Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/RCfqk-OuDf4S_lGrgrUBL7VX5ms.roa
File: RCfqk-OuDf4S_lGrgrUBL7VX5ms.roa (raw, json)
Hash identifier: T52ZWdeYu/LP/1N2c3J6Aj+oESdn1Qbi52QPzt1b3sc=
Subject key identifier: 44:27:EA:93:E3:AE:0D:FE:12:FE:51:AB:82:B5:01:2F:B5:57:E6:6B
Certificate issuer: /CN=641975583b250362c8150f63adb30a0f6a0c6fc3
Certificate serial: 01906EF5271B4FC79AF280EC17C3C2A079F1
Authority key identifier: 64:19:75:58:3B:25:03:62:C8:15:0F:63:AD:B3:0A:0F:6A:0C:6F:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZBl1WDslA2LIFQ9jrbMKD2oMb8M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/RCfqk-OuDf4S_lGrgrUBL7VX5ms.roa
Signing time: Mon 01 Jul 2024 15:41:18 +0000
ROA not before: Mon 01 Jul 2024 15:41:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7922
IP address blocks: 77.111.118.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 03 Jul 2024 06:56:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:6e:f5:27:1b:4f:c7:9a:f2:80:ec:17:c3:c2:a0:79:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=641975583b250362c8150f63adb30a0f6a0c6fc3
Validity
Not Before: Jul 1 15:41:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4427ea93e3ae0dfe12fe51ab82b5012fb557e66b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:81:0e:57:a7:e3:06:0c:c0:2c:fc:68:2d:4b:
1e:fc:3e:9d:9d:29:69:2c:f0:99:aa:c7:35:66:4f:
db:73:f0:0a:5d:12:ec:ab:21:c3:5c:00:e4:c8:34:
97:11:a8:84:a8:16:89:03:0c:8e:61:84:fa:60:eb:
71:24:71:a4:4c:a8:e8:62:ec:95:b6:e6:11:72:29:
18:06:c3:fb:0f:33:2b:fe:76:7c:8f:fd:2d:9d:04:
ae:3f:78:dd:3b:29:92:f2:01:ad:6c:26:b6:7b:8f:
15:d2:57:27:3e:51:76:d0:e8:04:50:99:d8:21:b3:
03:3b:35:17:4a:31:fd:41:46:62:ad:94:2c:df:fc:
0b:77:44:e1:89:53:21:96:5e:bd:97:18:d8:4c:ea:
a1:79:fc:9f:6f:40:09:d6:12:55:15:57:20:fe:ef:
d5:f1:02:b3:a8:f8:35:fb:8b:77:8b:59:90:de:79:
a6:32:0a:63:6c:15:83:98:ca:88:56:7f:84:26:f3:
38:da:78:eb:6b:b3:32:1c:68:4f:15:40:20:33:1b:
ee:6e:53:39:ba:12:71:66:f5:01:14:bd:24:f9:f1:
54:ad:b3:42:40:98:b1:6f:a5:ef:27:f5:aa:8f:72:
fb:c1:e0:3e:98:86:ca:98:7d:d6:d8:c9:6e:64:a2:
99:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:27:EA:93:E3:AE:0D:FE:12:FE:51:AB:82:B5:01:2F:B5:57:E6:6B
X509v3 Authority Key Identifier:
keyid:64:19:75:58:3B:25:03:62:C8:15:0F:63:AD:B3:0A:0F:6A:0C:6F:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZBl1WDslA2LIFQ9jrbMKD2oMb8M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/RCfqk-OuDf4S_lGrgrUBL7VX5ms.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/ZBl1WDslA2LIFQ9jrbMKD2oMb8M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.111.118.0/24
Signature Algorithm: sha256WithRSAEncryption
85:5b:a5:79:5e:32:8d:86:24:d9:ab:e3:d0:c7:4d:19:eb:30:
6f:32:04:e6:08:b2:89:7a:72:cc:78:0a:cb:f5:7a:21:91:2f:
1d:59:10:cd:80:ea:fd:87:86:ce:3b:07:a9:d3:21:cb:03:ad:
a7:c6:50:29:bd:b0:78:36:bb:ce:64:b3:a8:6f:eb:49:d4:4a:
a8:8d:23:ad:bd:82:ee:63:4e:4f:db:23:5e:cd:9e:82:02:1c:
94:91:25:a6:24:13:81:eb:fa:a3:f8:34:89:ab:9c:b0:6d:6a:
98:92:07:f9:dc:3b:b5:f5:ed:40:80:36:2f:fd:b6:28:e9:74:
ed:fa:aa:3f:65:45:05:3d:60:d7:bd:6d:9a:70:65:20:8e:21:
f0:61:88:3b:7b:9b:7d:54:9e:1f:1e:99:2d:45:4b:3b:68:b2:
27:40:65:44:c1:ea:8a:dd:27:ab:10:39:9e:c9:99:0e:73:c9:
dd:ea:c0:bd:48:28:22:12:b7:2d:2f:af:63:b9:0f:97:cf:87:
73:4a:fc:28:7f:00:8f:dc:4f:09:50:fb:52:a0:e2:88:ba:fd:
c8:43:01:95:2e:8e:c5:2b:fc:9d:f3:1d:9c:ca:1d:dc:2c:f9:
de:0d:3c:79:b0:c5:eb:e9:49:3c:e6:48:76:f3:f9:aa:40:ca:
88:6c:2a:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 3 08:36:45 2024 by rpki-client on console-fra.rpki-client.org