Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/1THRZ0nou7HZa0eh6jPlYfs1CsU.roa
File: 1THRZ0nou7HZa0eh6jPlYfs1CsU.roa (raw, json)
Hash identifier: 9oWIkPVLLrYqb8p9enqzxtnbYIlPzRDkQrMMITqDo5s=
Subject key identifier: D5:31:D1:67:49:E8:BB:B1:D9:6B:47:A1:EA:33:E5:61:FB:35:0A:C5
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 019417675D635CF7635E7B9A1FF09433463A
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/1THRZ0nou7HZa0eh6jPlYfs1CsU.roa
Signing time: Mon 30 Dec 2024 11:50:37 +0000
ROA not before: Mon 30 Dec 2024 11:50:37 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44592
IP address blocks: 77.90.17.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 13:48:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:17:67:5d:63:5c:f7:63:5e:7b:9a:1f:f0:94:33:46:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Dec 30 11:50:37 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d531d16749e8bbb1d96b47a1ea33e561fb350ac5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:9e:bb:86:18:ce:56:c7:c9:b6:ad:c5:8c:32:
a7:a2:ad:c3:78:7c:b3:b6:b3:07:1f:3f:ee:3b:e2:
66:aa:ec:86:5b:f4:9b:72:0e:70:d9:3a:61:ca:27:
e1:0b:66:7a:aa:e2:e3:19:ef:27:16:41:46:eb:92:
f1:64:5e:59:37:6f:54:0d:12:1b:fa:85:e4:a6:11:
b5:7a:6d:67:9d:c0:87:7a:d2:2c:b4:50:fd:62:d9:
c0:87:f6:86:23:9d:33:e3:c6:eb:77:3e:f8:a8:d1:
b1:be:57:2d:79:8f:70:c6:5a:b0:cd:d2:68:e4:c8:
98:3e:c7:d4:e9:25:2e:0c:94:67:d9:a4:4e:ff:bc:
a4:97:3a:40:80:53:8c:c8:7c:b4:df:a5:90:cf:42:
33:95:42:10:67:70:33:4d:55:27:5c:c9:b5:c0:62:
6c:81:34:7a:cc:98:20:4a:81:1e:6d:4c:ed:15:5c:
17:92:76:5e:ee:57:7e:79:42:da:bd:74:c9:e3:12:
08:d8:7f:3d:b0:4b:46:84:6c:38:f6:c6:3f:fc:8a:
ec:b8:39:74:ae:a0:bb:f4:7d:8e:91:5e:e5:c5:1b:
21:10:2f:b7:d1:a0:fd:10:e3:ed:f6:08:fb:71:bd:
92:7b:48:a8:df:f2:e3:e2:6c:11:4a:67:5f:11:81:
4f:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:31:D1:67:49:E8:BB:B1:D9:6B:47:A1:EA:33:E5:61:FB:35:0A:C5
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/1THRZ0nou7HZa0eh6jPlYfs1CsU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.17.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:9a:22:4c:02:db:20:98:e6:8b:8a:4e:c6:5c:e5:88:dc:a3:
c0:e2:09:12:bc:66:24:d5:9d:dc:29:9a:6a:2c:00:da:12:5a:
05:8a:df:a4:cb:3f:e2:8c:a0:d9:89:95:f4:07:fd:91:2d:db:
6f:37:8c:42:06:8d:2c:e2:d6:2a:bd:94:40:4f:df:a5:cd:55:
ac:63:35:7e:72:40:25:f3:c4:6a:57:7e:4e:c5:dc:42:fd:4e:
dd:22:36:0e:df:ca:e3:68:dc:d9:70:6b:08:bc:d0:ff:e5:2a:
61:d3:86:fd:a5:4f:2f:64:88:d0:6d:b7:18:2e:c1:00:b7:a3:
01:cf:f8:1a:20:9e:25:12:43:d0:62:ea:e6:4b:64:fd:4a:52:
06:14:c4:69:93:a6:7a:09:ce:56:d9:a9:18:40:8d:b6:2a:e2:
b4:80:31:00:57:cb:35:20:f6:4b:10:95:91:3e:b5:85:84:c3:
54:ac:23:19:c7:5f:d0:70:ed:bf:4a:eb:db:41:e4:b2:0d:a3:
84:f8:f1:fd:2a:64:ce:b2:7f:51:e4:a9:f7:d0:eb:d4:6a:b8:
ad:07:a1:e7:f6:3b:0b:41:a1:0b:09:ff:db:ec:a2:19:f7:eb:
0c:54:0d:41:a0:c6:87:1a:56:f7:2d:a8:81:72:bf:81:18:27:
29:d1:cd:40
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQXZ11jXPdjXnuaH/CUM0Y6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNlNjA5NzY5ODY4NmUxNTU1ZjUxZjZjODgzYmM1YTU4NTQ5
YjIzNjIwHhcNMjQxMjMwMTE1MDM3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkNTMxZDE2NzQ5ZThiYmIxZDk2YjQ3YTFlYTMzZTU2MWZiMzUwYWM1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvJ67hhjOVsfJtq3FjDKnoq3DeHyz
trMHHz/uO+JmquyGW/Sbcg5w2TphyifhC2Z6quLjGe8nFkFG65LxZF5ZN29UDRIb
+oXkphG1em1nncCHetIstFD9YtnAh/aGI50z48brdz74qNGxvlcteY9wxlqwzdJo
5MiYPsfU6SUuDJRn2aRO/7yklzpAgFOMyHy036WQz0IzlUIQZ3AzTVUnXMm1wGJs
gTR6zJggSoEebUztFVwXknZe7ld+eULavXTJ4xII2H89sEtGhGw49sY//IrsuDl0
rqC79H2OkV7lxRshEC+30aD9EOPt9gj7cb2Se0io3/Lj4mwRSmdfEYFPQQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNUx0WdJ6Lux2WtHoeoz5WH7NQrFMB8GA1UdIwQY
MBaAFD5gl2mGhuFVX1H2yIO8WlhUmyNiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGIt
ZTFiZDg4ZDNmZDA3LzEvMVRIUlowbm91N0haYTBlaDZqUGxZZnMxQ3NVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGItZTFiZDg4ZDNmZDA3
LzEvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQATVoRMA0G
CSqGSIb3DQEBCwUAA4IBAQAqmiJMAtsgmOaLik7GXOWI3KPA4gkSvGYk1Z3cKZpq
LADaEloFit+kyz/ijKDZiZX0B/2RLdtvN4xCBo0s4tYqvZRAT9+lzVWsYzV+ckAl
88RqV35OxdxC/U7dIjYO38rjaNzZcGsIvND/5Sph04b9pU8vZIjQbbcYLsEAt6MB
z/gaIJ4lEkPQYurmS2T9SlIGFMRpk6Z6Cc5W2akYQI22KuK0gDEAV8s1IPZLEJWR
PrWFhMNUrCMZx1/QcO2/SuvbQeSyDaOE+PH9KmTOsn9R5Kn30OvUaritB6Hn9jsL
QaELCf/b7KIZ9+sMVA1BoMaHGlb3LaiBcr+BGCcp0c1A
-----END CERTIFICATE-----
Generated at Sat Apr 12 03:18:22 2025 by rpki-client