Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/xmOgiIlOmNB22ijZdRtWh-Ty0LE.roa
File: xmOgiIlOmNB22ijZdRtWh-Ty0LE.roa (raw, json)
Hash identifier: CItQp15k0S7jVqlfRz6NrseXIiX34Ftk2eILPnbdzu4=
Subject key identifier: C6:63:A0:88:89:4E:98:D0:76:DA:28:D9:75:1B:56:87:E4:F2:D0:B1
Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10
Certificate serial: 01932C46B0350417653B2EDA7F0474AEF002
Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/xmOgiIlOmNB22ijZdRtWh-Ty0LE.roa
Signing time: Thu 14 Nov 2024 20:04:10 +0000
ROA not before: Thu 14 Nov 2024 20:04:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7029
IP address blocks: 77.242.146.0/23 maxlen: 23
Validation: Failed, certificate revoked on Fri 15 Nov 2024 08:24:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:2c:46:b0:35:04:17:65:3b:2e:da:7f:04:74:ae:f0:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10
Validity
Not Before: Nov 14 20:04:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c663a088894e98d076da28d9751b5687e4f2d0b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:06:d3:17:30:f3:46:cb:f8:37:33:0d:fa:cb:
0c:57:9e:6b:04:a7:bf:01:52:3a:f9:7c:10:73:e3:
19:ae:3c:42:88:43:8e:65:19:05:ae:ca:a1:05:32:
8a:90:c3:0b:2d:5d:e7:47:7c:24:12:14:c0:c9:1e:
f4:39:eb:f5:82:7b:b8:17:c9:a7:6c:0c:0c:e0:5d:
da:26:a3:0a:b4:6e:0b:75:41:a3:64:3a:46:8b:bf:
9c:7e:2c:91:48:02:f5:b3:0b:22:18:a8:95:9e:88:
a3:c6:e6:a4:71:68:e6:73:ed:02:6e:36:02:b6:07:
b6:5c:00:9f:74:73:1a:82:5b:8b:63:62:ae:35:74:
bc:8f:34:5d:b2:9c:10:73:3c:86:57:e9:7d:27:f1:
ec:f2:e0:64:bb:29:f2:ee:31:ff:60:f3:98:b3:f3:
fb:99:f0:5c:fd:38:1e:1d:69:fa:2a:c5:21:a4:e5:
07:62:bc:4c:72:cb:0b:28:d2:ee:9c:2d:46:f1:65:
f0:4a:c7:58:f0:6c:ce:c4:aa:ce:7a:b2:28:a5:3f:
5a:cd:03:51:49:ca:f6:c6:9d:71:09:dc:56:e8:d9:
fa:a9:a6:db:cf:bf:83:e1:aa:9a:a7:3d:78:25:bc:
dd:e8:74:10:b7:bd:75:de:31:4d:55:47:24:77:c2:
d5:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:63:A0:88:89:4E:98:D0:76:DA:28:D9:75:1B:56:87:E4:F2:D0:B1
X509v3 Authority Key Identifier:
keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/xmOgiIlOmNB22ijZdRtWh-Ty0LE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.242.146.0/23
Signature Algorithm: sha256WithRSAEncryption
ae:14:8a:ad:7a:48:bc:5e:b5:a2:8b:33:fc:21:2d:16:f5:4c:
56:09:e1:1b:1b:67:b6:1a:b0:ef:a3:89:5f:0b:7f:56:64:fb:
01:ff:e2:32:77:61:dd:fb:1c:4c:0f:08:5d:d2:f9:79:9f:7b:
22:77:f8:3b:73:46:f4:73:8e:78:00:01:94:ed:e2:84:e3:e7:
20:08:a9:33:92:6b:5b:02:8c:1a:01:f1:0e:02:88:16:e6:ee:
32:17:9d:c5:99:1d:61:19:24:e0:8a:db:09:4c:c9:cc:bc:22:
b3:91:41:74:5b:d5:c7:1c:38:84:00:dd:ec:de:16:b6:53:61:
37:cd:a7:16:a5:b3:45:68:69:a3:b3:7a:e8:a2:ba:3a:33:ce:
e4:59:79:03:dc:13:2f:f7:38:4a:07:e9:07:e4:1a:1b:7c:32:
48:f1:41:0a:e8:34:ff:7a:12:b2:12:f0:3e:31:a7:b0:1b:e7:
9d:33:6d:59:d0:ad:80:35:91:49:b8:dd:c0:a9:3b:50:aa:a7:
ff:70:0b:db:32:aa:fb:11:2f:5f:d4:5e:15:1c:45:82:f7:3c:
66:c4:6a:72:7b:e3:59:a3:fc:47:77:50:0c:6f:7d:52:21:5a:
78:5d:32:65:0c:14:49:7f:2f:d0:97:c8:21:17:cf:d0:b6:bb:
51:f1:d8:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 15 10:01:39 2024 by rpki-client on console-fra.rpki-client.org