Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/0EmxQCX8Xf6GxnJrZOe0LKbcSPY.roa
File: 0EmxQCX8Xf6GxnJrZOe0LKbcSPY.roa (raw, json)
Hash identifier: iCWFhZvy+EdnJxAOpCmpfOA8nvbRatlcJeprINKg1WE=
Subject key identifier: D0:49:B1:40:25:FC:5D:FE:86:C6:72:6B:64:E7:B4:2C:A6:DC:48:F6
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 01911330B594C6B2E7AB545461C387673684
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/0EmxQCX8Xf6GxnJrZOe0LKbcSPY.roa
Signing time: Fri 02 Aug 2024 13:04:04 +0000
ROA not before: Fri 02 Aug 2024 13:04:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215310
IP address blocks: 77.90.40.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 28 Aug 2024 04:12:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:13:30:b5:94:c6:b2:e7:ab:54:54:61:c3:87:67:36:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Aug 2 13:04:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d049b14025fc5dfe86c6726b64e7b42ca6dc48f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:f3:df:0b:df:68:b6:32:b8:e5:e4:14:40:56:
01:9e:6c:a4:b8:fb:75:83:31:95:b6:da:b6:38:8f:
fb:fd:e7:c1:83:b2:b3:e7:7d:10:41:08:ff:39:c8:
5b:78:e8:f1:75:b4:96:43:1a:ea:a0:e1:d9:24:b0:
75:d4:83:71:0c:fb:aa:47:8a:82:93:4a:ac:71:12:
51:8b:25:bd:9d:c3:4b:5d:b9:c3:1e:55:30:48:cd:
d5:c2:11:c7:79:18:1c:66:1e:4b:67:91:68:48:95:
78:da:65:32:18:b8:1f:23:ab:6d:d7:a2:a6:4a:cf:
2f:bd:92:82:3e:da:aa:49:16:41:4d:a0:d9:fb:fc:
0c:b7:11:ae:a8:e4:cb:27:f9:ec:ee:fc:be:f5:4b:
7f:31:e8:5d:fc:90:28:de:d0:ff:68:fc:dd:3f:a8:
f5:57:f7:c2:b8:08:82:43:0c:f5:42:3a:de:8e:76:
1d:dd:b9:90:ff:b5:06:a5:be:83:42:95:25:89:57:
9e:91:d9:6c:22:ac:87:19:85:d5:61:d1:6a:38:c8:
6d:6e:7c:79:07:a5:23:7e:48:b1:23:1a:b8:d5:5c:
79:2d:d6:ab:59:38:53:7f:93:8e:6d:c1:d3:9b:2e:
81:e8:74:86:c7:81:f9:29:8a:7a:b2:26:75:02:84:
9b:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:49:B1:40:25:FC:5D:FE:86:C6:72:6B:64:E7:B4:2C:A6:DC:48:F6
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/0EmxQCX8Xf6GxnJrZOe0LKbcSPY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.40.0/24
Signature Algorithm: sha256WithRSAEncryption
48:83:4a:8d:c8:7e:73:8a:a4:cb:61:c5:e7:1b:7e:2f:6e:f7:
e1:36:85:84:06:1f:8d:83:a9:60:21:3f:26:4a:f5:8e:fa:f4:
81:54:39:f4:04:13:98:be:48:ca:33:ef:e4:a3:f6:6c:82:a9:
f7:b5:74:37:7e:35:6b:02:ad:9d:9a:88:83:59:63:02:ab:96:
5a:46:c7:2d:51:52:02:4e:90:4a:b3:b1:6f:28:6c:47:e3:dc:
86:42:49:af:56:3b:76:70:9b:52:6c:1a:ab:81:5c:e2:98:0e:
7e:e0:9e:4a:6c:47:93:7f:bc:c0:03:25:02:64:99:81:ba:47:
01:7c:93:64:30:ee:84:71:d4:e9:97:97:27:c5:16:f8:aa:34:
60:48:99:d7:08:27:bb:72:a9:63:b0:85:0d:ff:90:01:d8:f5:
a3:e4:bf:1f:da:33:20:26:d9:ec:ad:4c:a1:54:43:22:5f:4f:
ad:25:47:86:3f:7e:72:02:fa:6f:50:1c:a8:6b:3f:b3:3f:73:
62:8a:8c:33:86:1d:9d:be:74:40:a6:e7:74:41:c2:6a:48:48:
85:fb:c1:2f:68:d0:ef:32:da:63:f0:26:69:ac:fb:ad:41:73:
8c:4c:90:f6:48:19:cf:81:f8:68:a0:9c:6e:df:d4:81:cd:e3:
68:44:a1:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 28 07:05:42 2024 by rpki-client on console-ams.rpki-client.org