Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/3mqRRO3mlAybfZtJ4M6s57HjmHk.roa
File: 3mqRRO3mlAybfZtJ4M6s57HjmHk.roa (raw, json)
Hash identifier: zrnQdzYOkRzBq8wl6pDvQhwkiui0GL2l9viWtl4QON0=
Subject key identifier: DE:6A:91:44:ED:E6:94:0C:9B:7D:9B:49:E0:CE:AC:E7:B1:E3:98:79
Certificate issuer: /CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
Certificate serial: 0187C36F9C24B7D22869BF7C570C8B8443AD
Authority key identifier: AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/3mqRRO3mlAybfZtJ4M6s57HjmHk.roa
Signing time: Thu 27 Apr 2023 15:58:04 +0000
ROA not before: Thu 27 Apr 2023 15:58:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 77.81.79.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 15 May 2023 15:34:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:c3:6f:9c:24:b7:d2:28:69:bf:7c:57:0c:8b:84:43:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
Validity
Not Before: Apr 27 15:58:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=de6a9144ede6940c9b7d9b49e0ceace7b1e39879
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:61:00:f3:8b:dc:1d:64:6a:d8:aa:62:a7:88:
c8:e6:af:50:8b:d2:16:15:2a:60:20:c4:d1:1a:f0:
27:05:e2:51:69:8d:26:99:5e:63:08:95:13:bc:55:
4a:61:93:a4:7f:2a:a8:83:a0:4e:f6:00:d1:a9:16:
2e:eb:f0:48:bc:0e:63:53:25:21:ba:0b:4c:6f:cb:
e5:dc:f5:19:7d:37:50:2d:c8:33:21:e0:7a:fb:27:
6e:f0:de:6d:a2:51:ba:b4:c9:56:5b:d5:3b:53:5a:
ea:1a:5e:76:13:d0:19:39:e8:14:dc:50:5b:07:41:
fa:a0:7c:b3:b0:f0:55:41:67:3a:3b:46:0c:c2:31:
ec:7a:18:fc:ad:96:e2:3a:ef:18:ef:dc:4c:ba:3a:
1d:48:73:a2:7d:85:82:63:16:36:a0:84:7b:85:a9:
ea:7f:22:7d:2d:4d:e4:28:5c:89:8e:c3:9d:6e:7c:
e2:7f:fe:66:cc:f3:4c:b2:32:ad:66:c3:9a:e6:22:
6a:4c:62:6b:6c:2e:a3:ae:b7:7d:d0:66:ab:83:da:
58:f9:60:7b:b1:be:28:63:81:cf:04:9b:23:b9:58:
31:36:2d:ae:35:fe:c9:e0:74:e7:75:e8:74:95:63:
7f:33:7b:b3:a2:2b:14:7e:d0:e0:8a:45:02:06:6e:
ce:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:6A:91:44:ED:E6:94:0C:9B:7D:9B:49:E0:CE:AC:E7:B1:E3:98:79
X509v3 Authority Key Identifier:
keyid:AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/3mqRRO3mlAybfZtJ4M6s57HjmHk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/ry8uht18yRAWWP-NWlJBRF_NHWo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.81.79.0/24
Signature Algorithm: sha256WithRSAEncryption
19:0e:07:1f:21:21:34:10:51:e1:37:6c:75:b4:c9:d0:16:7c:
19:6d:43:11:50:6d:f9:f4:c4:4c:0c:58:e8:e1:79:34:62:57:
8c:60:24:2f:8e:eb:33:5c:85:ed:6f:d7:04:ca:a2:a5:4f:9d:
17:52:c4:4f:8b:97:71:30:39:f8:0f:ab:aa:f6:03:c3:c8:ac:
70:eb:f9:fb:fd:71:d7:f0:36:ad:35:cf:1d:15:5d:e4:66:58:
58:0e:69:1f:3c:a5:c4:9b:ca:71:55:c2:65:9f:6b:1c:81:3b:
38:8c:6c:00:17:b7:6a:02:73:bd:f4:d9:20:fb:b5:67:4a:04:
92:80:35:6e:ab:e4:94:3e:23:de:02:e5:a9:27:de:63:8a:0e:
b5:56:f9:ff:4b:d3:c9:ed:2f:82:1a:a1:ca:b7:19:11:e2:23:
7f:2c:57:80:c4:73:d6:eb:b3:61:4d:c9:6d:10:98:fa:75:07:
e7:98:26:c8:00:40:b6:3f:69:c1:bd:0c:36:3c:4c:3d:64:89:
20:48:39:5c:48:9a:fa:2c:9c:4f:38:36:8d:9b:af:04:fe:dd:
46:7b:88:19:4d:c3:fa:01:f2:a0:9d:c5:b8:79:c9:70:2d:e5:
d5:e2:e8:10:b2:dd:ec:0c:eb:f9:a7:96:ab:b6:b8:dc:9c:e0:
a8:7b:7e:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:24 2024 by rpki-client on console-ams.rpki-client.org