Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/QCdM6Sv2FO1hSM3l6n2i4w8TjH8.roa
File: QCdM6Sv2FO1hSM3l6n2i4w8TjH8.roa (raw, json)
Hash identifier: QyNavGQuQQYm4FsTcqEt7/29YQItMHbsZZh6tUmbbgk=
Subject key identifier: 40:27:4C:E9:2B:F6:14:ED:61:48:CD:E5:EA:7D:A2:E3:0F:13:8C:7F
Certificate issuer: /CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
Certificate serial: 018D7EEA864F24AD5774C8AE6851EF027CBD
Authority key identifier: AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/QCdM6Sv2FO1hSM3l6n2i4w8TjH8.roa
Signing time: Tue 06 Feb 2024 14:55:15 +0000
ROA not before: Tue 06 Feb 2024 14:55:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 77.81.79.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 10 Feb 2024 02:55:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7e:ea:86:4f:24:ad:57:74:c8:ae:68:51:ef:02:7c:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
Validity
Not Before: Feb 6 14:55:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=40274ce92bf614ed6148cde5ea7da2e30f138c7f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:ce:69:36:90:70:55:ef:00:8a:99:cb:be:e8:
28:cd:1a:fa:5e:bd:2e:ab:09:c5:03:85:78:e0:76:
c0:25:86:23:41:9f:30:e6:c2:6f:98:ad:01:2b:16:
06:7a:90:0f:77:ba:2d:36:6e:ef:3e:aa:82:3a:95:
01:7d:05:cf:3f:49:35:13:d4:bf:11:23:cd:28:21:
2f:1e:fb:37:f4:2b:00:51:10:06:41:b6:df:60:1d:
83:d6:75:11:f4:90:5c:dc:41:27:11:28:7a:3d:53:
60:13:7b:23:50:b4:58:6e:fa:f8:5a:42:5d:0d:60:
25:58:2f:b9:53:fa:ae:f3:bf:ba:3f:05:18:e6:06:
2d:f5:83:02:44:bf:92:ad:92:1b:09:ae:c7:fd:14:
05:f7:c2:a0:bc:98:60:f6:39:0a:a6:19:31:66:48:
a4:2b:f8:7a:a3:cb:77:8d:c8:1e:09:25:61:e1:d6:
eb:17:2a:05:62:a1:ab:72:21:74:29:ce:c8:cd:0a:
2b:f5:5f:09:9a:ab:a3:62:4b:52:20:3d:61:b8:31:
68:73:31:6a:31:b8:84:9c:f7:ba:80:1d:14:d2:46:
3e:d9:59:10:50:50:0f:e0:a6:da:b4:66:8d:f3:c0:
e8:01:63:9f:2a:94:fc:9d:3a:22:4c:8c:26:6f:b4:
85:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:27:4C:E9:2B:F6:14:ED:61:48:CD:E5:EA:7D:A2:E3:0F:13:8C:7F
X509v3 Authority Key Identifier:
keyid:AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/QCdM6Sv2FO1hSM3l6n2i4w8TjH8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/ry8uht18yRAWWP-NWlJBRF_NHWo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.81.79.0/24
Signature Algorithm: sha256WithRSAEncryption
92:4f:60:b3:a7:27:ab:36:81:8c:7c:49:d4:2d:59:fc:66:24:
bf:b0:f4:6b:76:22:5d:cf:50:9c:a2:4a:54:ea:60:9c:80:ae:
0b:18:02:fc:fb:54:89:01:1a:c0:28:8f:21:a9:8c:13:06:1a:
3c:51:74:4b:be:61:65:fd:55:a3:cb:e3:f6:72:fa:f5:54:1c:
d4:5c:c0:a8:7a:42:47:3d:cf:c0:b5:1f:f5:44:4c:51:c4:2f:
d5:c5:f0:f5:06:7a:61:49:4b:5b:c7:30:4d:5b:73:de:bd:57:
c6:45:42:2c:7c:d5:63:22:fd:2f:d6:33:60:dd:ab:a3:37:59:
7e:ce:66:75:b9:50:65:98:36:71:d9:2e:48:bc:b0:f1:ee:bb:
c7:db:ae:be:94:2d:89:dc:bd:ef:7b:e8:fe:47:9f:04:18:b5:
0b:3f:67:2c:18:c3:fe:56:5d:7c:7f:63:e2:ac:a1:49:b5:45:
df:28:7d:4d:e0:24:47:33:5f:15:92:25:ab:9a:72:95:9e:44:
66:92:de:3f:63:ea:10:76:0f:41:2d:ec:97:38:3a:7f:81:fb:
7d:06:f7:43:0b:03:f8:ef:80:6e:44:77:c9:79:52:d5:f7:b5:
53:93:92:c7:aa:2c:a3:cd:ae:50:a1:64:00:5c:21:67:81:d4:
59:76:e8:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:23 2024 by rpki-client on console-fra.rpki-client.org