Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/T0o6dZTx8Bsh9er9A3vCwaKDnqQ.roa
File: T0o6dZTx8Bsh9er9A3vCwaKDnqQ.roa (raw, json)
Hash identifier: wWiQHvWMI5MWLSR9/5s01O7JUAKpdpZVaC6mU60dNko=
Subject key identifier: 4F:4A:3A:75:94:F1:F0:1B:21:F5:EA:FD:03:7B:C2:C1:A2:83:9E:A4
Certificate issuer: /CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
Certificate serial: 01897E0C5D724735463EC87EC71C52DAF825
Authority key identifier: AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/T0o6dZTx8Bsh9er9A3vCwaKDnqQ.roa
Signing time: Sat 22 Jul 2023 14:41:26 +0000
ROA not before: Sat 22 Jul 2023 14:41:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212238
IP address blocks: 77.81.79.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 23 Sep 2023 01:45:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:7e:0c:5d:72:47:35:46:3e:c8:7e:c7:1c:52:da:f8:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
Validity
Not Before: Jul 22 14:41:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4f4a3a7594f1f01b21f5eafd037bc2c1a2839ea4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:c0:d1:88:e6:a5:ec:f0:d1:34:79:c1:e6:f0:
8f:8e:56:41:69:c6:1a:b0:5a:35:96:96:6b:f8:9b:
85:3f:4e:29:1a:be:6b:98:49:67:df:49:e5:fe:08:
db:de:fd:61:fa:24:ac:03:39:7b:c5:c5:24:a9:16:
b9:71:cc:fc:c5:c0:78:96:a1:29:24:05:0b:9f:8f:
f1:dc:96:69:b8:2b:98:9b:3f:18:38:ed:05:1e:a2:
6e:e1:67:a4:e1:73:4f:67:f5:cb:eb:58:65:03:a0:
ae:86:95:4e:f7:5b:b6:32:2d:65:99:ea:d3:d6:56:
d5:60:47:4d:1b:12:d8:2b:fb:5f:d0:02:ce:e9:d0:
4e:46:49:e5:99:b8:9e:97:dc:04:ce:80:5e:11:9d:
f6:30:54:12:34:4d:4b:d7:ff:85:fb:f5:3f:48:dc:
f3:ae:68:e2:5b:54:e6:0f:8e:42:05:72:e6:70:3f:
17:1e:df:a1:8b:12:40:97:08:1a:15:8f:f5:e7:b3:
4b:4a:11:03:c2:43:b5:95:a3:14:5a:0e:1f:29:45:
3b:ff:13:0f:73:30:a3:f6:91:3d:6b:61:8a:95:fd:
09:e0:49:25:1d:40:c9:0f:c5:b8:ef:41:78:5b:1a:
d8:1b:02:03:7f:d1:d2:b4:34:8c:49:13:e2:42:9e:
0c:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:4A:3A:75:94:F1:F0:1B:21:F5:EA:FD:03:7B:C2:C1:A2:83:9E:A4
X509v3 Authority Key Identifier:
keyid:AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/T0o6dZTx8Bsh9er9A3vCwaKDnqQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/ry8uht18yRAWWP-NWlJBRF_NHWo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.81.79.0/24
Signature Algorithm: sha256WithRSAEncryption
70:df:c8:b5:bd:2b:4d:1e:bd:fc:52:af:57:c4:f4:6c:d9:6b:
47:74:7d:ed:4c:56:64:8f:f9:00:e0:96:27:a8:1d:52:65:28:
e4:f8:9e:91:59:b6:9c:e5:3b:b7:c0:c0:0c:02:d0:74:1b:56:
1d:6f:e4:d8:70:d2:3f:07:de:0e:4f:c5:18:c3:34:76:66:d9:
9e:5d:59:43:4f:d4:16:21:10:3d:ae:2b:10:7e:87:ef:89:0d:
e9:f6:62:a6:ed:d1:00:df:07:72:55:f1:9a:0d:36:3e:36:4d:
66:b0:e0:98:f1:0e:02:0d:21:2d:48:d5:03:8d:f1:ce:22:11:
cd:4c:16:49:51:ae:f1:70:42:86:6b:ce:73:48:a0:ca:e6:3b:
84:84:58:c5:ca:04:75:fa:a9:a9:8d:6b:6b:b6:cd:32:81:d5:
07:5d:ff:cb:40:f2:52:3e:83:d8:18:17:aa:a0:21:53:db:5f:
d1:5c:e8:a6:89:72:39:50:a1:06:25:1a:c1:97:9b:84:ba:35:
56:60:2f:f3:6f:0c:30:77:6b:bb:cd:8c:09:cb:f1:2f:e0:06:
3c:34:28:da:79:bd:1f:3b:38:2d:5e:18:c9:84:ad:6d:ed:b6:
15:2f:5c:26:58:be:ba:f7:11:f7:fd:02:93:db:c3:28:25:89:
c3:5d:8b:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:24 2024 by rpki-client on console-ams.rpki-client.org