Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/38136c-db51-4f70-ad8b-654505a2d045/1/j6PnToLmLFpboahfz4vL2hSn_TA.roa
File: j6PnToLmLFpboahfz4vL2hSn_TA.roa (raw, json)
Hash identifier: Y7guF3FJjrGaF4AY342zBhnFSF7jRQ52fv7+HG9oIo0=
Subject key identifier: 8F:A3:E7:4E:82:E6:2C:5A:5B:A1:A8:5F:CF:8B:CB:DA:14:A7:FD:30
Certificate issuer: /CN=d703642076d27e252fa90bf1a4296f8bcd9d0cf1
Certificate serial: 01856C65E0902298881A4E1D079D670A1999
Authority key identifier: D7:03:64:20:76:D2:7E:25:2F:A9:0B:F1:A4:29:6F:8B:CD:9D:0C:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1wNkIHbSfiUvqQvxpClvi82dDPE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/38136c-db51-4f70-ad8b-654505a2d045/1/j6PnToLmLFpboahfz4vL2hSn_TA.roa
Signing time: Sun 01 Jan 2023 08:14:53 +0000
ROA not before: Sun 01 Jan 2023 08:14:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30836
IP address blocks: 77.221.58.0/23 maxlen: 23
77.221.60.0/23 maxlen: 23
77.221.63.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:65:e0:90:22:98:88:1a:4e:1d:07:9d:67:0a:19:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d703642076d27e252fa90bf1a4296f8bcd9d0cf1
Validity
Not Before: Jan 1 08:14:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8fa3e74e82e62c5a5ba1a85fcf8bcbda14a7fd30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:11:20:b1:48:74:95:e6:c2:53:98:cc:5c:29:
a4:50:7a:a7:b1:6e:c4:81:30:3e:99:5a:7c:68:e1:
53:22:6b:b7:e5:45:11:ba:79:7f:97:90:a6:f1:a0:
6b:e8:3e:54:e6:83:47:a1:14:df:f5:45:1c:4b:91:
2d:f3:2d:5e:88:52:a2:aa:bf:a7:b6:0c:0f:14:1b:
af:c5:12:19:c7:16:1c:83:90:77:e7:5b:d6:d1:ea:
5c:ce:54:df:0b:87:58:ea:20:e8:34:55:86:f0:21:
3c:77:bb:25:62:61:28:95:7b:d0:42:e5:be:7c:cd:
6f:e9:20:7b:f5:cd:b1:ed:3d:c1:45:5d:0d:fb:77:
b3:0e:fc:e1:df:54:97:e4:a9:14:93:ae:14:9f:78:
cd:c4:02:86:84:2b:69:b0:e2:fb:f1:42:54:dc:c1:
25:8a:7e:f4:53:4a:e6:7f:eb:4c:f3:96:dc:df:48:
9d:31:23:85:2a:72:8a:d7:3e:c8:40:6f:c2:4e:eb:
74:4e:ec:ec:e8:b9:6b:f6:c9:ff:f7:ff:a8:8f:fb:
a1:df:c7:69:f5:5c:54:17:a0:f1:d5:c6:fc:ba:9f:
21:42:53:72:a6:03:38:96:8b:cd:35:ec:25:0a:ed:
bc:f0:ff:ab:3b:de:ff:d7:62:3d:20:39:72:e5:94:
04:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:A3:E7:4E:82:E6:2C:5A:5B:A1:A8:5F:CF:8B:CB:DA:14:A7:FD:30
X509v3 Authority Key Identifier:
keyid:D7:03:64:20:76:D2:7E:25:2F:A9:0B:F1:A4:29:6F:8B:CD:9D:0C:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1wNkIHbSfiUvqQvxpClvi82dDPE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/38136c-db51-4f70-ad8b-654505a2d045/1/j6PnToLmLFpboahfz4vL2hSn_TA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/38136c-db51-4f70-ad8b-654505a2d045/1/1wNkIHbSfiUvqQvxpClvi82dDPE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.221.58.0-77.221.61.255
77.221.63.0/24
Signature Algorithm: sha256WithRSAEncryption
38:06:8c:59:6b:1e:5b:63:df:be:16:6f:03:4c:7b:83:ce:5f:
7a:0b:ce:83:33:00:b1:07:5d:2e:67:75:69:4d:09:e5:d1:36:
3d:e8:63:99:73:96:93:ea:e9:16:e3:ee:30:cb:ae:1b:07:70:
a7:fb:9a:06:6f:fe:70:ee:73:a0:d3:42:09:95:c6:1e:0b:af:
a6:b4:e4:b2:3b:6b:a4:09:29:25:34:3b:a5:8b:8b:29:2b:3f:
85:dc:59:6f:eb:07:ea:3b:bd:a1:a9:30:47:e0:dc:19:a4:54:
ef:29:e7:b0:73:a0:7b:f8:87:c3:0f:42:3d:dd:e1:44:8e:63:
b2:bc:fb:f0:af:57:01:47:a8:d9:c9:1f:9f:22:40:96:27:94:
bd:f0:e8:e0:71:7a:38:25:18:bf:18:63:13:49:12:0b:18:04:
ab:09:3f:fb:97:72:be:0d:73:0a:10:de:52:d1:aa:78:8d:9c:
7b:b0:b7:35:89:c2:a1:c3:b7:fd:27:db:62:c0:af:c3:b2:01:
68:59:7d:cf:45:0a:ce:0f:ec:ea:8d:6a:8f:ae:ad:2a:55:92:
84:ac:0c:b9:4a:ed:0b:70:f1:4a:0e:29:fa:93:36:11:05:b5:
5e:e9:a1:80:ed:08:c8:06:a3:0a:ca:42:9b:a7:27:40:d8:12:
03:68:6c:57
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Tue Jan 2 14:16:31 2024 by rpki-client on console.sobornost.net