Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/AU01MWvUg6IX4qviKTTNzJ4qM-M.roa
File: AU01MWvUg6IX4qviKTTNzJ4qM-M.roa (raw, json)
Hash identifier: 8RnVy+CSNGFxhjM0GU8AnyD+d2bK24cPNxoj4koo9IY=
Subject key identifier: 01:4D:35:31:6B:D4:83:A2:17:E2:AB:E2:29:34:CD:CC:9E:2A:33:E3
Certificate issuer: /CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
Certificate serial: 018E1E13D962045B8C3891ABECA37CBE9D79
Authority key identifier: AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/AU01MWvUg6IX4qviKTTNzJ4qM-M.roa
Signing time: Fri 08 Mar 2024 12:40:01 +0000
ROA not before: Fri 08 Mar 2024 12:40:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 77.81.79.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 19 Mar 2024 12:49:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:1e:13:d9:62:04:5b:8c:38:91:ab:ec:a3:7c:be:9d:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
Validity
Not Before: Mar 8 12:40:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=014d35316bd483a217e2abe22934cdcc9e2a33e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:b8:45:1f:7b:c1:c3:12:2e:8f:0b:ea:32:ac:
83:55:13:56:63:da:ae:d7:75:10:73:4a:5e:f9:4e:
00:72:84:11:f4:83:96:84:a6:9d:47:8a:83:4d:31:
94:9f:69:cd:bc:47:86:5a:e6:ce:24:3c:76:a6:85:
7d:6c:00:10:64:55:bd:70:37:f1:01:83:7d:29:f1:
a7:f5:4c:9b:97:4c:89:3d:61:c7:96:3b:7d:a8:a3:
72:b7:3a:97:45:1c:02:f7:f6:90:cd:31:a4:20:01:
af:c5:0c:24:f6:c4:f4:6e:08:d1:f5:77:90:59:a0:
47:ca:e6:a9:21:54:7a:6d:27:44:3d:58:d2:49:da:
64:3c:bd:fa:12:6e:d7:a7:78:3b:8d:b1:8e:cf:73:
db:f8:e1:bf:0f:1e:0d:8f:0e:57:02:15:cd:35:d9:
fe:6e:84:7a:a6:51:92:6e:56:a1:da:f6:f5:11:d0:
ea:ce:1c:e6:e6:81:c5:4b:82:b6:6e:39:55:57:38:
4b:40:6b:22:00:68:43:96:50:eb:48:a3:d3:48:64:
e1:37:dd:49:9e:6a:c8:81:80:47:9a:5f:cf:68:f2:
d5:df:8c:36:b6:02:0c:f5:f5:40:61:85:fc:95:fe:
2e:09:79:b4:ca:3f:67:4b:88:50:59:43:9e:f7:81:
d6:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:4D:35:31:6B:D4:83:A2:17:E2:AB:E2:29:34:CD:CC:9E:2A:33:E3
X509v3 Authority Key Identifier:
keyid:AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/AU01MWvUg6IX4qviKTTNzJ4qM-M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/ry8uht18yRAWWP-NWlJBRF_NHWo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.81.79.0/24
Signature Algorithm: sha256WithRSAEncryption
43:d2:a5:5f:ba:f3:5f:de:a5:3e:cc:fd:6f:1e:73:76:16:b2:
19:41:08:6a:5e:c5:83:97:f3:93:00:87:76:f3:ea:2e:25:43:
f1:43:4b:46:09:88:c8:89:54:90:12:8c:9e:db:e9:22:43:9d:
44:56:b0:01:11:a4:fe:28:96:ec:7d:41:f9:bb:c0:55:80:dd:
15:86:e1:06:a4:38:3c:ab:0d:bb:e2:93:03:e6:32:5c:01:51:
b8:3e:e3:4f:b0:a9:3c:cd:c2:21:aa:8d:26:f6:1f:68:27:78:
eb:95:52:6b:90:6c:12:5b:84:08:d1:2b:ec:71:72:7a:0f:1b:
65:96:97:eb:e3:e5:8d:31:b6:f8:2b:b0:6f:d6:69:8f:d5:20:
b7:0b:80:48:d4:b3:55:b5:40:df:23:34:1d:0d:f9:e0:4f:c3:
3f:ec:2f:e1:11:87:06:2d:5a:bf:e0:15:ef:b0:b3:66:a4:23:
53:8e:ff:09:18:39:a5:d6:96:b9:93:38:2d:d3:ac:95:f4:cc:
68:ef:b3:8f:f6:1a:54:3a:74:2d:a1:06:bf:4a:6c:30:cd:83:
87:f0:22:88:4c:af:44:48:ba:49:82:b5:78:a5:a3:91:c9:9a:
1e:cb:81:07:32:7e:be:83:e0:87:91:ba:04:f4:5a:ef:51:47:
9c:d7:6f:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:23 2024 by rpki-client on console-fra.rpki-client.org