Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/Z1cAPqraPoqHqgiGXwHW-PidfSY.roa
File: Z1cAPqraPoqHqgiGXwHW-PidfSY.roa (raw, json)
Hash identifier: OKlgFocxdTFBIGXpISoDQlnygAm+TSYLukPcBdbxEok=
Subject key identifier: 67:57:00:3E:AA:DA:3E:8A:87:AA:08:86:5F:01:D6:F8:F8:9D:7D:26
Certificate issuer: /CN=c378bc3bd350eedc4f377c224556b250da6dde6f
Certificate serial: 018C4B9192DF4556555A13862C6A3767BB05
Authority key identifier: C3:78:BC:3B:D3:50:EE:DC:4F:37:7C:22:45:56:B2:50:DA:6D:DE:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w3i8O9NQ7txPN3wiRVayUNpt3m8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/Z1cAPqraPoqHqgiGXwHW-PidfSY.roa
Signing time: Fri 08 Dec 2023 22:34:40 +0000
ROA not before: Fri 08 Dec 2023 22:34:40 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204471
IP address blocks: 77.37.29.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 10 Dec 2023 10:40:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:4b:91:92:df:45:56:55:5a:13:86:2c:6a:37:67:bb:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c378bc3bd350eedc4f377c224556b250da6dde6f
Validity
Not Before: Dec 8 22:34:40 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6757003eaada3e8a87aa08865f01d6f8f89d7d26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:d3:59:ab:0f:0a:49:5b:c5:25:dd:c8:df:e0:
82:1a:73:ce:c9:0e:f1:f4:3d:9a:a1:41:d3:41:85:
eb:2b:18:16:88:ab:1c:47:26:b3:64:ee:26:96:b1:
2d:2b:99:70:72:16:0d:8f:5d:3d:ea:d2:e8:f5:86:
c9:1d:a1:b5:a1:f2:44:29:13:72:2b:79:f9:81:1f:
a5:2b:24:84:26:dd:f6:fe:7b:34:4c:b7:9a:6f:19:
27:49:3a:dc:15:6b:02:87:52:23:84:bf:14:bd:15:
58:55:33:68:8e:1d:44:67:b3:88:ff:18:fe:80:4c:
86:b2:72:58:10:ef:4f:d1:6b:c6:c3:77:24:d8:a3:
b0:c7:0a:a7:59:8b:37:24:cc:0c:1f:e3:fc:7f:98:
82:6a:08:46:fc:ff:12:04:79:8d:45:0c:51:d4:c1:
7b:41:d2:cf:99:84:e4:46:77:05:9f:7c:7a:c1:99:
d6:10:b1:26:a6:03:b7:93:e2:9a:9c:af:ee:6b:21:
a3:bc:19:45:69:1d:77:47:d8:c6:38:99:4b:d1:70:
1c:2a:01:a5:a3:a9:af:b1:01:7f:42:21:68:f5:38:
29:35:83:0c:91:db:81:38:db:43:32:01:5e:30:08:
0b:90:e3:ba:d7:ef:e6:c1:32:32:98:29:74:33:9f:
dc:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:57:00:3E:AA:DA:3E:8A:87:AA:08:86:5F:01:D6:F8:F8:9D:7D:26
X509v3 Authority Key Identifier:
keyid:C3:78:BC:3B:D3:50:EE:DC:4F:37:7C:22:45:56:B2:50:DA:6D:DE:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w3i8O9NQ7txPN3wiRVayUNpt3m8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/Z1cAPqraPoqHqgiGXwHW-PidfSY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/w3i8O9NQ7txPN3wiRVayUNpt3m8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.37.29.0/24
Signature Algorithm: sha256WithRSAEncryption
01:c0:26:18:99:cc:77:ee:e8:25:6a:23:6a:d6:c5:cb:94:0a:
93:31:6b:3d:c2:ed:65:82:d1:b1:1f:8c:c8:45:9c:4b:db:02:
0a:17:01:ef:e0:ed:40:63:a4:e6:71:35:64:2e:a3:89:db:bc:
59:1b:42:0d:b2:43:94:50:b2:a9:4f:63:3a:1a:f8:62:67:f0:
3d:b1:ce:6c:8c:ef:7c:d2:5a:7c:b7:34:81:f3:ed:ee:4e:dc:
19:6d:81:15:19:30:72:ce:25:27:b6:ee:ea:2d:b4:50:21:ac:
93:f1:4b:86:13:28:13:b3:7d:4a:36:68:0c:14:c1:dd:cd:61:
86:a6:b6:9d:ed:1b:3f:54:b3:50:a2:9c:63:cb:0b:83:7f:47:
21:34:ca:70:3d:5f:39:ce:20:3a:40:51:e8:40:53:47:90:57:
c5:be:28:dc:ae:08:a3:56:29:4f:2f:82:46:88:39:4f:8b:81:
c4:16:1a:c4:02:34:00:62:3b:7c:c8:91:2c:08:3f:68:bb:46:
44:d1:77:51:94:f8:b2:e2:a7:0e:08:dd:f4:15:3a:95:0a:2d:
e3:ff:15:3e:39:8e:5c:0d:ae:a7:d7:6d:79:6c:3b:c1:23:9d:
dd:74:d8:d1:3b:bf:2a:3e:60:9a:46:51:67:4d:93:f7:50:47:
ee:88:74:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:00 2024 by rpki-client on console-fra.rpki-client.org