Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/1y1po0vx5pVnwngL_ceW7On6DnU.roa
File: 1y1po0vx5pVnwngL_ceW7On6DnU.roa (raw, json)
Hash identifier: sFWvH8PrK+CPu7Tj0LpjfMUdp1qb6LuAcWAhgM+R71A=
Subject key identifier: D7:2D:69:A3:4B:F1:E6:95:67:C2:78:0B:FD:C7:96:EC:E9:FA:0E:75
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 019092ECDB93566481DAAF1C6B169D0DC167
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/1y1po0vx5pVnwngL_ceW7On6DnU.roa
Signing time: Mon 08 Jul 2024 15:18:34 +0000
ROA not before: Mon 08 Jul 2024 15:18:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215828
IP address blocks: 77.90.24.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 09 Jul 2024 12:33:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:92:ec:db:93:56:64:81:da:af:1c:6b:16:9d:0d:c1:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Jul 8 15:18:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d72d69a34bf1e69567c2780bfdc796ece9fa0e75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:5b:34:56:aa:28:c1:75:d5:16:92:10:6f:99:
3b:9b:69:6c:c6:aa:e6:ee:81:66:8e:cd:57:70:c1:
b0:57:b5:d5:aa:2e:0a:ab:b5:49:ba:bb:82:91:f9:
d4:88:d6:07:58:00:e8:10:8d:61:19:81:35:2c:77:
e6:96:ee:aa:79:54:e7:da:44:df:8c:30:55:ce:85:
7e:e5:7f:71:b4:56:27:68:1d:0b:c3:51:e4:f8:ea:
09:f2:58:f6:e1:ff:35:5f:4d:d1:c6:76:bf:41:af:
7a:ab:bd:0a:c0:65:e5:03:9a:fe:c9:fa:54:3b:24:
1f:7d:47:41:0b:10:a2:b7:2f:5b:dc:78:b8:d4:26:
f7:9f:f2:a8:b0:36:28:38:15:42:f8:f2:8b:02:b0:
eb:85:6c:17:b2:3f:1c:8b:b7:ab:64:81:dd:3d:e2:
fb:47:df:49:58:35:a5:e3:ba:c8:81:f8:ec:4f:70:
83:43:a3:c6:ad:0e:30:b8:e2:31:80:1b:52:2b:e4:
c3:9e:90:0b:f4:4e:5c:09:6d:99:57:10:6b:81:f2:
ee:06:c8:6f:c1:06:b6:eb:c5:9e:1e:b9:d0:8e:28:
6a:5e:99:3a:86:c0:ef:ee:37:e0:ef:16:8b:11:84:
84:09:af:9a:da:d9:a3:c9:86:4e:69:44:62:66:db:
8f:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:2D:69:A3:4B:F1:E6:95:67:C2:78:0B:FD:C7:96:EC:E9:FA:0E:75
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/1y1po0vx5pVnwngL_ceW7On6DnU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.24.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:80:bf:d7:6a:29:7e:d9:2b:02:1d:12:5b:f4:42:7d:82:44:
5e:2a:d9:4a:8e:0a:fe:9b:20:85:71:7c:b0:d3:73:29:0c:44:
9d:b1:05:74:95:cf:ff:82:11:9a:58:f5:3d:f0:9a:81:c2:2f:
6c:30:af:ce:6d:71:6a:ca:17:c0:7a:18:2c:2d:e8:9b:40:7f:
ca:62:21:4f:1e:86:49:19:bb:23:26:c8:4b:d9:56:37:10:88:
b1:37:cb:7b:9f:08:93:ae:fc:8b:bc:8b:26:9e:67:7b:b6:46:
e9:98:aa:79:3b:d0:4f:90:38:0a:ae:43:85:64:f8:e9:39:ea:
34:ee:a4:b1:9a:c6:29:1a:87:35:d7:07:38:0c:7e:2a:03:ee:
05:fb:01:22:84:da:6e:65:6f:89:7a:08:6c:84:ed:d9:88:a8:
0d:62:b0:93:39:29:65:2a:f2:a7:37:46:c3:a4:3c:4b:52:97:
4a:24:77:07:aa:1b:5c:ae:c1:1f:b1:34:c7:44:50:bc:51:46:
cb:80:2f:54:63:ff:31:8f:3f:d2:f4:87:85:46:88:68:e9:3f:
51:8f:b1:05:73:68:c8:52:45:45:6e:11:e2:aa:ec:4a:31:81:
57:48:cd:41:75:74:28:44:18:48:41:10:e6:c2:d7:fd:e1:50:
af:ac:db:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 9 15:52:58 2024 by rpki-client on console-ams.rpki-client.org