Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/76aEzUlN6XPsssNPDV0HBFzfyx8.roa
File: 76aEzUlN6XPsssNPDV0HBFzfyx8.roa (raw, json)
Hash identifier: KVQPzMnhXnxr3k/haUVxaQdBKPBW04TX88bIaXGSNrI=
Subject key identifier: EF:A6:84:CD:49:4D:E9:73:EC:B2:C3:4F:0D:5D:07:04:5C:DF:CB:1F
Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10
Certificate serial: 0186BBF31F88D06A2B9AF245DBB9A7ABA8DD
Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/76aEzUlN6XPsssNPDV0HBFzfyx8.roa
Signing time: Tue 07 Mar 2023 12:01:58 +0000
ROA not before: Tue 07 Mar 2023 12:01:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60721
IP address blocks: 77.242.159.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 07 Jun 2023 06:56:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:bb:f3:1f:88:d0:6a:2b:9a:f2:45:db:b9:a7:ab:a8:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10
Validity
Not Before: Mar 7 12:01:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=efa684cd494de973ecb2c34f0d5d07045cdfcb1f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:d2:20:df:f1:1f:6b:f1:69:1c:b4:9e:a0:01:
fd:55:38:e6:d2:5a:15:bb:6c:3c:55:dc:56:39:12:
aa:de:20:74:74:60:96:36:8f:3b:12:a9:ae:54:2d:
48:ba:5e:fd:1a:fa:37:92:9a:9e:5f:b6:e0:7a:61:
9b:46:e6:38:ed:dd:5d:e3:af:cb:59:f4:4a:a4:1e:
8f:e3:2b:38:3d:fe:dd:25:a9:a1:65:18:40:87:91:
12:c7:0f:7f:72:12:49:36:f7:b7:86:74:e1:c0:b8:
6d:10:ca:2d:2e:f7:68:a9:c2:5f:b3:50:b1:84:07:
d3:6b:c9:6d:4a:ac:0c:63:57:32:eb:ee:72:ec:ed:
22:bd:be:d7:e3:93:e6:c9:44:24:c1:62:09:9c:ca:
c3:eb:77:c6:35:46:e7:ff:b0:0f:ab:36:53:ba:8a:
8d:52:a0:b5:78:d9:26:4a:2f:f6:f5:84:a2:38:e4:
d6:7d:10:5e:45:14:8a:59:95:ea:5c:7b:e3:1a:8d:
fe:b7:70:9a:1f:ed:de:35:a9:7c:08:41:f6:ad:10:
3d:1f:95:c1:e2:da:9f:1b:17:90:21:d5:b8:7f:46:
53:4c:8b:f4:e6:08:7c:ae:f0:4c:97:0d:62:d8:10:
36:2b:44:5a:e0:fc:02:6d:ac:cd:2f:b8:48:f3:28:
6b:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:A6:84:CD:49:4D:E9:73:EC:B2:C3:4F:0D:5D:07:04:5C:DF:CB:1F
X509v3 Authority Key Identifier:
keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/76aEzUlN6XPsssNPDV0HBFzfyx8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.242.159.0/24
Signature Algorithm: sha256WithRSAEncryption
71:c7:87:52:4c:17:23:94:ed:cd:98:fe:53:45:aa:3d:ba:48:
78:2b:da:cb:e8:50:2d:8d:b5:88:77:32:cf:22:a6:c0:3e:59:
d2:e9:ee:3c:8d:13:6e:5f:b8:5b:48:7b:6f:83:4c:ea:3b:48:
b4:a9:58:41:3d:d0:bd:de:bf:72:cc:cd:a5:b5:d0:e2:a4:0d:
ae:a5:67:5c:d3:82:2a:44:d1:3a:5e:e2:f6:ba:91:e0:85:60:
e1:c8:7d:d1:e5:49:1d:fa:13:a6:a4:d4:27:0a:74:fb:60:cf:
4e:db:0e:b2:9d:46:13:58:13:a6:23:94:ca:51:b7:dc:cd:dd:
19:24:71:94:35:47:88:a8:7c:e6:c3:4c:c2:c2:d2:dd:17:71:
80:1f:82:1a:16:89:8f:a4:12:7e:98:53:5b:c0:d7:6d:84:35:
2d:a1:7d:0b:cb:59:d9:38:4b:a2:06:06:f4:fa:33:c5:d4:8f:
25:ae:08:35:01:48:ff:d3:e8:ff:ff:9e:bc:52:a3:2a:91:96:
72:2b:6e:06:10:71:30:f4:8b:59:75:cf:97:65:db:19:24:e7:
9e:03:20:07:4f:19:34:cb:b0:fd:af:2e:39:b8:d5:45:52:ec:
91:8a:34:ed:4e:c5:da:1a:cb:6a:ae:6e:0a:c3:ef:0b:1b:c7:
b8:91:28:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:27 2024 by rpki-client on console-fra.rpki-client.org