Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/f5c020-e1d7-4fe9-83c0-a3be63b8572f/1/TwXv2U6beJl3OVnDelwIN-vNtTE.roa
File: TwXv2U6beJl3OVnDelwIN-vNtTE.roa (raw, json)
Hash identifier: MC/WJCAnwbR1chpitmkdt1JxAj6P6JVyYoSVDPPXfGQ=
Subject key identifier: 4F:05:EF:D9:4E:9B:78:99:77:39:59:C3:7A:5C:08:37:EB:CD:B5:31
Certificate issuer: /CN=6b85894a84baa0eca0e6ef44a992fc2ba00f5277
Certificate serial: 018570E7547EB2786528A2B0BEAB26962A70
Authority key identifier: 6B:85:89:4A:84:BA:A0:EC:A0:E6:EF:44:A9:92:FC:2B:A0:0F:52:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a4WJSoS6oOyg5u9EqZL8K6APUnc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/f5c020-e1d7-4fe9-83c0-a3be63b8572f/1/TwXv2U6beJl3OVnDelwIN-vNtTE.roa
Signing time: Mon 02 Jan 2023 05:14:46 +0000
ROA not before: Mon 02 Jan 2023 05:14:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208617
IP address blocks: 77.79.121.0/24 maxlen: 24
77.79.122.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:e7:54:7e:b2:78:65:28:a2:b0:be:ab:26:96:2a:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b85894a84baa0eca0e6ef44a992fc2ba00f5277
Validity
Not Before: Jan 2 05:14:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4f05efd94e9b7899773959c37a5c0837ebcdb531
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:89:38:4b:b2:f2:76:47:cc:41:e0:45:78:5c:
82:0b:e2:ad:e3:94:ea:b1:3f:82:54:a9:e4:76:4a:
2a:d8:fb:35:7f:63:d0:db:ff:40:cc:f0:10:62:a6:
02:5c:9a:ef:a8:43:cf:30:77:38:43:ab:73:86:4b:
bd:da:8a:cb:da:4b:d7:74:23:ab:0a:c8:c4:95:27:
af:fb:7f:3b:a8:0d:25:0d:03:d4:78:83:91:3e:11:
7f:5b:9e:cc:72:55:bb:70:51:8b:8b:cc:3f:05:e0:
15:73:7d:8b:91:d0:b4:e5:9a:e6:f5:72:fa:a6:c0:
c7:b3:0e:b7:13:08:05:59:d5:88:ac:92:e6:55:79:
ae:4a:5a:5d:f8:c8:1d:1b:30:91:b0:d1:96:08:14:
7f:13:e8:40:32:49:9d:59:cc:f2:e5:7a:19:f9:8a:
1d:5b:36:ba:22:89:d9:10:2f:20:dc:02:5f:a9:40:
03:cb:ea:8d:7d:56:d4:93:37:1a:99:52:d2:89:d5:
e5:be:0e:69:82:5e:5b:0f:d5:19:95:71:ae:72:f6:
cd:4b:a1:d0:86:51:fc:cc:e4:e8:71:86:70:4e:72:
79:f0:fe:4b:98:93:98:a9:b8:f3:93:70:68:65:7e:
69:ae:ef:aa:36:e7:ef:9c:42:f6:1f:5c:61:0f:38:
6f:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:05:EF:D9:4E:9B:78:99:77:39:59:C3:7A:5C:08:37:EB:CD:B5:31
X509v3 Authority Key Identifier:
keyid:6B:85:89:4A:84:BA:A0:EC:A0:E6:EF:44:A9:92:FC:2B:A0:0F:52:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4WJSoS6oOyg5u9EqZL8K6APUnc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/f5c020-e1d7-4fe9-83c0-a3be63b8572f/1/TwXv2U6beJl3OVnDelwIN-vNtTE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/f5c020-e1d7-4fe9-83c0-a3be63b8572f/1/a4WJSoS6oOyg5u9EqZL8K6APUnc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.79.121.0-77.79.122.255
Signature Algorithm: sha256WithRSAEncryption
a5:4b:4c:49:9c:ea:dd:20:87:36:87:79:4a:00:fb:df:88:f5:
f9:c4:f1:3c:6b:a5:f8:4d:7f:a1:2d:d0:cf:b4:76:5e:64:69:
a5:4d:6e:f9:a6:2f:4a:2b:20:b5:4f:6e:e7:d1:4f:a6:a5:5c:
2e:6e:ec:22:ae:3f:64:25:aa:39:32:c0:9c:b5:72:2d:b4:86:
fa:6c:f3:53:7d:22:96:94:31:b4:c2:b0:a6:ed:4f:24:19:97:
eb:0e:04:44:6e:8d:69:9b:9e:de:fa:f6:12:81:f8:8f:fc:22:
1a:98:f2:3d:d0:0b:13:36:00:35:ad:34:2a:21:73:f8:f0:f9:
28:f8:a9:3f:97:fd:dd:21:82:9a:30:d1:c4:90:db:21:1e:2e:
e1:b0:df:9a:43:a0:78:66:5d:85:b0:a3:c2:f4:ea:fd:98:ab:
f0:f8:0f:f3:48:f3:7a:f4:e3:b9:9b:fa:52:a3:35:d2:42:7c:
1f:9d:1a:8f:ed:27:ab:97:68:fe:17:c6:51:2f:c9:4b:5b:c3:
31:c2:91:71:ed:bb:62:82:1c:f2:75:ba:45:89:f2:d1:30:7d:
80:a0:53:5c:f9:26:8b:60:39:5c:7f:96:62:f9:52:9c:b6:22:
84:44:89:b3:84:a7:85:98:8a:df:95:67:12:d7:52:24:44:3f:
80:fb:4b:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 05:00:58 2024 by rpki-client on console.sobornost.net