Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/pyRn0LsEDalq7VsAUEsK0WYOsMY.roa
File: pyRn0LsEDalq7VsAUEsK0WYOsMY.roa (raw, json)
Hash identifier: 02dAga3XAcKA3xeudkrd+YC8qQS1Ir1M2Dt3QuSOeQQ=
Subject key identifier: A7:24:67:D0:BB:04:0D:A9:6A:ED:5B:00:50:4B:0A:D1:66:0E:B0:C6
Certificate issuer: /CN=c35eac64ea4802e6824686f7c0d201f2c85cb2aa
Certificate serial: 019428242159B6C6166C52DC79E02BE8412F
Authority key identifier: C3:5E:AC:64:EA:48:02:E6:82:46:86:F7:C0:D2:01:F2:C8:5C:B2:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w16sZOpIAuaCRob3wNIB8shcsqo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/pyRn0LsEDalq7VsAUEsK0WYOsMY.roa
Signing time: Thu 02 Jan 2025 17:50:43 +0000
ROA not before: Thu 02 Jan 2025 17:50:43 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 29582
IP address blocks: 77.76.3.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 09 Jan 2025 09:28:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:24:21:59:b6:c6:16:6c:52:dc:79:e0:2b:e8:41:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c35eac64ea4802e6824686f7c0d201f2c85cb2aa
Validity
Not Before: Jan 2 17:50:43 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a72467d0bb040da96aed5b00504b0ad1660eb0c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:fe:d7:99:4e:d8:97:e0:c7:5e:39:df:e2:5f:
f6:5e:3e:17:1a:a4:62:6a:91:58:e1:54:5b:e1:36:
a3:d2:2b:2d:c2:d6:ba:52:70:c5:44:d8:31:09:2f:
1e:4d:7d:18:57:75:fc:36:aa:4b:c4:01:82:2d:9c:
e7:a4:8e:ca:2f:6b:a6:95:56:de:45:1c:9d:2c:72:
13:f9:06:cd:0b:99:e9:04:9d:79:09:80:14:cb:0c:
9c:5f:4d:92:1c:65:13:37:cb:c4:fe:8f:5d:e3:23:
ab:81:c1:af:02:d8:ab:f4:0c:38:1b:7f:e2:d7:3f:
46:89:ec:a0:7f:df:24:fa:81:f6:30:b5:a7:48:bf:
96:27:ac:56:48:c4:68:87:5f:d4:c8:96:f6:b1:4a:
1f:6d:14:00:00:e7:7d:8c:bd:15:15:db:57:1b:ba:
38:a5:8f:f6:3c:85:b0:50:b4:32:a3:bf:4c:51:0f:
1c:a3:5e:cd:1f:54:80:05:af:5d:95:18:d2:ea:eb:
0f:b3:38:e6:11:07:3a:88:82:14:20:40:b8:42:94:
8d:7d:ae:f0:60:0b:86:e0:8f:9e:db:85:39:e1:d1:
47:f5:5d:2c:9b:44:03:ba:c9:bc:1f:04:d6:a6:41:
ba:99:d5:3e:e8:6a:c2:51:e0:c7:95:97:fb:2d:6e:
bc:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:24:67:D0:BB:04:0D:A9:6A:ED:5B:00:50:4B:0A:D1:66:0E:B0:C6
X509v3 Authority Key Identifier:
keyid:C3:5E:AC:64:EA:48:02:E6:82:46:86:F7:C0:D2:01:F2:C8:5C:B2:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w16sZOpIAuaCRob3wNIB8shcsqo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/pyRn0LsEDalq7VsAUEsK0WYOsMY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/w16sZOpIAuaCRob3wNIB8shcsqo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.76.3.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:78:69:87:88:61:9c:48:c0:a4:5b:dd:8d:53:ee:25:e1:00:
f2:17:cc:9c:b6:1d:c2:0a:53:4b:b4:57:45:bb:ff:86:6a:81:
8f:60:07:85:a0:59:9e:52:83:25:14:3b:64:70:35:47:80:db:
0a:22:ae:d6:b4:21:14:1f:67:d5:d0:2b:97:54:c8:97:87:ba:
bf:c1:b5:e9:af:a6:dc:49:6c:d4:4a:cd:93:a3:d4:01:23:56:
e6:40:09:a4:62:61:be:ff:69:88:13:32:01:13:c2:57:d7:8b:
fb:dd:d5:d4:48:43:af:f1:4b:f8:2e:71:af:76:b5:1c:8b:04:
fe:04:d7:e9:65:01:83:5e:cc:e7:7e:58:cc:24:e5:9c:ed:fc:
35:99:24:95:a9:0b:35:4c:ac:17:19:5a:97:d3:6a:75:59:b5:
dc:16:6f:18:da:2d:62:98:c7:6c:09:0f:69:64:3e:0b:c0:34:
77:e8:24:26:17:43:7a:81:7e:72:5c:5a:ff:0e:b1:a8:be:11:
ca:ca:03:df:2e:bc:db:6c:12:e1:22:9a:46:06:71:6d:9c:dc:
3e:b7:93:fb:ff:e1:e3:a6:d3:ca:b9:12:60:6a:ae:74:88:26:
98:12:1b:c3:9c:13:21:d2:63:0c:a8:68:c8:02:ff:c4:a4:50:
ee:6a:c9:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 10:22:36 2025 by rpki-client