Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/38136c-db51-4f70-ad8b-654505a2d045/1/fysfcibgxzoGy-duhmHenUJ3fX4.roa
File: fysfcibgxzoGy-duhmHenUJ3fX4.roa (raw, json)
Hash identifier: eatJ6tIlfKQMYZw+lI+FmWfrMPKJhTXZVwrhqe69NXo=
Subject key identifier: 7F:2B:1F:72:26:E0:C7:3A:06:CB:E7:6E:86:61:DE:9D:42:77:7D:7E
Certificate issuer: /CN=d703642076d27e252fa90bf1a4296f8bcd9d0cf1
Certificate serial: 01856C65E2D21B3663A8B4AB3FD8FFDCAE15
Authority key identifier: D7:03:64:20:76:D2:7E:25:2F:A9:0B:F1:A4:29:6F:8B:CD:9D:0C:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1wNkIHbSfiUvqQvxpClvi82dDPE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/38136c-db51-4f70-ad8b-654505a2d045/1/fysfcibgxzoGy-duhmHenUJ3fX4.roa
Signing time: Sun 01 Jan 2023 08:14:54 +0000
ROA not before: Sun 01 Jan 2023 08:14:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197248
IP address blocks: 77.221.51.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:65:e2:d2:1b:36:63:a8:b4:ab:3f:d8:ff:dc:ae:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d703642076d27e252fa90bf1a4296f8bcd9d0cf1
Validity
Not Before: Jan 1 08:14:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7f2b1f7226e0c73a06cbe76e8661de9d42777d7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:53:3d:c0:99:a4:64:b9:c5:27:80:f4:d7:a2:
28:3c:32:bc:64:0d:1f:08:ca:14:2b:ca:d5:62:bd:
3e:9b:dc:33:19:05:68:8f:51:81:c0:20:9f:23:7d:
32:a0:5a:24:f8:ff:15:e5:52:1f:bb:53:c0:45:d8:
46:87:50:12:0a:d0:4b:4a:ae:a6:42:44:2e:c7:c4:
68:20:c4:47:ab:55:a8:92:5b:cd:c3:7a:84:ae:d7:
fa:44:52:b7:d8:1e:fa:b1:b7:05:93:a6:b1:c7:e0:
a5:e8:87:24:09:93:d4:f2:b8:5b:8c:ac:20:b6:36:
de:28:41:17:4c:65:c4:17:39:62:00:43:f1:bd:5f:
f7:f1:bc:27:93:ea:1e:04:6e:a2:ed:52:d7:92:05:
4f:fd:c2:93:c4:1a:7e:e0:40:a1:86:f1:b5:6c:d7:
48:c8:e3:20:cf:0c:59:bd:6d:90:5a:74:35:78:29:
1d:75:6a:f3:3e:dc:6c:95:80:5a:3a:00:13:61:07:
d5:d1:74:d5:20:62:8f:88:35:2d:dd:cd:fc:91:67:
38:e4:b4:fb:d6:1e:22:38:1f:2d:2c:68:ea:58:ea:
88:3f:0b:ab:50:06:21:dd:22:2e:2f:f1:95:d8:e3:
af:c1:0d:92:4b:d1:c4:a9:74:68:c7:c7:b2:c0:36:
8c:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:2B:1F:72:26:E0:C7:3A:06:CB:E7:6E:86:61:DE:9D:42:77:7D:7E
X509v3 Authority Key Identifier:
keyid:D7:03:64:20:76:D2:7E:25:2F:A9:0B:F1:A4:29:6F:8B:CD:9D:0C:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1wNkIHbSfiUvqQvxpClvi82dDPE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/38136c-db51-4f70-ad8b-654505a2d045/1/fysfcibgxzoGy-duhmHenUJ3fX4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/38136c-db51-4f70-ad8b-654505a2d045/1/1wNkIHbSfiUvqQvxpClvi82dDPE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.221.51.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:88:1e:5f:b2:3d:5f:d0:38:63:c2:5f:59:80:72:66:50:99:
c8:e5:b2:4c:60:29:3d:c9:af:3b:9e:d7:4e:88:83:15:5d:90:
f6:58:a7:d0:a6:3d:db:6f:ad:ad:9b:77:cb:c7:25:da:60:10:
3b:09:34:26:a8:ba:d8:53:49:5f:a5:f7:46:32:9c:33:75:de:
84:37:cc:48:a1:d1:69:19:1b:ff:dc:5f:29:88:ba:4a:92:ee:
e2:8d:30:1d:a4:00:03:b3:8c:b3:22:b3:2d:f0:71:4f:fe:11:
12:21:8e:3a:82:f3:38:66:d3:b6:97:f7:d8:41:dd:7e:64:22:
45:24:e7:7d:13:06:e1:24:bd:72:e0:af:00:be:1d:8f:6d:23:
c1:b5:fa:00:5b:dc:12:ac:8d:7d:7c:66:68:bd:9a:55:26:10:
a3:23:bf:a7:4f:d2:cd:7d:9e:60:48:74:49:f4:f2:62:6b:3a:
57:c0:92:3a:8b:ed:e7:16:78:bb:c0:cc:47:20:70:39:a0:71:
53:d2:bc:3e:ce:04:0f:90:8a:63:02:7e:b1:88:49:78:4d:51:
fa:12:77:ae:27:6a:52:55:ef:55:18:1f:ae:10:7b:c3:89:41:
c9:84:09:ee:30:db:ea:e4:6e:f0:05:85:cc:08:ec:0a:20:d1:
0c:04:98:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 14:16:31 2024 by rpki-client on console.sobornost.net