Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/2Oqv6YT6bEoexxM1orL07hhy4Yw.roa
File: 2Oqv6YT6bEoexxM1orL07hhy4Yw.roa (raw, json)
Hash identifier: cTDGO7L8etzO177hj8J2uZ1QArSbnbl6QEB/z6x7GLA=
Subject key identifier: D8:EA:AF:E9:84:FA:6C:4A:1E:C7:13:35:A2:B2:F4:EE:18:72:E1:8C
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 01915BB9B4BBEEB1E06CC85DACEABD7A0F86
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/2Oqv6YT6bEoexxM1orL07hhy4Yw.roa
Signing time: Fri 16 Aug 2024 15:06:22 +0000
ROA not before: Fri 16 Aug 2024 15:06:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214359
IP address blocks: 77.90.55.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 16 Sep 2024 04:07:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:5b:b9:b4:bb:ee:b1:e0:6c:c8:5d:ac:ea:bd:7a:0f:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Aug 16 15:06:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d8eaafe984fa6c4a1ec71335a2b2f4ee1872e18c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:39:a4:ed:95:c0:28:c5:47:bb:75:34:07:dc:
d2:d0:22:53:81:25:c6:a0:e7:9c:79:4e:2f:18:ff:
ba:74:31:88:dd:7f:a6:5f:01:fb:a0:1f:d3:79:c5:
08:df:d4:92:e5:cb:f8:21:a3:d0:aa:6e:f5:19:23:
fe:eb:06:fc:1d:5a:f9:16:62:5a:d6:f8:3f:46:56:
a2:94:22:58:18:b6:f9:2f:d5:3e:f4:6c:3f:a9:63:
73:c3:84:02:59:30:fc:a6:c3:95:62:72:66:e0:ed:
8a:8d:dc:b7:39:51:50:61:89:6b:76:56:3c:a0:6c:
3b:da:9e:0b:50:1b:7d:24:37:f0:60:92:b5:d2:f3:
28:95:b7:b6:fb:bc:50:b6:60:e3:d4:b5:9e:8a:e4:
25:c6:0f:ea:fb:a8:0a:a2:bb:93:9b:d0:84:5a:2a:
4e:f8:7b:37:5b:bc:ae:f3:15:44:c9:71:f3:b7:a3:
09:5b:99:c2:7f:32:c6:c2:8e:7b:95:e9:55:ef:e9:
fc:66:a1:96:0e:58:6e:be:6e:d0:2c:1b:0a:6f:24:
88:56:fe:fb:32:99:c4:92:37:c9:1a:ef:5e:69:fe:
fe:49:54:7f:e2:f2:0e:2c:ac:d7:9a:1b:48:7e:b1:
33:64:25:f2:81:dd:f1:6e:62:8c:5b:01:b9:95:14:
dc:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:EA:AF:E9:84:FA:6C:4A:1E:C7:13:35:A2:B2:F4:EE:18:72:E1:8C
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/2Oqv6YT6bEoexxM1orL07hhy4Yw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.55.0/24
Signature Algorithm: sha256WithRSAEncryption
99:ce:ff:14:ac:15:73:47:5e:07:48:c3:95:fd:e8:6e:08:86:
90:7e:d9:70:43:ae:5c:6c:57:27:d9:3a:cf:b5:c5:2b:18:e5:
74:08:f9:48:e9:71:34:be:81:fa:51:d2:49:25:02:ec:ce:79:
b4:71:3e:3c:41:66:e0:d6:d8:f6:2d:1e:1a:f9:c4:fd:d4:96:
31:b5:0e:c2:e9:00:fd:25:11:18:7b:dc:da:a0:fd:18:4f:3f:
48:4c:fd:ba:eb:db:bb:b6:37:7b:c6:52:80:d4:d7:6b:c1:de:
5e:10:5b:f7:aa:3d:c3:03:82:11:b3:0e:3c:ce:fd:71:a5:b3:
6a:9a:c8:c8:26:d9:16:77:10:53:ed:46:a2:82:3e:73:69:be:
63:21:ed:c0:aa:39:cf:4c:f6:ea:49:66:21:e5:ba:4f:9f:5d:
be:37:d9:2c:a7:e1:5a:40:dc:70:81:fb:d4:68:06:f7:03:dc:
14:40:45:2e:eb:2b:11:95:47:f9:bc:25:22:bd:4b:2c:46:1e:
9e:cd:4f:65:d5:27:05:03:72:a2:39:0d:97:df:f1:73:bb:a6:
7e:b9:79:89:a2:0f:08:d5:1e:c2:a1:a3:01:c4:74:9a:a3:eb:
8a:6f:87:ee:69:ec:74:25:b3:35:20:77:f2:e6:04:f0:f0:75:
1a:77:f4:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 16 08:56:54 2024 by rpki-client on console-ams.rpki-client.org