Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/_TZyc-MEKYX6S3k2iHR7BHbdASA.roa
File: _TZyc-MEKYX6S3k2iHR7BHbdASA.roa (raw, json)
Hash identifier: ng/amIbs9g9QsBOGcSLPOCzj9fiDuf5bf+GEB8FmeaE=
Subject key identifier: FD:36:72:73:E3:04:29:85:FA:4B:79:36:88:74:7B:04:76:DD:01:20
Certificate issuer: /CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
Certificate serial: 018D90F3883BA57585D82D4F67506697AF29
Authority key identifier: AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/_TZyc-MEKYX6S3k2iHR7BHbdASA.roa
Signing time: Sat 10 Feb 2024 02:58:15 +0000
ROA not before: Sat 10 Feb 2024 02:58:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16509
IP address blocks: 77.81.79.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 08 Mar 2024 12:40:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:90:f3:88:3b:a5:75:85:d8:2d:4f:67:50:66:97:af:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
Validity
Not Before: Feb 10 02:58:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fd367273e3042985fa4b793688747b0476dd0120
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:2d:cd:b2:88:54:d3:7d:7c:f1:82:61:0a:e2:
d5:25:7e:2a:18:7e:88:f8:d0:49:ad:3e:3d:9f:1d:
68:73:cc:13:ea:16:c2:93:37:ca:99:b2:40:14:83:
03:0a:3f:5c:78:91:39:4d:9b:e8:84:02:ce:79:b7:
7c:87:c1:69:64:7d:66:e9:c8:40:d2:6b:24:91:28:
ac:fd:ab:d2:dd:c4:a6:2a:d0:7e:03:40:1e:6c:fb:
7d:bb:64:11:75:d1:43:d2:4a:7b:cb:d3:35:c2:ef:
20:fd:e0:78:cf:c7:d5:0e:f1:4b:33:cb:3f:c4:4c:
89:a9:c5:d5:c8:7b:17:6c:aa:d0:4d:ac:6d:8f:86:
a9:be:bb:f1:37:5e:8e:bb:a8:6f:f8:fb:6a:10:d8:
5a:ee:04:41:92:cb:b2:7d:58:69:8f:e0:72:8d:8d:
f7:41:16:1f:a7:94:0b:66:9c:6e:6e:ec:e9:ae:57:
a3:b4:5c:c4:81:22:7b:e7:82:97:22:a3:cf:3f:34:
78:5b:ef:62:da:e8:b3:18:74:85:57:1b:5d:09:8a:
f7:e0:ae:35:d3:97:0b:a7:56:f9:08:bc:7d:39:66:
94:26:6a:b6:76:1b:05:d9:54:d5:83:8b:cc:62:2f:
6a:7a:8d:00:ec:4c:26:9b:cb:2e:e9:a6:ec:bf:36:
fd:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:36:72:73:E3:04:29:85:FA:4B:79:36:88:74:7B:04:76:DD:01:20
X509v3 Authority Key Identifier:
keyid:AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/_TZyc-MEKYX6S3k2iHR7BHbdASA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/ry8uht18yRAWWP-NWlJBRF_NHWo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.81.79.0/24
Signature Algorithm: sha256WithRSAEncryption
35:39:31:26:52:0a:cf:83:49:29:45:a9:ec:d8:ca:04:f0:54:
88:20:fb:a2:b0:e8:6f:21:ce:b7:38:27:4e:be:ae:7e:a3:cd:
dd:ed:24:1b:57:96:90:10:9e:26:09:da:a0:bb:36:bd:f7:3c:
2e:dd:b0:34:9b:1b:e2:6b:8e:9f:00:f7:a7:4b:72:6a:0d:63:
32:51:2f:c4:b2:d8:63:8a:ee:94:1e:68:63:88:c8:bf:91:6f:
45:3f:b8:a3:93:3d:91:8e:ca:8a:3b:52:1f:98:d3:9a:62:27:
b5:32:bb:6d:43:85:e3:60:d5:01:85:27:d1:e3:1f:da:8f:72:
15:93:f8:67:50:27:d3:80:aa:64:b9:47:cd:18:05:55:e0:22:
2c:c8:90:d5:1b:8e:15:39:5b:44:15:3e:19:4e:c8:eb:e1:92:
a2:b1:b2:d5:ca:f7:bb:91:0f:00:32:33:e4:e3:dd:71:8e:1d:
62:29:e0:ba:87:82:a7:b7:5f:24:4a:c6:3e:66:5b:38:64:81:
af:71:e5:6a:81:ea:03:af:a6:8a:e5:1a:71:f9:54:15:2f:6a:
f4:2a:3a:a0:03:b7:11:5a:c7:22:fc:96:65:4b:d4:0b:ea:35:
3e:03:b9:64:17:44:a5:17:5a:10:39:db:4f:4e:ce:d8:1e:0a:
12:e3:13:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:23 2024 by rpki-client on console-fra.rpki-client.org