Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/lj0olTMRh8jRKpTycemjIRxCaYQ.roa
File: lj0olTMRh8jRKpTycemjIRxCaYQ.roa (raw, json)
Hash identifier: 9lnqgPigX7fZX4WTwulgikP++NV7uZFIJfn+Jp/cMWU=
Subject key identifier: 96:3D:28:95:33:11:87:C8:D1:2A:94:F2:71:E9:A3:21:1C:42:69:84
Certificate issuer: /CN=c378bc3bd350eedc4f377c224556b250da6dde6f
Certificate serial: 018E7ED4490B49B459102D86B51FA2BB6878
Authority key identifier: C3:78:BC:3B:D3:50:EE:DC:4F:37:7C:22:45:56:B2:50:DA:6D:DE:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w3i8O9NQ7txPN3wiRVayUNpt3m8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/lj0olTMRh8jRKpTycemjIRxCaYQ.roa
Signing time: Wed 27 Mar 2024 07:33:45 +0000
ROA not before: Wed 27 Mar 2024 07:33:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 46475
IP address blocks: 77.37.64.0/23 maxlen: 23
77.37.64.0/24 maxlen: 24
77.37.65.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 10 Apr 2024 14:50:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:7e:d4:49:0b:49:b4:59:10:2d:86:b5:1f:a2:bb:68:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c378bc3bd350eedc4f377c224556b250da6dde6f
Validity
Not Before: Mar 27 07:33:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=963d2895331187c8d12a94f271e9a3211c426984
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:4a:ea:9a:f4:58:fd:06:ae:fe:ca:76:52:a6:
e3:ac:69:7e:f5:77:a5:d8:d1:07:f7:5c:b8:e8:c0:
15:a8:07:3d:99:f6:e6:8c:84:47:6e:4c:81:6c:40:
47:90:0d:a7:21:06:09:dd:45:38:1d:a2:12:02:d5:
96:e0:64:c2:22:17:b9:8f:de:1a:1b:29:33:39:f2:
5d:bc:4b:50:d8:0b:3f:b7:6b:fd:fb:f2:e0:7b:c7:
2e:35:29:53:ee:5a:53:18:e3:7c:5b:47:d3:fd:f4:
c6:33:2e:86:f5:59:30:1f:76:b6:8f:e7:bf:46:87:
31:15:37:f1:de:94:e0:d3:9d:e7:87:36:76:98:fc:
8d:c9:6d:e8:a6:4f:2f:e3:8a:2e:97:49:df:3c:4e:
46:6d:60:b4:c4:04:40:f5:ef:2d:1f:ce:fc:9d:84:
38:fc:c6:47:74:36:96:70:32:e2:57:4a:9d:b5:e1:
24:7f:8b:2d:6f:91:cd:a9:ab:78:38:cf:cb:bf:c0:
ee:87:7f:98:0f:ec:61:7e:e8:de:35:08:f0:cd:39:
50:6e:63:a6:af:56:68:3c:90:07:b4:6f:e8:4f:59:
9d:11:9b:f1:0e:2e:d9:63:ff:4c:e0:db:39:3b:98:
b2:4b:62:4d:78:1d:60:27:bc:f6:5b:18:7a:29:57:
0d:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:3D:28:95:33:11:87:C8:D1:2A:94:F2:71:E9:A3:21:1C:42:69:84
X509v3 Authority Key Identifier:
keyid:C3:78:BC:3B:D3:50:EE:DC:4F:37:7C:22:45:56:B2:50:DA:6D:DE:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w3i8O9NQ7txPN3wiRVayUNpt3m8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/lj0olTMRh8jRKpTycemjIRxCaYQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/w3i8O9NQ7txPN3wiRVayUNpt3m8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.37.64.0/23
Signature Algorithm: sha256WithRSAEncryption
bb:03:1f:74:2e:01:31:b4:22:71:d9:b7:80:f5:2a:d1:bd:ef:
0a:a8:e4:3c:43:f5:e8:36:4c:d1:fd:a8:66:bd:f2:15:55:a4:
d8:b8:67:7d:62:0c:5f:85:4e:78:7f:1c:1b:1a:93:65:7e:0b:
74:60:23:a6:7d:ae:2f:e9:a8:9d:99:43:02:26:db:67:d9:e4:
5f:7e:94:52:a7:76:7c:a0:c0:40:8d:23:2a:c2:05:d7:ba:4a:
e7:78:06:44:af:76:b2:71:cc:db:29:60:bf:87:ed:af:aa:15:
31:a4:9c:3f:28:5b:96:34:be:57:1c:61:b7:0e:e2:6e:2a:85:
e3:2e:ac:97:73:ce:9f:4a:bb:04:ae:79:da:40:9f:51:11:05:
8f:df:64:9d:86:98:0b:1b:18:48:c3:e3:3c:9c:d5:5f:c7:3a:
58:f5:68:f8:c1:dd:5f:df:53:30:70:68:a2:36:ae:12:95:cf:
f1:8e:7d:ec:77:9b:5e:38:ce:37:e1:40:26:66:1d:c7:51:6c:
2d:da:fc:3c:6e:66:83:71:b1:14:c7:ad:2e:a2:a2:a1:ac:87:
f7:78:d8:39:36:57:8b:d9:6d:7b:aa:2e:3d:b6:e3:57:17:62:
ef:e9:95:b4:ac:0c:25:4f:38:9c:13:3e:0f:9b:bd:1c:68:43:
61:3a:17:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:00 2024 by rpki-client on console-fra.rpki-client.org