Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/IMOrMdy8HUNCm5Yo1LfzG8jmpkQ.roa
File: IMOrMdy8HUNCm5Yo1LfzG8jmpkQ.roa (raw, json)
Hash identifier: /HnKdnq5iWMYWiYK0Ibp/OitcK8zSfxWKr+8+xn/BKs=
Subject key identifier: 20:C3:AB:31:DC:BC:1D:43:42:9B:96:28:D4:B7:F3:1B:C8:E6:A6:44
Certificate issuer: /CN=c35eac64ea4802e6824686f7c0d201f2c85cb2aa
Certificate serial: 018BA96C2100B7A1122CC8089CE940B3ABE5
Authority key identifier: C3:5E:AC:64:EA:48:02:E6:82:46:86:F7:C0:D2:01:F2:C8:5C:B2:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w16sZOpIAuaCRob3wNIB8shcsqo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/IMOrMdy8HUNCm5Yo1LfzG8jmpkQ.roa
Signing time: Tue 07 Nov 2023 10:55:17 +0000
ROA not before: Tue 07 Nov 2023 10:55:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57912
IP address blocks: 77.76.12.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:30:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:a9:6c:21:00:b7:a1:12:2c:c8:08:9c:e9:40:b3:ab:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c35eac64ea4802e6824686f7c0d201f2c85cb2aa
Validity
Not Before: Nov 7 10:55:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=20c3ab31dcbc1d43429b9628d4b7f31bc8e6a644
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:36:fa:9a:5b:cb:2d:cd:7a:ae:1d:48:a7:0e:
bf:f7:dd:be:f3:ac:5e:80:01:8e:5f:41:d8:23:d6:
9a:40:cf:70:6f:70:f1:08:7f:bf:88:bd:45:e3:a5:
24:dc:80:a5:34:a3:e2:de:db:fb:5b:be:10:13:74:
01:47:5c:78:97:ef:5a:13:c2:eb:cb:cb:5a:28:3f:
62:cd:08:36:1f:b8:ee:8b:d3:05:4a:8e:dc:ba:1a:
fc:2a:00:fd:56:e0:be:07:fa:d0:ef:cb:0d:d4:68:
6d:fc:d6:cb:8b:66:5c:e8:bf:80:95:d3:39:7f:39:
40:67:0b:2c:0d:54:d5:1a:28:88:1f:ad:15:26:25:
2e:2e:5e:d2:ed:65:d8:5c:97:9f:7c:bd:6f:4e:c3:
c2:b9:48:34:56:e9:58:34:88:7e:19:ad:aa:7a:90:
22:7b:cc:95:06:52:18:24:14:55:65:10:f4:fc:5f:
44:34:c1:ce:02:75:2e:f2:17:0a:e1:27:9b:df:39:
cf:35:be:6f:f7:9e:86:c1:b9:0b:96:a0:cc:da:b1:
85:6d:43:0e:02:67:2d:3e:af:be:bf:26:5a:84:e3:
91:bb:90:cf:86:24:6c:91:c1:4c:06:0e:34:53:78:
e6:b9:45:2e:91:8e:7e:fa:2e:ad:5f:6d:cc:ec:fd:
e0:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:C3:AB:31:DC:BC:1D:43:42:9B:96:28:D4:B7:F3:1B:C8:E6:A6:44
X509v3 Authority Key Identifier:
keyid:C3:5E:AC:64:EA:48:02:E6:82:46:86:F7:C0:D2:01:F2:C8:5C:B2:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w16sZOpIAuaCRob3wNIB8shcsqo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/IMOrMdy8HUNCm5Yo1LfzG8jmpkQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/w16sZOpIAuaCRob3wNIB8shcsqo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.76.12.0/24
Signature Algorithm: sha256WithRSAEncryption
54:4f:44:a1:92:15:49:8f:4c:1a:4a:b6:93:75:a3:e4:09:84:
bb:d4:80:1b:fd:d4:71:cb:fa:6b:70:30:d5:a4:a6:57:ce:b2:
a2:90:f9:81:e8:fe:c2:01:bd:95:e1:41:b6:b5:1c:52:13:4d:
54:46:92:be:ac:63:61:ee:99:9f:c5:af:f0:06:32:94:ce:53:
88:cb:9d:c8:6a:53:2b:53:78:e5:80:a5:90:83:d7:5f:09:5e:
1e:55:19:01:1b:07:c0:ae:5c:c2:86:8b:bc:c3:ae:5a:b3:b9:
bd:49:86:ac:91:16:97:0e:0b:85:80:03:a4:35:ef:79:9a:da:
18:ed:83:33:3d:31:93:19:d3:e8:cf:cb:ff:c7:47:67:12:7a:
64:6e:75:e6:13:36:ed:f2:48:61:4c:1a:06:58:bf:5a:59:c4:
ad:00:2b:9e:4e:51:7d:97:79:d3:79:93:28:29:1a:6a:c3:ed:
3a:6b:ac:35:75:56:46:a0:d2:42:eb:83:e4:3b:94:2c:84:5b:
26:39:02:90:03:31:1e:6f:2b:7c:ec:ab:04:61:32:7f:ac:7e:
3c:fd:8e:3a:04:5d:db:0b:3e:03:95:bd:60:9a:08:b3:7b:96:
70:0b:85:89:76:52:56:98:8b:85:dd:99:40:41:01:e0:01:fc:
ea:06:7d:22
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYupbCEAt6ESLMgInOlAs6vlMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMzNWVhYzY0ZWE0ODAyZTY4MjQ2ODZmN2MwZDIwMWYyYzg1
Y2IyYWEwHhcNMjMxMTA3MTA1NTE3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyMGMzYWIzMWRjYmMxZDQzNDI5Yjk2MjhkNGI3ZjMxYmM4ZTZhNjQ0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAojb6mlvLLc16rh1Ipw6/992+86xe
gAGOX0HYI9aaQM9wb3DxCH+/iL1F46Uk3IClNKPi3tv7W74QE3QBR1x4l+9aE8Lr
y8taKD9izQg2H7jui9MFSo7cuhr8KgD9VuC+B/rQ78sN1Ght/NbLi2Zc6L+AldM5
fzlAZwssDVTVGiiIH60VJiUuLl7S7WXYXJeffL1vTsPCuUg0VulYNIh+Ga2qepAi
e8yVBlIYJBRVZRD0/F9ENMHOAnUu8hcK4Seb3znPNb5v956GwbkLlqDM2rGFbUMO
AmctPq++vyZahOORu5DPhiRskcFMBg40U3jmuUUukY5++i6tX23M7P3gCwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCDDqzHcvB1DQpuWKNS38xvI5qZEMB8GA1UdIwQY
MBaAFMNerGTqSALmgkaG98DSAfLIXLKqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdzE2c1pPcElBdWFDUm9iM3dOSUI4c2hjc3FvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9jY2RkOGItNzcyMC00ZGUwLThjNDMt
ZGFjYjVmMzU2ZWEzLzEvSU1Pck1keThIVU5DbTVZbzFMZnpHOGptcGtRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy9jY2RkOGItNzcyMC00ZGUwLThjNDMtZGFjYjVmMzU2ZWEz
LzEvdzE2c1pPcElBdWFDUm9iM3dOSUI4c2hjc3FvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQATUwMMA0G
CSqGSIb3DQEBCwUAA4IBAQBUT0ShkhVJj0waSraTdaPkCYS71IAb/dRxy/prcDDV
pKZXzrKikPmB6P7CAb2V4UG2tRxSE01URpK+rGNh7pmfxa/wBjKUzlOIy53IalMr
U3jlgKWQg9dfCV4eVRkBGwfArlzChou8w65as7m9SYaskRaXDguFgAOkNe95mtoY
7YMzPTGTGdPoz8v/x0dnEnpkbnXmEzbt8khhTBoGWL9aWcStACueTlF9l3nTeZMo
KRpqw+06a6w1dVZGoNJC64PkO5QshFsmOQKQAzEebyt87KsEYTJ/rH48/Y46BF3b
Cz4Dlb1gmgize5ZwC4WJdlJWmIuF3ZlAQQHgAfzqBn0i
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:12 2024 by rpki-client on console-ams.rpki-client.org