Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/64b1e6-0a1f-40ec-9437-04a4c2c41c34/1/w14WOiQTWD3obuqjKpxB7brCXoc.roa
File: w14WOiQTWD3obuqjKpxB7brCXoc.roa (raw, json)
Hash identifier: 1rHVwnFj0ovaRDu5vFOawKVCurG+8iPSUa5F644ttzM=
Subject key identifier: C3:5E:16:3A:24:13:58:3D:E8:6E:EA:A3:2A:9C:41:ED:BA:C2:5E:87
Certificate issuer: /CN=153d072ccef00bf464d660dbd05dada1da33d2c8
Certificate serial: 0188B967BD3C4FE7BCF49C0C6FFDA1BC360D
Authority key identifier: 15:3D:07:2C:CE:F0:0B:F4:64:D6:60:DB:D0:5D:AD:A1:DA:33:D2:C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FT0HLM7wC_Rk1mDb0F2todoz0sg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/64b1e6-0a1f-40ec-9437-04a4c2c41c34/1/w14WOiQTWD3obuqjKpxB7brCXoc.roa
Signing time: Wed 14 Jun 2023 10:16:03 +0000
ROA not before: Wed 14 Jun 2023 10:16:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42716
IP address blocks: 77.73.216.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:b9:67:bd:3c:4f:e7:bc:f4:9c:0c:6f:fd:a1:bc:36:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=153d072ccef00bf464d660dbd05dada1da33d2c8
Validity
Not Before: Jun 14 10:16:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c35e163a2413583de86eeaa32a9c41edbac25e87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:83:bc:48:15:22:cb:85:d9:e1:62:46:61:d0:
9a:0a:32:ac:9b:de:32:ca:2f:e8:2f:f1:23:24:db:
23:29:74:23:93:42:b5:91:65:53:41:44:80:92:ea:
3e:24:b3:63:31:4c:44:04:37:da:81:05:0c:f4:58:
1e:55:e3:54:41:8e:db:99:b6:86:70:db:28:6a:f6:
a2:9b:59:82:92:20:05:b8:0f:c5:52:02:73:21:de:
20:ae:97:a5:62:fe:95:03:eb:4b:80:ca:dd:5b:29:
fa:af:b6:f4:a9:fd:a6:93:75:f4:f2:9a:00:1a:8d:
0e:52:ae:94:ab:53:c0:cb:e1:15:2b:5f:15:ee:5a:
e2:4c:23:cf:a6:04:c2:11:6c:2b:bf:5b:3f:2b:49:
ed:d8:83:07:75:60:6b:e9:29:ae:1c:52:5a:06:02:
69:a5:fa:3b:c2:63:3b:64:7e:e6:c5:4e:99:80:01:
77:35:f5:b6:6f:7d:ca:34:40:dc:ac:b3:96:13:e7:
79:3d:a3:98:3d:0e:e9:ba:ea:98:21:a7:6d:b6:6f:
5a:3a:4b:43:a8:5c:84:05:73:d0:01:99:53:72:1b:
49:19:f1:3b:e6:bc:a3:88:cc:82:da:fe:91:25:81:
89:bd:50:62:03:c6:5e:84:ac:bb:10:7b:42:38:f3:
49:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:5E:16:3A:24:13:58:3D:E8:6E:EA:A3:2A:9C:41:ED:BA:C2:5E:87
X509v3 Authority Key Identifier:
keyid:15:3D:07:2C:CE:F0:0B:F4:64:D6:60:DB:D0:5D:AD:A1:DA:33:D2:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FT0HLM7wC_Rk1mDb0F2todoz0sg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/64b1e6-0a1f-40ec-9437-04a4c2c41c34/1/w14WOiQTWD3obuqjKpxB7brCXoc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/64b1e6-0a1f-40ec-9437-04a4c2c41c34/1/FT0HLM7wC_Rk1mDb0F2todoz0sg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.73.216.0/24
Signature Algorithm: sha256WithRSAEncryption
98:df:8e:fa:7e:27:96:a1:42:29:3e:8b:5c:da:bc:ea:d9:00:
b3:03:ca:46:bb:4e:5d:27:16:76:78:7e:16:97:90:8d:dc:1e:
3c:8c:e3:ec:65:c5:13:d8:40:d2:12:f4:09:05:1e:c2:ce:85:
36:50:db:38:a8:23:45:72:7e:4b:15:fd:fa:ca:52:0f:8e:0b:
66:bf:b0:8a:6d:22:b0:41:e6:63:43:dc:dd:3b:cf:7c:1f:b1:
0f:94:23:6a:41:d5:f5:1a:4c:0f:1e:92:a1:f7:76:89:ed:6e:
db:26:7f:d4:ff:ce:78:f4:6b:9d:b0:89:e2:40:ce:e8:73:73:
f5:85:14:5e:f9:d0:83:4a:cb:19:f3:b6:5b:af:b1:c6:76:31:
93:ce:b5:27:77:53:4e:de:e7:57:01:07:68:d0:cf:24:de:40:
e1:3c:43:80:b7:91:3f:5c:14:b4:10:5e:f7:f7:3f:11:50:b0:
72:93:0a:91:da:e2:b0:7e:b6:6f:e4:53:a9:06:ff:bf:8a:2b:
93:c9:f4:e5:8d:3f:af:d1:a6:55:86:5d:61:f8:3e:8f:b5:28:
89:07:d3:7b:e1:24:ed:21:52:c8:f1:99:38:bb:aa:a6:1c:82:
a5:4b:29:75:4c:98:ca:ac:d2:1e:bf:8f:a7:da:5a:28:10:17:
22:4a:4a:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:49:26 2024 by rpki-client on console-ams.rpki-client.org