 Nov 2023 20:49:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216046
IP address blocks: 77.247.88.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:29:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:e4:31:f6:63:77:d9:b3:fa:22:fd:ac:e3:69:72:b7:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8ad2930d1fe1dd430491fd7b831de9c61692ade4
Validity
Not Before: Nov 18 20:49:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b6f01c6a6751d68aa36fddfe07ce89687577b970
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:fc:c2:81:b1:63:c5:12:94:f0:76:f7:fa:ca:
7e:7c:8f:ae:07:17:8f:a4:a7:d6:ef:b2:40:79:53:
bf:d8:92:a1:cd:a1:16:33:b4:b5:78:c2:ab:98:e7:
33:25:4d:11:9d:ae:84:15:02:e0:8f:6a:99:25:03:
98:f8:30:bd:b3:a0:38:b1:1f:30:36:7d:c7:91:8b:
0b:e0:3b:6a:8a:dd:dc:5a:bf:ab:8f:8b:53:0c:84:
63:eb:e5:5e:5c:2d:85:04:c2:c5:2a:b3:7c:ea:eb:
8f:0f:0c:f4:66:ab:0e:45:94:d9:21:6f:9a:0c:0f:
24:e4:3d:a1:52:f3:1b:41:11:6e:32:e7:63:a8:fc:
94:b1:2a:c9:dd:b1:2e:15:d5:c4:f6:fd:89:3c:a0:
73:5a:de:ac:48:38:3f:fa:51:5c:5d:53:f7:f9:90:
7f:6e:67:de:8e:1a:57:a3:6a:2c:64:1e:7c:1b:63:
1f:f1:2f:56:51:95:d6:be:d6:f5:b9:81:4f:4b:5e:
06:30:38:e0:fd:fd:c0:64:de:1f:b6:d6:a6:ab:d6:
31:02:2c:76:06:94:dc:35:ec:b0:f5:e7:ba:31:68:
d8:17:87:bb:ec:0b:0f:68:28:d7:0f:67:91:6b:28:
80:7e:5d:ba:64:67:ba:22:d6:df:b9:4b:27:94:25:
16:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:F0:1C:6A:67:51:D6:8A:A3:6F:DD:FE:07:CE:89:68:75:77:B9:70
X509v3 Authority Key Identifier:
keyid:8A:D2:93:0D:1F:E1:DD:43:04:91:FD:7B:83:1D:E9:C6:16:92:AD:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/itKTDR_h3UMEkf17gx3pxhaSreQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/be7894-0ccc-4fbd-880b-9758cb2b844e/1/tvAcamdR1oqjb93-B86JaHV3uXA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/be7894-0ccc-4fbd-880b-9758cb2b844e/1/itKTDR_h3UMEkf17gx3pxhaSreQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.247.88.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:d8:39:1d:9c:fb:f0:8a:a8:a5:02:39:c6:41:eb:c2:ae:60:
4e:fd:af:e7:be:00:42:47:ac:ac:15:ed:ab:7d:94:b2:8d:60:
a1:e9:a2:ce:9c:bf:01:aa:45:a6:6d:40:f9:86:8f:d9:ea:ae:
d2:cb:a4:19:4c:f7:ab:1d:9d:d4:7b:bc:35:24:73:d5:6d:b4:
1b:81:25:b6:bf:00:7f:a6:27:15:e7:e2:eb:07:83:fe:e2:61:
94:6d:e6:cb:02:0b:23:81:af:ef:c5:8a:4b:b1:1e:a4:c4:51:
06:1c:01:c7:36:32:92:ef:bf:ac:0d:dc:37:93:bf:02:6c:0c:
ac:ce:e8:31:1c:bd:80:71:9c:14:9d:6e:dd:16:8a:60:ad:4b:
98:a8:63:15:af:95:c8:16:cc:50:19:6d:62:8a:52:27:76:fd:
db:e5:64:19:15:41:c8:91:2f:02:d4:13:d9:81:a3:88:70:c3:
eb:ae:43:ff:0d:ca:30:57:4f:dd:a3:b6:9b:4d:b1:b4:27:95:
ed:64:31:6d:aa:13:ec:07:1b:0e:b8:ed:76:8b:d9:ef:26:01:
08:2b:c8:eb:a1:93:b3:a7:72:38:86:38:c0:7f:f9:04:c8:ec:
8d:cc:8c:ab:30:bd:b8:a7:1b:bc:56:6c:25:29:b9:b0:4d:ec:
bf:06:84:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:01 2024 by rpki-client on console-ams.rpki-client.org