Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/7Dc9cA4f2ORxPHdujOsmZl2Z55M.roa
File: 7Dc9cA4f2ORxPHdujOsmZl2Z55M.roa (raw, json)
Hash identifier: 5Oejil8ZojZX9Vjy8Nt3gPbgSkqIpEDEkEV/SBfg6XQ=
Subject key identifier: EC:37:3D:70:0E:1F:D8:E4:71:3C:77:6E:8C:EB:26:66:5D:99:E7:93
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 0191095DC175C5A852F4FD82F297A2D8268C
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/7Dc9cA4f2ORxPHdujOsmZl2Z55M.roa
Signing time: Wed 31 Jul 2024 15:17:04 +0000
ROA not before: Wed 31 Jul 2024 15:17:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 31025
IP address blocks: 77.90.20.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 08 Sep 2024 04:08:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:09:5d:c1:75:c5:a8:52:f4:fd:82:f2:97:a2:d8:26:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Jul 31 15:17:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ec373d700e1fd8e4713c776e8ceb26665d99e793
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:cb:e4:12:49:d7:46:7c:6c:36:52:9e:94:57:
98:2a:55:38:3c:0b:9a:9a:e1:f1:8e:a5:82:a2:d2:
c8:ca:71:bf:4f:11:66:6b:79:ea:a1:01:aa:e4:a4:
4d:88:86:a7:a2:b2:ee:63:dc:e0:f6:66:8a:50:0d:
ab:c8:15:42:ec:cf:da:bf:30:cb:1a:45:85:77:09:
a2:e5:89:72:9a:63:38:d5:9c:48:ec:10:4c:a6:12:
df:2c:d6:b0:4a:0c:6b:97:07:f2:46:62:b0:b5:7b:
e2:96:a9:f3:4d:a7:cf:a4:4e:f9:86:cb:6e:41:e8:
60:08:18:c0:0b:1e:09:33:6e:74:37:e0:7f:52:3b:
89:04:0c:eb:06:7a:81:98:57:5d:da:26:64:f7:4f:
d2:a0:2c:c6:9f:f5:03:7c:83:36:9e:b8:44:7c:cf:
d4:a1:ec:dd:1e:6d:d3:32:c1:59:49:d9:ec:77:11:
52:77:af:68:f9:41:47:92:cd:d4:51:3e:64:6f:ce:
04:11:e9:2e:58:9a:54:76:d0:d3:29:bc:b9:5d:23:
63:c3:b0:ac:e4:c5:25:a4:7e:b5:0d:62:9a:88:a0:
b6:68:75:1b:93:db:43:b1:6a:11:21:07:06:9f:24:
04:da:29:d9:c5:1f:62:2b:6c:7c:5c:ad:9a:30:0a:
73:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:37:3D:70:0E:1F:D8:E4:71:3C:77:6E:8C:EB:26:66:5D:99:E7:93
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/7Dc9cA4f2ORxPHdujOsmZl2Z55M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.20.0/24
Signature Algorithm: sha256WithRSAEncryption
36:a8:8c:de:50:66:e4:25:0d:72:59:b2:52:3a:27:b2:80:87:
7b:b8:58:2d:0e:d1:86:86:a8:4a:fb:8b:9b:fc:2f:c4:2a:01:
c7:fa:6e:ae:65:37:a4:65:a4:ab:df:c6:fa:a5:31:b2:1c:f2:
03:f8:d0:02:fa:11:44:6d:39:9c:61:03:f3:fa:18:e1:70:8c:
5a:f1:4f:e9:ac:d2:b9:5e:8e:d2:29:57:8d:73:22:e9:d3:52:
0a:9d:02:7d:ee:f6:f1:b5:aa:6b:fb:2e:e1:34:6c:d5:00:78:
d9:75:11:e1:cf:89:c8:13:4b:25:9b:e7:a2:43:2e:c4:e9:16:
d1:fb:02:7a:66:b5:61:43:2f:bf:31:bc:a8:53:c1:9a:12:51:
00:5e:3b:ba:9d:d4:b1:00:ff:f9:8c:5b:e6:3c:17:37:b2:8a:
cb:5d:b5:04:de:f4:46:a3:7a:af:e5:10:e1:53:4a:52:3d:48:
7a:eb:90:01:da:57:d1:04:e3:9f:22:eb:e4:93:aa:39:e4:a4:
33:34:98:4b:a4:04:02:8a:ab:47:0d:43:68:2c:d8:6e:6d:24:
a1:00:9a:13:d2:12:12:1a:c4:d8:4c:e8:2d:7e:d1:2e:15:bb:
4e:d1:a2:9e:34:60:9d:ce:24:db:4d:ec:39:0c:56:f8:9b:a1:
6c:b0:25:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 8 05:17:56 2024 by rpki-client on console-fra.rpki-client.org