Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/a9af0e-e91a-4f1c-b72c-1e2b1c87d317/1/qiDMaYm3dcIxAEw3W3oojAVTynA.roa
File: qiDMaYm3dcIxAEw3W3oojAVTynA.roa (raw, json)
Hash identifier: FUtQo8xwiUpgTDMKXcAoZrHY899BGIgKzb67O1rl8ig=
Subject key identifier: AA:20:CC:69:89:B7:75:C2:31:00:4C:37:5B:7A:28:8C:05:53:CA:70
Certificate issuer: /CN=0a39f9a00278e69d1b3dddaa0bf0cd17d2e66708
Certificate serial: 0186A1EDC3D687E9F4C617B4CA2FC8F9F88C
Authority key identifier: 0A:39:F9:A0:02:78:E6:9D:1B:3D:DD:AA:0B:F0:CD:17:D2:E6:67:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Cjn5oAJ45p0bPd2qC_DNF9LmZwg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/a9af0e-e91a-4f1c-b72c-1e2b1c87d317/1/qiDMaYm3dcIxAEw3W3oojAVTynA.roa
Signing time: Thu 02 Mar 2023 10:45:59 +0000
ROA not before: Thu 02 Mar 2023 10:45:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8866
IP address blocks: 77.76.16.0/20 maxlen: 24
77.76.32.0/19 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:a1:ed:c3:d6:87:e9:f4:c6:17:b4:ca:2f:c8:f9:f8:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a39f9a00278e69d1b3dddaa0bf0cd17d2e66708
Validity
Not Before: Mar 2 10:45:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=aa20cc6989b775c231004c375b7a288c0553ca70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:c1:e1:97:ee:54:b3:bf:1d:7d:c8:25:75:31:
a7:7a:44:fd:34:9a:4d:60:bd:fb:70:c8:76:08:8e:
f2:ff:c3:07:4d:2d:5b:c9:6d:28:a0:31:bc:29:e7:
75:6a:43:9d:74:b1:75:23:24:2b:20:81:e9:b3:c2:
14:9b:08:3c:2d:ca:b8:16:fb:a7:ad:25:cc:08:57:
44:61:b4:f0:d8:85:66:07:65:e1:87:f5:dd:1b:b0:
71:01:6f:15:cf:e4:b4:be:9b:e4:36:d7:4e:9a:55:
4d:ea:a1:87:54:a4:c3:a3:2d:be:7a:99:3e:22:bd:
65:c6:66:fc:4b:1d:98:77:35:6f:4a:6d:64:60:30:
39:c5:72:f2:b8:c8:7f:15:b3:15:21:24:1f:32:bc:
6b:51:cd:be:4d:2d:d8:f8:59:ac:bf:6a:21:c9:31:
ed:a4:4e:a7:16:4f:4e:bb:17:84:eb:d1:c3:08:cf:
77:36:c8:77:f0:26:7e:e9:76:d4:db:c5:0a:41:20:
10:14:41:64:76:1d:db:4e:50:1a:94:e9:c7:f7:4b:
eb:bb:1c:4e:63:50:1c:59:49:ae:ad:07:96:4a:fd:
cd:48:bc:9c:3a:3f:da:01:a9:67:46:8e:b2:55:6b:
1e:1f:32:b7:3e:13:bd:0a:60:12:f1:de:d6:74:30:
b3:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:20:CC:69:89:B7:75:C2:31:00:4C:37:5B:7A:28:8C:05:53:CA:70
X509v3 Authority Key Identifier:
keyid:0A:39:F9:A0:02:78:E6:9D:1B:3D:DD:AA:0B:F0:CD:17:D2:E6:67:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Cjn5oAJ45p0bPd2qC_DNF9LmZwg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/a9af0e-e91a-4f1c-b72c-1e2b1c87d317/1/qiDMaYm3dcIxAEw3W3oojAVTynA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/a9af0e-e91a-4f1c-b72c-1e2b1c87d317/1/Cjn5oAJ45p0bPd2qC_DNF9LmZwg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.76.16.0-77.76.63.255
Signature Algorithm: sha256WithRSAEncryption
a1:91:0d:ed:4f:61:87:2e:c5:4b:32:70:8c:e5:0f:ff:bb:7b:
e5:a5:64:4e:0b:ed:69:1f:e5:25:f2:98:2e:3f:d8:79:3b:49:
72:60:a1:ca:67:db:27:c9:ca:22:31:a1:62:ed:d9:b8:47:f4:
86:52:89:87:2e:c0:fd:06:30:cb:d4:22:b2:a7:7e:43:62:89:
94:ba:c4:1a:a7:d5:56:4c:05:0c:b9:b0:74:e9:55:ca:36:63:
ed:92:c6:73:7d:0b:cc:a9:53:e8:84:d7:e9:3c:b5:06:0e:5d:
1a:d6:79:10:07:f9:05:e5:9c:ae:3d:87:62:31:4e:a2:45:f4:
6e:93:86:3a:71:aa:bc:6c:af:b9:33:36:17:d1:a2:16:53:49:
81:96:7b:b0:40:09:19:98:c9:de:16:4d:06:f4:55:45:50:89:
ec:5b:52:50:54:6f:32:71:b5:c0:d6:be:ff:bd:d6:94:68:11:
c6:71:0b:ac:ec:7a:1b:56:97:f3:d2:e9:81:f3:88:17:52:26:
c3:2d:c9:47:b3:c5:62:fa:4b:d3:e7:1b:6e:58:7e:55:04:be:
33:6f:1a:1b:b3:d6:7a:cc:cb:26:e3:87:11:1a:ce:46:b1:5d:
af:fc:6d:e4:96:85:fe:77:c3:ec:17:4b:2a:c4:10:05:e6:96:
8d:dc:06:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 14:16:09 2024 by rpki-client on console.sobornost.net