Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/3RJoJjAGMWU0JkUJCScrlTniBxw.roa
File: 3RJoJjAGMWU0JkUJCScrlTniBxw.roa (raw, json)
Hash identifier: fgQGKmPNyNd0MsZP5V0qB7IOOyrx6hxgc3VbqQjShvU=
Subject key identifier: DD:12:68:26:30:06:31:65:34:26:45:09:09:27:2B:95:39:E2:07:1C
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 0191A384EB80A64A5692FE61291684C43BBF
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/3RJoJjAGMWU0JkUJCScrlTniBxw.roa
Signing time: Fri 30 Aug 2024 13:41:22 +0000
ROA not before: Fri 30 Aug 2024 13:41:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215039
IP address blocks: 77.90.5.0/24 maxlen: 24
77.90.14.0/24 maxlen: 24
77.90.53.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 30 Oct 2024 12:59:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:a3:84:eb:80:a6:4a:56:92:fe:61:29:16:84:c4:3b:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Aug 30 13:41:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=dd126826300631653426450909272b9539e2071c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:b3:c9:8e:b7:ec:b2:75:6c:a4:af:a5:13:79:
71:1b:e1:03:77:44:87:a8:09:25:5c:cb:18:5b:ec:
ef:83:71:ce:c5:6b:8e:f8:5e:02:9d:f3:35:5f:b6:
e0:3c:74:08:5d:eb:4a:c3:c2:da:4a:85:f8:0d:63:
62:e4:c1:13:c1:5c:90:14:f6:2a:73:50:a4:35:e1:
21:78:3e:48:58:de:53:24:53:9c:8d:1a:82:fe:cd:
7e:11:ea:3d:cb:27:05:64:bc:bb:60:35:13:62:dc:
44:96:2e:b0:12:a0:f8:3e:03:6e:ec:16:16:a0:7b:
8b:d3:58:d9:82:98:2e:de:b5:ac:5e:12:b8:0d:7b:
ff:29:25:ff:1d:b9:51:1c:d1:ed:19:f7:2a:80:d2:
79:6a:e0:7d:99:06:08:b8:d9:43:32:78:c8:dc:9e:
7a:0b:f3:06:0e:5e:d9:bf:05:f6:85:4c:a1:45:a5:
ec:1f:34:01:87:97:23:48:be:57:28:7e:6d:48:b5:
95:91:60:a1:55:33:8d:76:3c:af:0a:b9:bb:cd:ae:
e0:cb:c9:95:52:81:93:52:dc:2e:b7:e7:e8:17:52:
76:bf:57:ed:df:bb:c7:45:97:23:f5:3f:b8:86:77:
20:c5:94:d3:4c:a0:fd:a9:32:d7:29:7a:03:7b:a1:
7e:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:12:68:26:30:06:31:65:34:26:45:09:09:27:2B:95:39:E2:07:1C
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/3RJoJjAGMWU0JkUJCScrlTniBxw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.5.0/24
77.90.14.0/24
77.90.53.0/24
Signature Algorithm: sha256WithRSAEncryption
77:db:f6:13:dc:93:de:db:f8:88:cc:f6:47:7b:26:7a:48:cf:
5a:a3:35:fe:72:c5:30:d2:93:8b:6e:b4:d2:79:69:c1:47:5f:
9c:3a:4e:4c:b5:74:a0:b5:db:f3:fe:c8:12:73:9b:38:f1:1f:
a8:e9:31:1d:3b:d6:cf:78:55:c6:8a:51:2a:87:e7:aa:18:20:
db:2d:42:33:7f:ce:1a:59:a7:89:1c:ad:de:93:8a:cd:96:16:
f4:92:7f:6a:5d:b0:fe:81:44:ed:48:99:4e:df:30:15:b5:2b:
92:38:64:32:dd:c9:65:83:68:2e:c5:5a:6d:57:d2:a0:d0:43:
c6:23:13:bf:f8:9b:a1:1e:7f:48:78:42:d9:e1:cf:32:d3:21:
39:1d:8b:7f:7b:43:64:7f:64:dc:2a:ab:37:83:b4:fe:bb:4f:
42:a0:cc:dc:6d:5f:c8:1a:c1:fd:e6:48:c7:19:e7:cc:58:81:
89:5d:d6:a4:82:b5:6e:10:1d:9d:ab:c1:18:28:4b:0b:8a:e7:
62:33:e2:a7:34:f3:07:56:79:d8:0e:d6:f6:b3:92:3b:b8:7d:
bd:c7:5e:b0:76:65:74:86:a1:6c:7f:ad:ae:ec:5f:48:29:29:
f5:e7:60:71:cf:13:35:36:84:0d:1d:f1:25:b2:16:6b:ec:62:
8d:1a:e9:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 30 16:32:39 2024 by rpki-client on console-fra.rpki-client.org