Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/2xsy3g8-_SAna8_yjqjVtgHuWdM.roa
File: 2xsy3g8-_SAna8_yjqjVtgHuWdM.roa (raw, json)
Hash identifier: IeUJ1U/HGDO0Tv/Vtkh/iT5gq/m00EqekuvFS3gMxFA=
Subject key identifier: DB:1B:32:DE:0F:3E:FD:20:27:6B:CF:F2:8E:A8:D5:B6:01:EE:59:D3
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 0192F12AB95A73F693FBB66C48D54F5BC318
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/2xsy3g8-_SAna8_yjqjVtgHuWdM.roa
Signing time: Sun 03 Nov 2024 08:36:01 +0000
ROA not before: Sun 03 Nov 2024 08:36:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215240
IP address blocks: 77.90.31.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 03 Nov 2024 12:17:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:f1:2a:b9:5a:73:f6:93:fb:b6:6c:48:d5:4f:5b:c3:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Nov 3 08:36:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=db1b32de0f3efd20276bcff28ea8d5b601ee59d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:4c:79:0a:5c:a6:ff:d9:82:b0:e1:3e:d0:d8:
59:9b:aa:fa:91:c7:f9:6a:b9:4c:5e:88:da:27:c8:
fe:f9:03:be:13:66:24:b1:77:c2:52:ad:8b:c8:65:
30:24:ac:a2:fc:5f:9a:0f:6e:bc:56:86:54:60:36:
1f:f3:f9:64:97:e0:1b:91:a8:28:63:d5:35:7b:59:
d9:0e:89:e6:ac:8a:46:31:98:96:bf:96:52:75:a8:
1e:f5:07:3a:79:e0:83:57:87:7f:36:71:07:c6:02:
23:62:d6:c6:05:b3:74:a9:a8:a6:a4:d0:4e:87:f1:
96:23:8a:d6:bf:90:35:2f:81:79:2d:34:3b:fe:05:
15:de:48:73:71:b7:84:ed:5b:0c:20:88:f2:60:ad:
e9:7a:82:67:e2:4b:42:ed:18:59:dc:e4:32:51:f3:
ca:ac:94:3c:c1:9b:82:cf:72:42:4b:a2:93:80:ac:
63:c8:8e:5f:cf:c7:49:00:4c:4d:9c:88:bd:fe:7f:
73:95:68:b1:1e:6f:a1:fa:0b:4e:06:12:c7:b3:1c:
be:c5:60:ef:59:92:0c:12:24:17:9a:26:19:af:80:
74:2b:dc:23:dc:4e:9e:38:41:7b:55:32:a2:aa:1e:
08:ab:60:f7:90:ee:5c:1d:38:db:36:28:a0:c3:8f:
4e:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:1B:32:DE:0F:3E:FD:20:27:6B:CF:F2:8E:A8:D5:B6:01:EE:59:D3
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/2xsy3g8-_SAna8_yjqjVtgHuWdM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.31.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:0f:54:85:9b:db:94:c7:16:b4:cc:a6:db:eb:32:ff:38:e7:
22:6b:4d:f2:48:cc:8c:58:c2:41:c3:9d:7b:4d:3b:81:19:61:
f1:d8:25:4b:c8:e0:18:91:92:ca:e5:9e:be:c6:4b:19:3d:4d:
51:1a:a7:37:4c:2f:71:03:1e:85:7b:9d:4f:6a:cc:0f:64:2a:
a1:ab:aa:93:2a:3d:ae:b5:c0:a4:57:8d:9e:e2:9e:58:3c:e0:
b8:31:66:35:e3:e3:40:ae:7f:7c:0b:ff:88:a0:ad:aa:99:f6:
53:36:cd:15:ce:dd:32:21:57:44:25:f9:92:76:1f:e4:8b:d7:
d6:e4:ba:2a:05:93:8f:f8:2f:1f:8b:04:12:94:01:80:9a:9b:
1d:07:37:57:b3:62:dd:b1:a8:6b:8b:c5:d3:8f:94:7f:48:1a:
dc:fe:81:19:73:bb:d8:09:cd:cd:67:7e:ae:27:b9:2f:29:0f:
d8:48:8a:8f:d0:3e:dd:c0:39:00:49:da:dc:59:b9:5b:54:8e:
ac:b2:54:9d:2e:e1:d3:96:77:52:88:2c:fa:a3:8a:e8:73:1e:
05:8a:b6:ec:04:a4:8c:25:47:06:54:26:05:ab:49:7d:f2:60:
68:46:62:d7:55:b1:a9:13:eb:40:98:cf:b6:79:90:65:3a:6b:
bb:95:b3:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 3 16:37:07 2024 by rpki-client on console-fra.rpki-client.org