Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/b52BHSrQ42gx_eGRGREz9tPQW6Q.roa
File: b52BHSrQ42gx_eGRGREz9tPQW6Q.roa (raw, json)
Hash identifier: YqSd2Vlvr2Zk0R8llWyiAFphSgv2Kri7KI4knRw6y90=
Subject key identifier: 6F:9D:81:1D:2A:D0:E3:68:31:FD:E1:91:19:11:33:F6:D3:D0:5B:A4
Certificate issuer: /CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
Certificate serial: 0187C36F9C951DEBBCA9FAAEB223E5080DC4
Authority key identifier: AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/b52BHSrQ42gx_eGRGREz9tPQW6Q.roa
Signing time: Thu 27 Apr 2023 15:58:04 +0000
ROA not before: Thu 27 Apr 2023 15:58:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209043
IP address blocks: 77.81.77.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 28 May 2023 00:58:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:c3:6f:9c:95:1d:eb:bc:a9:fa:ae:b2:23:e5:08:0d:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
Validity
Not Before: Apr 27 15:58:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6f9d811d2ad0e36831fde191191133f6d3d05ba4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:97:57:30:5c:5b:a8:82:f2:f3:6f:36:95:84:
a1:88:62:e0:a6:3d:51:c6:26:d2:2c:5e:a8:7b:89:
bc:c4:82:44:9e:91:c1:d6:8d:82:a1:43:3f:88:c1:
42:11:63:2b:19:64:c0:50:4f:45:9c:aa:4a:a1:25:
6d:30:72:8f:de:a5:dc:57:5d:3a:b0:81:25:71:ed:
76:79:c4:61:2f:d0:bb:ee:32:37:d5:3e:7b:bc:05:
c0:68:16:f3:12:66:b6:ba:2f:f5:2b:1f:a1:fe:c9:
e6:87:bf:5c:82:6a:91:76:dc:cf:01:59:5b:a8:27:
86:65:43:26:c5:df:0e:88:1e:07:cd:c4:9e:71:f0:
2b:df:ef:7c:0a:b2:43:c3:29:32:1b:fb:8f:ac:18:
78:ea:c9:ce:1a:09:26:5d:13:f9:b0:95:c0:aa:58:
0e:f4:96:54:09:76:11:24:a0:a7:5f:d0:e7:5a:94:
e6:49:51:a7:d8:86:3d:43:38:52:ec:41:0d:7d:d9:
44:8a:dd:85:4e:96:b7:fc:59:3b:82:9e:aa:92:6d:
62:18:bb:fd:6f:1f:df:38:99:45:b9:e8:bc:29:1c:
c2:19:2c:8c:3a:c1:04:c9:6f:71:28:4e:28:39:ec:
ce:92:78:28:bd:b0:6e:81:01:f9:7d:f3:41:39:95:
38:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:9D:81:1D:2A:D0:E3:68:31:FD:E1:91:19:11:33:F6:D3:D0:5B:A4
X509v3 Authority Key Identifier:
keyid:AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/b52BHSrQ42gx_eGRGREz9tPQW6Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/ry8uht18yRAWWP-NWlJBRF_NHWo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.81.77.0/24
Signature Algorithm: sha256WithRSAEncryption
53:db:e5:66:18:e5:0a:15:5b:e2:62:a5:8a:ed:16:ee:bc:d4:
87:fa:23:05:0a:b3:1a:c4:a8:0e:3c:04:89:b1:ca:ff:d8:e5:
66:04:e2:1b:68:b8:9a:4f:5b:39:47:e6:5a:bd:6b:62:ba:2f:
d7:50:fc:eb:07:69:87:ff:d3:18:32:fc:6a:88:f7:3e:14:11:
0e:29:0d:68:a3:40:b3:39:04:7c:1a:ec:b6:59:dc:da:15:43:
de:a6:ce:4c:3b:6e:28:f5:d8:34:de:63:ad:90:13:cc:97:65:
d8:c7:37:15:b8:dc:b5:74:14:04:86:6f:8b:63:67:18:90:25:
04:cf:d0:86:0d:07:7a:83:16:cf:b5:72:c0:0a:92:c4:0a:ed:
80:a1:e2:e4:50:99:21:01:dd:88:b1:84:54:35:27:4a:50:7c:
61:83:f2:f1:dd:e7:e9:bb:de:10:f0:73:0a:38:f0:5a:bb:9c:
ba:6c:76:0d:01:f3:e5:b1:18:6d:f4:31:49:c5:51:e2:3d:9e:
99:c3:49:6d:b3:eb:c1:6b:7e:33:3f:6f:6c:ea:6b:45:43:2b:
59:8d:58:4f:ca:dc:17:65:05:f9:f4:a8:13:cb:cf:ac:21:e4:
27:63:97:b7:fb:a0:a9:ed:5c:ca:3e:02:6f:14:0a:f0:7c:68:
6a:fe:6f:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:23 2024 by rpki-client on console-fra.rpki-client.org