Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/9e22a2-9365-4956-8e66-ce4f25ace252/1/yVL-jOgkoWKvpFKLHEUz3bNZofM.roa
File: yVL-jOgkoWKvpFKLHEUz3bNZofM.roa (raw, json)
Hash identifier: GTBSMvtpBO3rY3EsHhIzktsNvhOcTFeT6X4CFL+em/A=
Subject key identifier: C9:52:FE:8C:E8:24:A1:62:AF:A4:52:8B:1C:45:33:DD:B3:59:A1:F3
Certificate issuer: /CN=27ce1e9a6522616ab30b0f123e09d305a82304af
Certificate serial: 018572F12F065A281D72D168B81B24ECBDB7
Authority key identifier: 27:CE:1E:9A:65:22:61:6A:B3:0B:0F:12:3E:09:D3:05:A8:23:04:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J84emmUiYWqzCw8SPgnTBagjBK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/9e22a2-9365-4956-8e66-ce4f25ace252/1/yVL-jOgkoWKvpFKLHEUz3bNZofM.roa
Signing time: Mon 02 Jan 2023 14:44:46 +0000
ROA not before: Mon 02 Jan 2023 14:44:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39739
IP address blocks: 37.77.103.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:f1:2f:06:5a:28:1d:72:d1:68:b8:1b:24:ec:bd:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27ce1e9a6522616ab30b0f123e09d305a82304af
Validity
Not Before: Jan 2 14:44:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c952fe8ce824a162afa4528b1c4533ddb359a1f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:43:1d:17:3b:18:0a:9c:24:20:ff:96:ef:47:
f5:fd:56:c7:15:f8:87:36:f3:8b:a3:47:a8:94:f8:
e4:42:da:2c:93:4e:04:9b:cf:33:ba:39:e9:84:6f:
68:9d:f2:8a:0e:9b:c0:73:a0:09:1d:c4:01:01:9d:
99:e5:a4:4c:b4:c7:9b:2a:31:b6:f2:5b:5f:52:a9:
0c:c0:1d:28:88:fe:5c:2f:8f:8f:dc:6d:97:b7:b4:
fe:31:ed:f6:68:6d:55:6a:98:39:88:f7:64:67:85:
69:6f:70:d9:16:63:02:6b:a1:9a:23:92:f4:51:f3:
a5:84:a9:6d:db:fe:a1:cf:7f:b4:26:74:bb:b5:f6:
21:5f:0c:22:c7:a5:6a:f7:09:e4:b1:93:e0:5a:38:
01:b0:c5:9b:3f:c9:b6:2b:b1:16:b2:d6:96:c4:42:
19:a2:61:e9:f8:da:3e:83:c0:40:45:3a:5f:42:db:
db:ff:71:18:bd:05:b7:a8:18:43:25:61:d5:e9:b0:
40:8d:54:16:36:4b:80:28:6f:48:de:0e:dd:52:8d:
51:7a:a2:96:38:ee:82:9e:9b:8f:8d:bb:b8:2f:08:
72:de:94:fc:ba:96:a8:cf:42:87:cc:5d:18:e1:f0:
bd:86:09:1f:56:5d:bc:5c:21:8b:97:37:f0:dc:79:
a2:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:52:FE:8C:E8:24:A1:62:AF:A4:52:8B:1C:45:33:DD:B3:59:A1:F3
X509v3 Authority Key Identifier:
keyid:27:CE:1E:9A:65:22:61:6A:B3:0B:0F:12:3E:09:D3:05:A8:23:04:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J84emmUiYWqzCw8SPgnTBagjBK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/9e22a2-9365-4956-8e66-ce4f25ace252/1/yVL-jOgkoWKvpFKLHEUz3bNZofM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/9e22a2-9365-4956-8e66-ce4f25ace252/1/J84emmUiYWqzCw8SPgnTBagjBK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.77.103.0/24
Signature Algorithm: sha256WithRSAEncryption
80:18:af:be:9a:12:28:fb:c2:40:3e:21:b1:ed:a8:d9:38:80:
2f:54:37:c7:b9:3a:f8:aa:8c:05:8c:47:91:b9:ae:08:4f:fc:
8c:0d:e4:06:b1:b4:25:69:bf:c6:df:d9:54:67:73:c1:33:ab:
53:e9:e3:16:56:4c:5d:76:bd:63:bb:81:c2:7c:3e:63:66:c1:
d9:a8:43:40:ef:3f:39:36:0a:97:d1:83:40:6b:8b:98:4b:83:
06:10:12:9d:33:1f:8c:bc:5d:d7:a9:c9:c9:6f:50:aa:8f:ea:
11:96:e6:fd:a9:04:ee:d6:a0:9f:f6:ce:a8:26:aa:2b:1d:f3:
8f:fb:66:50:db:a4:62:ba:98:7f:70:7d:b0:dd:a9:30:af:f6:
a8:7d:98:18:6a:1d:52:69:f3:71:71:1b:d3:25:42:f9:c2:f5:
2b:70:dc:10:94:e0:7b:2a:5b:d5:0d:a7:00:6b:73:6f:a9:11:
c0:af:97:07:eb:2b:8d:47:57:48:7f:ce:96:d0:75:1f:c0:33:
a9:fb:22:09:d3:04:59:5e:ab:e4:cd:39:49:0f:dd:cf:c6:69:
f5:bf:a4:48:83:61:dc:32:49:6d:c1:20:9f:74:55:77:5d:25:
2b:db:cb:28:10:e4:b1:84:20:36:31:2f:25:aa:38:00:6c:26:
de:9f:13:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:10 2024 by rpki-client on console-fra.rpki-client.org