Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/Ew8FqfRTZ4tdalMb00dgLvrpMBg.roa
File: Ew8FqfRTZ4tdalMb00dgLvrpMBg.roa (raw, json)
Hash identifier: K0mOc7APr9N2BUlTtl1/AvWwtHwJvhKJzpNXlCUbPMM=
Subject key identifier: 13:0F:05:A9:F4:53:67:8B:5D:6A:53:1B:D3:47:60:2E:FA:E9:30:18
Certificate issuer: /CN=c378bc3bd350eedc4f377c224556b250da6dde6f
Certificate serial: 018C4B919315A15E57A227BAF91C69290CE8
Authority key identifier: C3:78:BC:3B:D3:50:EE:DC:4F:37:7C:22:45:56:B2:50:DA:6D:DE:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w3i8O9NQ7txPN3wiRVayUNpt3m8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/Ew8FqfRTZ4tdalMb00dgLvrpMBg.roa
Signing time: Fri 08 Dec 2023 22:34:40 +0000
ROA not before: Fri 08 Dec 2023 22:34:40 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213202
IP address blocks: 77.37.96.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:29:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:4b:91:93:15:a1:5e:57:a2:27:ba:f9:1c:69:29:0c:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c378bc3bd350eedc4f377c224556b250da6dde6f
Validity
Not Before: Dec 8 22:34:40 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=130f05a9f453678b5d6a531bd347602efae93018
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:41:6d:2b:e9:c2:83:55:e4:f8:c4:0e:7e:4d:
58:a4:c4:db:4a:5e:36:90:6e:73:cc:95:64:ff:16:
00:ad:bd:56:02:04:21:f5:6b:4e:32:09:c5:48:92:
6d:bc:bf:c8:7c:89:36:1c:18:f5:ac:34:60:33:15:
1b:ea:ab:6c:60:e5:42:cf:e9:a0:45:f2:5b:be:b0:
7b:b9:0b:c8:f8:25:e2:d2:6b:f9:48:b8:6e:86:ca:
29:d5:3e:f2:15:24:a5:c5:81:e1:74:9e:f7:1e:20:
c9:68:46:df:3a:51:c5:27:ce:21:88:e5:b7:ed:ba:
59:17:4a:6f:c5:31:0f:13:d0:da:74:c7:a9:ed:5f:
2f:24:44:2a:f4:f3:fa:07:9f:91:f0:db:ed:89:32:
df:2f:e2:e9:29:d1:c4:ef:a8:08:87:2e:fc:5a:c9:
8e:b4:3d:de:50:75:c4:46:d0:31:4e:33:fb:72:64:
c9:1d:bb:44:33:1d:52:72:d2:13:d4:2e:5f:e8:ff:
7f:16:2a:db:da:5e:fb:c7:d0:b4:e6:f1:14:aa:90:
f4:3e:5a:02:6a:db:3a:02:a3:39:48:63:06:75:d4:
99:df:26:35:51:f5:77:38:34:cd:8f:4e:53:38:7b:
a3:fc:60:3d:93:25:a6:09:22:5c:1c:6e:68:33:12:
83:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:0F:05:A9:F4:53:67:8B:5D:6A:53:1B:D3:47:60:2E:FA:E9:30:18
X509v3 Authority Key Identifier:
keyid:C3:78:BC:3B:D3:50:EE:DC:4F:37:7C:22:45:56:B2:50:DA:6D:DE:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w3i8O9NQ7txPN3wiRVayUNpt3m8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/Ew8FqfRTZ4tdalMb00dgLvrpMBg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/w3i8O9NQ7txPN3wiRVayUNpt3m8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.37.96.0/23
Signature Algorithm: sha256WithRSAEncryption
4c:6f:92:4a:08:3e:21:d5:7e:46:22:4e:c2:9a:c8:40:4c:3b:
a2:b4:28:d5:55:35:30:91:6f:f1:6a:d4:2d:35:ea:12:87:00:
09:09:aa:9e:d6:c1:2b:c6:bf:2f:e5:80:26:78:35:14:fe:93:
99:50:2e:8c:44:93:dc:91:2d:14:96:b5:d0:45:0b:ba:96:f2:
9f:3b:dd:8a:4d:04:87:35:0c:64:4f:cd:53:af:75:30:fc:5e:
e5:be:b9:bc:f7:a1:34:01:d7:d9:67:46:02:c4:19:c6:12:1e:
f9:c8:f5:f3:93:21:20:c6:ab:a4:b0:55:f4:48:67:80:1d:82:
fe:ac:85:80:c9:c7:0b:b5:d3:0b:c8:17:59:23:18:9f:9e:cd:
43:3c:7c:9c:37:3b:b3:8f:51:2f:39:c9:db:99:8d:25:f5:a2:
68:81:0c:b1:2b:28:b4:58:e8:25:e7:73:6f:65:43:a6:7b:7d:
37:25:f6:8e:e1:84:cd:6d:76:e2:e7:b9:20:7b:b6:5b:f0:2f:
f5:c9:06:d6:b4:99:3c:19:02:21:22:aa:a2:a5:77:68:bd:9a:
51:40:66:e0:12:4b:ee:b2:a3:cc:6e:bf:e0:83:90:f4:95:ee:
28:80:95:ba:f8:12:8e:30:f4:b3:06:6d:81:d8:c1:8b:b2:ea:
86:58:cb:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:00 2024 by rpki-client on console-fra.rpki-client.org