Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/298898-7454-402b-81e9-ee1bd344f015/1/2Q0N5RhQ09INr6YJ7ReM6nZ4llY.roa
File: 2Q0N5RhQ09INr6YJ7ReM6nZ4llY.roa (raw, json)
Hash identifier: bQCO7jKvfQVXVdS5vF40qMU0fwniZnnn6ram3Xb/KFc=
Subject key identifier: D9:0D:0D:E5:18:50:D3:D2:0D:AF:A6:09:ED:17:8C:EA:76:78:96:56
Certificate issuer: /CN=1e8d205c798ed78f3c44ca0c8f2852e8bec8eaa2
Certificate serial: 0185729EBB4D0178658403932AEA71BA0533
Authority key identifier: 1E:8D:20:5C:79:8E:D7:8F:3C:44:CA:0C:8F:28:52:E8:BE:C8:EA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ho0gXHmO1488RMoMjyhS6L7I6qI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/298898-7454-402b-81e9-ee1bd344f015/1/2Q0N5RhQ09INr6YJ7ReM6nZ4llY.roa
Signing time: Mon 02 Jan 2023 13:14:43 +0000
ROA not before: Mon 02 Jan 2023 13:14:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35753
IP address blocks: 77.220.116.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:9e:bb:4d:01:78:65:84:03:93:2a:ea:71:ba:05:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e8d205c798ed78f3c44ca0c8f2852e8bec8eaa2
Validity
Not Before: Jan 2 13:14:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d90d0de51850d3d20dafa609ed178cea76789656
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:56:bd:cc:66:4b:62:16:a5:c3:d5:85:aa:d4:
8b:8e:ea:fc:20:eb:6e:3a:c2:ca:2b:34:13:6e:c4:
af:15:0b:e8:af:bc:5d:b3:06:70:c3:e5:85:df:93:
44:5a:57:d2:fa:62:94:eb:53:4a:65:d7:33:a0:92:
d9:df:6e:ce:46:86:2c:c2:42:8d:39:4e:8c:cf:66:
56:64:a5:e7:f1:89:ca:4d:3b:d7:a6:b5:cb:5f:f2:
08:e9:31:2e:55:cf:91:99:5a:1f:c7:53:ae:0b:90:
b9:6f:9d:3b:ef:32:36:98:88:76:54:da:75:82:c3:
62:26:66:31:a7:92:4b:2d:0e:cd:97:98:6b:98:b7:
34:d9:05:6d:c6:8c:ea:db:e3:82:35:5b:9c:4e:15:
42:08:36:75:6a:94:14:77:67:0c:f4:7d:6a:61:0e:
99:ca:9a:14:22:67:08:f8:aa:a1:f4:c5:f6:07:f5:
4a:9a:d8:16:e8:a2:89:51:ce:46:3c:7f:39:df:85:
42:25:0a:35:ff:c9:81:61:6a:48:a8:87:40:e1:39:
9a:cb:f8:fe:ad:af:d9:c3:e9:a9:6a:50:53:b1:28:
fb:f4:d3:ce:c2:20:25:bc:8a:45:90:04:24:30:e3:
be:44:90:3b:a8:33:86:ed:57:6a:58:27:ff:30:9d:
46:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:0D:0D:E5:18:50:D3:D2:0D:AF:A6:09:ED:17:8C:EA:76:78:96:56
X509v3 Authority Key Identifier:
keyid:1E:8D:20:5C:79:8E:D7:8F:3C:44:CA:0C:8F:28:52:E8:BE:C8:EA:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ho0gXHmO1488RMoMjyhS6L7I6qI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/298898-7454-402b-81e9-ee1bd344f015/1/2Q0N5RhQ09INr6YJ7ReM6nZ4llY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/298898-7454-402b-81e9-ee1bd344f015/1/Ho0gXHmO1488RMoMjyhS6L7I6qI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.220.116.0/22
Signature Algorithm: sha256WithRSAEncryption
d3:0f:2a:fd:d9:1c:50:63:91:8f:22:d6:58:2e:02:b0:00:6c:
a6:77:a4:e6:e9:f9:52:60:fd:1f:ce:60:2c:6a:a0:4e:f2:53:
34:bc:79:dd:79:49:78:1b:7d:29:d0:c7:64:1c:f6:c0:a8:60:
63:43:fb:d5:c8:5c:bc:27:aa:82:2e:5c:52:8e:bd:2c:b5:80:
1b:b3:3d:2d:40:64:52:19:a6:1c:08:f1:36:ef:91:16:42:93:
ae:58:93:66:55:14:0a:01:02:85:f2:2b:31:12:69:e3:83:fa:
06:f2:47:a4:a5:18:db:0a:76:b9:a4:0f:53:97:20:72:8d:a5:
31:da:45:63:8b:a9:f7:1c:9d:37:a3:44:75:98:23:b9:c0:51:
76:fa:f8:9b:b4:98:53:42:98:23:15:24:8e:67:50:cb:99:33:
77:9a:fa:11:e7:ac:60:7e:9f:14:e7:c1:5d:5c:7b:52:e4:17:
9c:11:e5:f2:ac:6f:ea:7b:6a:b0:9f:70:57:d2:68:53:dc:14:
18:cc:16:94:ad:77:41:78:ff:3f:27:7c:30:1a:2c:49:1e:87:
9c:23:a0:0c:94:1d:29:92:46:ac:b7:07:fc:31:be:b0:b4:6c:
e8:cf:67:9d:93:d8:7b:3b:b3:1b:b0:4d:e1:86:37:54:a8:ef:
e0:62:2c:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:06 2023 by rpki-client on console-ams.rpki-client.org