Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/Mtq6V-VtK9yfx8EzxY-2othFv70.roa
File: Mtq6V-VtK9yfx8EzxY-2othFv70.roa (raw, json)
Hash identifier: /CoqKoOSYAGrlgJVOkjGjdA7jgQhnl+FSYcTrrKaAN0=
Subject key identifier: 32:DA:BA:57:E5:6D:2B:DC:9F:C7:C1:33:C5:8F:B6:A2:D8:45:BF:BD
Certificate issuer: /CN=641975583b250362c8150f63adb30a0f6a0c6fc3
Certificate serial: 019074EC40F8FB2CC91284C4554DD4DC0157
Authority key identifier: 64:19:75:58:3B:25:03:62:C8:15:0F:63:AD:B3:0A:0F:6A:0C:6F:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZBl1WDslA2LIFQ9jrbMKD2oMb8M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/Mtq6V-VtK9yfx8EzxY-2othFv70.roa
Signing time: Tue 02 Jul 2024 19:29:18 +0000
ROA not before: Tue 02 Jul 2024 19:29:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 77.111.122.0/24 maxlen: 24
91.190.190.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 11 Jul 2024 12:45:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:74:ec:40:f8:fb:2c:c9:12:84:c4:55:4d:d4:dc:01:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=641975583b250362c8150f63adb30a0f6a0c6fc3
Validity
Not Before: Jul 2 19:29:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=32daba57e56d2bdc9fc7c133c58fb6a2d845bfbd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:29:f1:7c:78:6d:be:1d:c9:6c:db:55:bb:fa:
01:eb:a0:0b:fb:89:a6:69:8a:24:82:d7:45:a5:42:
87:68:29:cc:51:93:0a:68:93:9e:dc:24:eb:4a:38:
bb:a5:72:7e:87:31:ec:3a:f9:8a:06:5c:91:e5:46:
c1:6d:42:0e:2a:c1:e6:7c:9e:ba:62:a6:a4:d5:49:
14:b3:fa:00:7e:69:3a:c5:bc:d3:f0:e3:62:8c:0d:
00:f2:6b:f6:d5:41:dd:36:bc:11:11:f6:41:30:04:
4f:e5:ce:01:ad:c8:ce:52:7f:27:7a:ba:11:b5:dc:
51:c8:f5:d0:14:93:b2:72:f4:e3:1c:2b:f2:26:20:
fc:a8:46:cc:3e:d1:af:84:c7:8f:46:3c:50:a4:64:
28:d6:3a:97:91:7c:c0:fc:2b:e8:f6:19:ae:d7:4f:
06:b0:2d:b4:c3:a5:41:0f:d6:c2:e0:86:3b:a9:33:
b5:22:31:be:3b:56:cc:1a:2a:0e:d2:b6:cc:3d:7b:
36:01:10:fb:92:95:e0:a5:e5:36:9b:22:9b:56:34:
32:18:eb:16:e2:12:00:ae:b9:34:f4:66:77:da:e3:
2d:06:b9:0b:80:87:e2:b2:a1:13:34:11:a8:6e:6b:
a3:41:b1:ef:40:a2:35:a4:73:14:6c:6d:be:0e:18:
24:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:DA:BA:57:E5:6D:2B:DC:9F:C7:C1:33:C5:8F:B6:A2:D8:45:BF:BD
X509v3 Authority Key Identifier:
keyid:64:19:75:58:3B:25:03:62:C8:15:0F:63:AD:B3:0A:0F:6A:0C:6F:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZBl1WDslA2LIFQ9jrbMKD2oMb8M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/Mtq6V-VtK9yfx8EzxY-2othFv70.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/ZBl1WDslA2LIFQ9jrbMKD2oMb8M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.111.122.0/24
91.190.190.0/24
Signature Algorithm: sha256WithRSAEncryption
53:a2:f0:77:b1:51:3d:96:82:19:08:d2:b9:ad:b3:e9:f9:b8:
41:a7:d5:58:30:53:8b:01:9f:56:62:64:cd:3d:28:ca:c9:ed:
fe:77:91:76:e2:30:70:6d:55:1f:11:92:d6:86:8e:39:3e:c2:
31:fb:c0:66:5c:1f:3f:b3:42:12:e6:44:9d:a9:c0:7b:ae:fb:
5b:fd:60:d6:1d:d3:24:6d:b7:15:c2:8f:43:88:0f:84:c5:6e:
58:15:1a:49:d9:1e:22:1f:53:81:78:9a:32:61:76:c7:97:0c:
4d:2d:79:2b:2e:e4:35:8d:36:73:21:64:0a:0b:27:41:70:ca:
08:b4:55:3c:62:11:86:4a:4f:ab:66:16:62:38:37:aa:fe:3d:
e2:16:1c:a2:d2:da:4b:0b:04:92:ad:53:22:ab:2f:a9:17:13:
26:ab:af:4a:b5:2b:62:8f:b7:e1:23:2b:6b:09:11:09:8b:f4:
e9:25:ce:43:c5:b0:12:ee:ff:71:6e:45:0b:1c:80:a8:f0:b8:
51:2c:1f:d8:84:2a:f4:f9:e7:6c:03:f6:54:ab:bf:1a:d6:ef:
5c:2a:20:91:f0:89:5c:63:14:5c:d3:90:54:c2:5d:52:a8:b9:
1d:6d:30:41:d7:c6:94:06:ec:20:47:8f:98:6e:b6:74:7b:f7:
b6:8e:f4:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 11 14:48:01 2024 by rpki-client on console-fra.rpki-client.org