Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/37372e38332e3130372e302f32342d3234203d3e20383334.roa
File: 37372e38332e3130372e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: LLH3yq2h6F8Z1QW9kpaA2dDb2WSVcjiXh8TOaeFhyro=
Subject key identifier: FB:42:59:CE:77:99:D1:4C:FC:37:2C:50:B2:3F:D8:F4:72:E3:AC:11
Certificate issuer: /CN=62fbd2cc0012fb2f86db40b589bd1ac4e973266d
Certificate serial: 7CDDD98CF5CF96A684B7A89FFE34CFC5D8003647
Authority key identifier: 62:FB:D2:CC:00:12:FB:2F:86:DB:40:B5:89:BD:1A:C4:E9:73:26:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/37372e38332e3130372e302f32342d3234203d3e20383334.roa
Signing time: Thu 22 Feb 2024 00:01:25 +0000
ROA not before: Wed 21 Feb 2024 23:56:25 +0000
ROA not after: Thu 20 Feb 2025 00:01:25 +0000
asID: 834
IP address blocks: 77.83.107.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 11 Mar 2024 15:28:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7c:dd:d9:8c:f5:cf:96:a6:84:b7:a8:9f:fe:34:cf:c5:d8:00:36:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fbd2cc0012fb2f86db40b589bd1ac4e973266d
Validity
Not Before: Feb 21 23:56:25 2024 GMT
Not After : Feb 20 00:01:25 2025 GMT
Subject: CN=FB4259CE7799D14CFC372C50B23FD8F472E3AC11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:c4:22:d8:0a:78:bf:2f:84:1a:86:34:06:74:
9b:cd:04:50:7d:ac:78:19:d3:7f:31:55:4b:05:55:
d6:1d:78:5a:f0:30:31:e8:5c:ca:02:94:9e:05:46:
f9:74:08:4d:28:fb:1a:f6:9c:e8:b9:77:1a:17:31:
0e:8c:63:d5:d8:3c:50:3e:75:8c:53:f9:cf:cf:22:
a4:94:f5:c3:01:9c:82:ab:6b:4d:8b:a8:f9:8b:42:
88:a4:2b:07:6f:cd:40:9e:4a:cb:cb:4e:97:4c:94:
bf:f4:3c:1c:1b:bc:7f:8f:8a:13:de:e0:39:ae:65:
cf:b3:7c:ae:56:c8:61:01:6a:f4:db:74:71:cc:9f:
4f:ff:2c:2e:9b:ed:9f:c7:07:58:a4:d1:4a:95:65:
19:46:35:fd:17:92:d5:37:21:60:08:63:24:0b:13:
62:2f:6d:44:ec:e3:92:13:32:74:3b:8f:94:17:65:
04:6c:2e:7c:00:f2:77:af:91:8a:9c:d7:5c:06:cd:
d9:ae:e7:5b:ce:2e:30:cb:d3:db:f8:90:3d:2d:08:
f1:b1:f1:e0:c8:4e:3f:bf:4e:35:97:47:b7:af:d2:
fb:01:80:e8:4a:1c:34:d9:b5:c8:17:e5:73:fd:13:
32:8f:3f:7c:86:2b:9d:75:78:a4:53:2a:1e:ce:21:
52:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:42:59:CE:77:99:D1:4C:FC:37:2C:50:B2:3F:D8:F4:72:E3:AC:11
X509v3 Authority Key Identifier:
keyid:62:FB:D2:CC:00:12:FB:2F:86:DB:40:B5:89:BD:1A:C4:E9:73:26:6D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/62FBD2CC0012FB2F86DB40B589BD1AC4E973266D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YvvSzAAS-y-G20C1ib0axOlzJm0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/46b93df0-ac8d-4da8-afb8-dcb7f2888362/0/37372e38332e3130372e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.83.107.0/24
Signature Algorithm: sha256WithRSAEncryption
32:87:d6:46:9e:1f:d0:85:80:8e:6e:57:d0:34:19:a1:9e:86:
c8:ed:2c:ed:d0:f1:a8:da:17:77:25:8f:ff:a9:b2:89:ed:4e:
43:66:34:5f:f4:c7:e9:ed:f3:1f:5b:69:95:a2:8e:fa:0b:33:
84:6b:25:f6:36:74:be:92:4d:15:36:b1:f2:c4:29:33:00:90:
28:e4:56:2b:0a:05:e0:58:3b:62:74:fb:50:f7:55:1d:1c:4a:
75:6a:58:ca:8d:99:2f:ef:f8:b6:65:cb:a3:13:fe:9a:5a:6a:
16:0a:6b:b0:4b:23:9e:7e:27:12:67:25:bf:c3:19:32:49:4f:
72:60:d6:42:4e:c7:85:19:ab:2c:e0:4e:98:ad:4f:38:59:61:
e5:fb:57:9d:49:21:4d:5b:73:3b:a7:be:aa:fd:01:12:16:26:
20:ae:5f:bb:36:b0:db:2b:34:db:92:31:0a:35:85:4a:ec:c4:
bd:88:3f:05:df:ed:b1:28:2e:b0:47:e5:7f:bb:a4:89:c4:c4:
b1:f4:8a:e7:e5:36:cb:fb:b5:6d:af:26:90:5e:1c:80:6a:5d:
47:ae:b7:46:77:7b:3f:01:df:4e:a5:3c:bb:85:46:36:32:b6:
4c:98:3d:6a:f3:cb:50:b4:c6:7f:71:13:35:eb:db:47:55:84:
2d:8e:34:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 11 21:33:15 2024 by rpki-client on console.sobornost.net