Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/298898-7454-402b-81e9-ee1bd344f015/1/RKgv1wO6bI39zzLY9OatHvNgcwA.roa
File: RKgv1wO6bI39zzLY9OatHvNgcwA.roa (raw, json)
Hash identifier: vk5UbRyNo1CehPaDBKelqNMj3XKWv+VyBUS2qlbSMTA=
Subject key identifier: 44:A8:2F:D7:03:BA:6C:8D:FD:CF:32:D8:F4:E6:AD:1E:F3:60:73:00
Certificate issuer: /CN=1e8d205c798ed78f3c44ca0c8f2852e8bec8eaa2
Certificate serial: 018764ED8C32C1241514343689A72F7C0224
Authority key identifier: 1E:8D:20:5C:79:8E:D7:8F:3C:44:CA:0C:8F:28:52:E8:BE:C8:EA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ho0gXHmO1488RMoMjyhS6L7I6qI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/298898-7454-402b-81e9-ee1bd344f015/1/RKgv1wO6bI39zzLY9OatHvNgcwA.roa
Signing time: Sun 09 Apr 2023 07:31:42 +0000
ROA not before: Sun 09 Apr 2023 07:31:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35753
IP address blocks: 77.220.116.0/22 maxlen: 24
2a00:5400:e050::/48 maxlen: 48
2a00:5400:e051::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 13 Apr 2023 03:02:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:64:ed:8c:32:c1:24:15:14:34:36:89:a7:2f:7c:02:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e8d205c798ed78f3c44ca0c8f2852e8bec8eaa2
Validity
Not Before: Apr 9 07:31:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=44a82fd703ba6c8dfdcf32d8f4e6ad1ef3607300
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:8f:7c:2d:3c:87:dc:a5:58:8b:49:ca:1e:72:
1b:e8:5a:75:2a:96:78:d9:6d:21:22:6a:54:7a:54:
45:40:d8:a2:1c:a9:64:09:07:4c:17:91:c6:9b:6a:
4b:91:60:11:52:5c:12:a7:33:e5:11:c2:b2:58:6f:
3b:bd:60:76:67:8b:e7:5e:30:01:ff:50:63:07:52:
1a:93:dc:88:ae:89:82:e9:8c:81:63:b8:1e:2a:78:
75:0a:3b:c1:1e:70:2a:a8:b0:5a:d8:2a:0a:94:37:
3c:5a:9e:00:45:26:66:fc:df:93:01:e5:08:96:fe:
b8:da:b8:b8:49:6e:45:7d:5a:b3:31:f3:f7:f7:c7:
06:79:26:a6:99:72:f4:22:94:b8:2b:ae:58:84:ac:
11:33:05:fe:0a:88:32:39:cc:23:71:4e:3d:4a:07:
44:2c:64:92:66:3d:aa:71:dd:ea:c2:4b:06:f0:42:
46:fb:80:50:fe:67:90:c3:4b:8d:dc:ed:89:45:66:
97:3d:15:87:3c:07:34:fe:56:fd:2b:cb:f5:48:74:
45:87:c5:a6:7c:eb:25:32:1a:1a:e9:69:3f:11:75:
e5:66:b7:b8:f1:4e:97:0f:e7:00:85:a1:9f:30:3f:
ba:2f:ad:78:d1:3b:1d:ba:56:66:67:f4:89:b5:93:
f1:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:A8:2F:D7:03:BA:6C:8D:FD:CF:32:D8:F4:E6:AD:1E:F3:60:73:00
X509v3 Authority Key Identifier:
keyid:1E:8D:20:5C:79:8E:D7:8F:3C:44:CA:0C:8F:28:52:E8:BE:C8:EA:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ho0gXHmO1488RMoMjyhS6L7I6qI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/298898-7454-402b-81e9-ee1bd344f015/1/RKgv1wO6bI39zzLY9OatHvNgcwA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/298898-7454-402b-81e9-ee1bd344f015/1/Ho0gXHmO1488RMoMjyhS6L7I6qI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.220.116.0/22
IPv6:
2a00:5400:e050::/47
Signature Algorithm: sha256WithRSAEncryption
a2:2a:af:e1:e9:90:53:c4:88:f4:a7:0b:47:4d:a8:93:ca:ed:
13:90:7a:f4:1d:34:ba:70:4f:76:ad:b6:d8:23:c8:6f:09:2e:
4c:fd:28:d1:1b:03:d1:e5:9b:d2:84:48:5f:9a:e9:83:6b:dd:
6e:e2:69:de:9d:1d:7f:d1:11:49:70:af:17:17:91:1e:ec:6a:
c5:52:2a:43:d4:28:8b:2d:06:71:41:86:42:5a:25:f6:30:e4:
30:6d:06:49:83:a7:7c:a9:91:75:07:83:72:5f:06:ce:d2:e1:
fc:67:33:0f:b6:49:09:7b:22:93:66:48:07:82:bb:5c:80:0c:
82:0c:07:2c:37:5b:0a:03:c9:7d:f0:93:14:72:51:9c:c2:d1:
44:64:7e:dc:04:4a:0e:f2:19:7d:92:f6:c7:a4:6d:92:b0:67:
f9:61:7b:db:39:2a:7c:d3:df:e8:cc:ea:5e:3b:ce:bd:0e:32:
26:49:be:6e:ee:11:ef:d8:43:02:d8:32:dc:1b:54:d3:1f:3d:
6a:cc:0c:e1:4c:13:f4:f3:53:10:f9:93:a0:fc:a3:f7:c6:8b:
86:e7:5b:7d:ca:89:a8:88:a0:64:84:b6:1e:df:7b:d8:1b:73:
a5:fd:78:70:90:2a:8d:99:de:88:31:e3:2d:dc:33:a4:92:5f:
8b:e0:64:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:39 2024 by rpki-client on console-fra.rpki-client.org