Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/GKNgdd9jYHcC1S8RFxXlbnWpY0w.roa
File: GKNgdd9jYHcC1S8RFxXlbnWpY0w.roa (raw, json)
Hash identifier: QADlBdm2ARzvHVGueq5iP3nAIn44f65My5a4HbjF8SI=
Subject key identifier: 18:A3:60:75:DF:63:60:77:02:D5:2F:11:17:15:E5:6E:75:A9:63:4C
Certificate issuer: /CN=c378bc3bd350eedc4f377c224556b250da6dde6f
Certificate serial: 018C4B8CFED6F9D094F220F1536505841AAB
Authority key identifier: C3:78:BC:3B:D3:50:EE:DC:4F:37:7C:22:45:56:B2:50:DA:6D:DE:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w3i8O9NQ7txPN3wiRVayUNpt3m8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/GKNgdd9jYHcC1S8RFxXlbnWpY0w.roa
Signing time: Fri 08 Dec 2023 22:29:40 +0000
ROA not before: Fri 08 Dec 2023 22:29:40 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 54825
IP address blocks: 77.37.84.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:29:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:4b:8c:fe:d6:f9:d0:94:f2:20:f1:53:65:05:84:1a:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c378bc3bd350eedc4f377c224556b250da6dde6f
Validity
Not Before: Dec 8 22:29:40 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=18a36075df63607702d52f111715e56e75a9634c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:15:9e:f2:f1:29:94:e6:96:ac:8a:0f:8f:bd:
28:05:4e:a8:4f:4e:06:42:ef:d9:6a:0f:e3:ab:dd:
f1:9e:1a:fd:ad:82:90:c8:ad:cb:48:eb:3e:86:6a:
23:da:76:ec:fd:a3:ae:ed:13:24:71:01:b7:11:38:
d1:53:72:da:d1:58:5b:b3:12:1a:92:66:a2:60:1f:
d2:25:80:89:7d:97:2e:7c:95:cb:97:2c:1f:43:97:
e7:e2:ff:27:8c:48:f8:0b:6d:86:84:8d:97:1d:b4:
12:ab:62:eb:08:1a:fd:8b:2c:92:c7:30:9b:fa:e8:
a1:dd:54:09:d5:c7:49:b1:c1:71:5c:55:8a:b9:e0:
7e:ed:79:0a:49:96:0d:c5:75:ce:3c:e4:66:60:a5:
ff:cc:de:02:d0:ee:be:7e:af:f5:3a:48:e3:1c:d5:
0b:c9:0f:3f:ae:b2:54:3e:6d:45:d9:c4:c4:12:17:
91:11:6b:41:e3:8d:f3:1c:25:de:12:3c:b5:cc:f7:
aa:0f:11:4e:0a:16:96:e8:47:cc:58:4f:fb:58:93:
37:31:54:23:cd:0d:9b:b9:96:9d:6f:e4:09:38:d7:
c1:f8:8a:1e:0d:67:48:14:d3:55:78:8c:8e:b2:d7:
9f:1b:cd:14:05:39:9a:a2:55:c6:b8:44:b7:30:38:
99:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:A3:60:75:DF:63:60:77:02:D5:2F:11:17:15:E5:6E:75:A9:63:4C
X509v3 Authority Key Identifier:
keyid:C3:78:BC:3B:D3:50:EE:DC:4F:37:7C:22:45:56:B2:50:DA:6D:DE:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w3i8O9NQ7txPN3wiRVayUNpt3m8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/GKNgdd9jYHcC1S8RFxXlbnWpY0w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/w3i8O9NQ7txPN3wiRVayUNpt3m8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.37.84.0/24
Signature Algorithm: sha256WithRSAEncryption
be:87:1c:0a:c7:c9:6f:d7:59:8a:a9:24:32:cb:80:09:0e:bc:
cb:2f:e8:ad:f6:fc:9b:e6:ed:08:f2:b3:88:d9:92:2c:31:34:
e2:24:cd:79:50:4e:1a:7e:3e:35:29:d1:bc:79:d7:da:0f:fb:
6b:39:8a:29:c8:1f:2a:80:f8:16:26:0d:58:2f:f5:83:3f:2c:
d1:34:71:f9:25:84:df:67:d1:35:13:9a:e3:fe:72:e2:71:bc:
6a:e6:ca:1c:86:9c:12:da:34:f5:9d:c2:ac:9d:1c:32:ad:e9:
b1:57:80:01:ce:93:7e:44:8b:a0:8e:6e:de:a3:a2:da:8d:34:
3d:3a:02:5d:23:cc:ac:d3:74:59:12:71:77:d4:9d:0c:3b:28:
a1:32:8b:9e:af:b2:ae:fa:c4:44:19:09:b3:84:06:a0:57:76:
00:23:b6:1e:d4:ed:88:1e:25:d3:59:8c:de:24:db:8f:a0:fb:
65:82:34:04:24:d5:88:2e:d3:a2:a1:24:ec:a6:d1:02:9b:a4:
3a:d5:58:b8:ef:62:cf:a8:cf:db:14:04:b7:a6:3a:5a:31:3b:
f8:4b:da:94:d4:02:bf:05:81:50:e0:85:b6:c2:94:c0:84:a1:
62:72:94:f1:45:27:ab:0a:e0:00:4f:e1:d0:93:36:84:4a:bf:
40:99:a1:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:04 2024 by rpki-client on console-ams.rpki-client.org