Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/e53de5-1b5f-4467-a68c-15fc0b68f844/1/kt9Iiupapd9VAMN0BVOgANDMEBc.roa
File: kt9Iiupapd9VAMN0BVOgANDMEBc.roa (raw, json)
Hash identifier: ozmxBXGi3J1YRt9gqPry3YOzpVDPP2Lipn9yqYDeoP8=
Subject key identifier: 92:DF:48:8A:EA:5A:A5:DF:55:00:C3:74:05:53:A0:00:D0:CC:10:17
Certificate issuer: /CN=da70c441fb892b8c9816534885069fcd3300c9a4
Certificate serial: 01894BBFD9B76D5E8D7BE3A208538B38166F
Authority key identifier: DA:70:C4:41:FB:89:2B:8C:98:16:53:48:85:06:9F:CD:33:00:C9:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2nDEQfuJK4yYFlNIhQafzTMAyaQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/e53de5-1b5f-4467-a68c-15fc0b68f844/1/kt9Iiupapd9VAMN0BVOgANDMEBc.roa
Signing time: Wed 12 Jul 2023 20:16:51 +0000
ROA not before: Wed 12 Jul 2023 20:16:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 52000
IP address blocks: 77.105.166.0/24 maxlen: 24
77.105.167.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:4b:bf:d9:b7:6d:5e:8d:7b:e3:a2:08:53:8b:38:16:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da70c441fb892b8c9816534885069fcd3300c9a4
Validity
Not Before: Jul 12 20:16:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=92df488aea5aa5df5500c3740553a000d0cc1017
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:90:70:77:83:00:5e:ee:b5:85:f6:c4:6e:e6:
d4:16:c4:42:fe:fa:7f:6a:b7:4c:35:41:c2:33:2b:
ad:76:23:40:4e:5e:cc:ed:dd:26:61:55:e4:49:13:
83:6d:b8:3c:4a:39:bc:81:c5:80:22:fd:08:61:72:
20:e3:4a:cb:57:5f:94:8a:05:ce:4e:41:b0:3b:22:
f5:19:b3:1d:c6:b4:b6:3f:75:e1:91:60:9d:23:26:
f8:b6:c4:0c:55:04:a6:d3:f3:f1:f9:33:68:96:23:
5b:0f:37:60:fb:43:38:24:4f:65:05:3c:5c:9f:6a:
6f:d2:20:33:0c:13:1b:f3:9c:a3:52:80:87:e3:61:
60:b3:04:37:86:68:f1:c6:aa:65:fb:93:85:8e:ed:
42:6b:d5:02:1b:9f:f6:04:c2:fd:cd:ef:3d:1f:e8:
9b:53:d3:87:6a:f2:a8:eb:b6:3e:75:e6:a7:d2:06:
b1:3d:49:d3:06:a1:2d:5c:89:cd:c3:d8:57:ee:02:
6a:ba:cd:bb:57:c1:75:9f:36:11:17:67:2c:2e:2a:
b1:1a:41:85:76:ed:5a:4d:d1:4f:88:bf:ca:9d:92:
ff:3d:f5:33:d5:44:5b:7c:b8:cf:09:4e:64:4d:2f:
1d:ae:02:29:1c:51:5b:97:30:f8:ae:c6:15:a2:ae:
ce:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:DF:48:8A:EA:5A:A5:DF:55:00:C3:74:05:53:A0:00:D0:CC:10:17
X509v3 Authority Key Identifier:
keyid:DA:70:C4:41:FB:89:2B:8C:98:16:53:48:85:06:9F:CD:33:00:C9:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2nDEQfuJK4yYFlNIhQafzTMAyaQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/e53de5-1b5f-4467-a68c-15fc0b68f844/1/kt9Iiupapd9VAMN0BVOgANDMEBc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/e53de5-1b5f-4467-a68c-15fc0b68f844/1/2nDEQfuJK4yYFlNIhQafzTMAyaQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.105.166.0/23
Signature Algorithm: sha256WithRSAEncryption
87:ac:1f:28:2e:97:60:5d:1b:fa:6d:2a:b2:80:0c:79:44:10:
eb:af:12:41:3f:2e:51:7e:50:73:44:b6:94:82:0c:51:e0:75:
38:72:2e:d7:54:99:a5:c7:04:f5:5c:b6:5b:c8:78:29:89:49:
2b:ca:4e:3c:e6:35:1a:15:c0:db:9f:3f:8e:b7:fd:b5:f6:8e:
24:46:c8:b5:53:98:40:5b:3c:d3:2c:88:02:36:6b:4f:df:9d:
c9:e1:a5:ef:5a:1e:e1:ac:ee:19:fc:ad:a8:12:a4:20:39:ca:
b1:39:a6:3b:9f:1b:5b:a5:14:e0:39:2d:75:7d:97:4c:de:fd:
0c:0d:8a:98:b9:23:af:7a:66:23:09:f1:7e:6d:26:ea:8e:dc:
57:36:c3:8a:94:3a:93:dd:8b:17:cb:21:10:73:b1:ed:b2:9d:
f0:dc:44:f6:c9:71:bf:cd:c4:f6:cd:c2:f8:1c:d0:4d:41:38:
94:cc:9a:c4:54:73:6d:cb:be:05:2d:f5:9f:44:83:e5:6d:90:
d8:ae:f5:4f:24:39:54:0a:99:7e:16:bd:a2:1b:b7:c3:fc:76:
ac:dc:a5:67:69:4b:e7:7a:4f:27:41:96:2a:dd:b2:99:36:de:
f7:d9:c2:ff:1e:ee:aa:2a:04:4c:8d:30:ee:ac:2d:d7:54:2e:
be:49:31:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:36 2023 by rpki-client on console.sobornost.net