Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/7hvn3kqEHxxyin5WMkfEG0sXR-Q.roa
File: 7hvn3kqEHxxyin5WMkfEG0sXR-Q.roa (raw, json)
Hash identifier: y4InzWnCDUQrjOSzvnOzNlsMhnDi0VoQwZ9YwGe/zyU=
Subject key identifier: EE:1B:E7:DE:4A:84:1F:1C:72:8A:7E:56:32:47:C4:1B:4B:17:47:E4
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 01917A3ED1D4E6BB41D59C32696F2FB76B69
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/7hvn3kqEHxxyin5WMkfEG0sXR-Q.roa
Signing time: Thu 22 Aug 2024 13:20:22 +0000
ROA not before: Thu 22 Aug 2024 13:20:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 62880
IP address blocks: 77.90.60.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 22 Sep 2024 04:07:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:7a:3e:d1:d4:e6:bb:41:d5:9c:32:69:6f:2f:b7:6b:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Aug 22 13:20:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ee1be7de4a841f1c728a7e563247c41b4b1747e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:18:63:fd:a4:0d:cb:06:90:3f:de:17:ac:9b:
af:ab:11:1b:8a:e6:61:19:5f:9a:57:e8:dc:5b:02:
3c:a0:e3:d3:1b:e4:0e:d7:27:55:98:7c:60:04:4f:
a6:dd:73:a5:04:9d:3a:02:cb:41:97:78:66:b5:35:
3f:61:03:b1:21:7f:a9:0a:f7:cc:21:3d:6e:cf:2f:
fc:e2:5f:f0:06:78:b0:b5:15:98:8d:3b:45:04:51:
40:06:98:f6:8c:80:d0:0b:4c:bb:d7:65:e9:76:e6:
82:ac:15:2a:3e:47:a3:75:87:d1:d4:56:14:5d:b3:
bf:5e:34:25:ce:ad:1d:a4:d3:0b:7e:d5:2a:9d:9e:
ea:ca:f8:3b:1a:73:12:ee:a4:4e:95:bd:c2:6e:9f:
86:82:0a:43:bf:c3:0b:94:23:cc:77:8a:09:56:d5:
7e:ce:99:bd:8e:09:9d:5f:01:bf:e3:d1:7e:1a:63:
d8:69:2b:76:a5:a5:af:2e:c8:6d:83:39:e1:21:f1:
66:88:5d:87:78:06:1a:ee:b6:94:96:49:b7:91:86:
81:17:35:b8:39:cf:6e:72:85:4d:96:cc:4f:e6:1d:
72:1f:5a:03:82:07:a4:37:87:6e:13:be:70:a7:fa:
7c:7a:6d:45:84:e1:cd:cb:3e:a7:ae:b4:74:bc:5b:
eb:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:1B:E7:DE:4A:84:1F:1C:72:8A:7E:56:32:47:C4:1B:4B:17:47:E4
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/7hvn3kqEHxxyin5WMkfEG0sXR-Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.60.0/24
Signature Algorithm: sha256WithRSAEncryption
57:70:05:fe:2b:b0:73:95:0d:13:17:bc:58:9c:e0:c5:e3:1c:
4b:e5:95:63:3e:fd:71:f0:43:33:a5:64:35:ff:c7:bb:ec:86:
b1:e8:32:1e:46:3f:ca:ff:7f:f8:03:06:21:92:77:6d:a3:f0:
63:ae:9a:b6:68:16:00:6b:5e:84:f1:66:93:ab:41:4e:0c:72:
74:89:8c:b7:06:d3:76:ae:f9:dd:c8:37:09:59:89:e3:de:43:
e9:f5:5a:0d:96:55:4e:24:1c:27:d9:f9:ed:29:ef:49:b9:b2:
ea:88:98:20:bc:6e:29:7b:a9:40:72:a2:5e:29:f9:37:2a:39:
b4:6a:eb:de:8f:9c:8a:2d:e0:d5:7d:aa:be:26:7c:7b:32:86:
59:09:bc:9a:88:e1:5b:22:73:2e:6f:f8:10:bd:8a:65:92:81:
ed:aa:e0:88:a1:38:e8:60:47:8d:3f:27:c0:03:d3:70:26:63:
33:12:de:4f:f0:10:68:35:92:87:9a:8d:6b:ef:dd:b8:65:f6:
4c:0b:95:47:7b:f6:43:d6:67:9f:93:70:d7:e2:66:a2:63:3c:
ee:bb:64:18:95:1f:99:f1:15:fd:5c:05:d8:6e:54:2a:c9:0a:
b2:de:f7:01:45:f0:f1:1a:f0:08:4a:72:06:0c:d2:6c:e4:23:
73:08:85:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 22 08:53:09 2024 by rpki-client on console-ams.rpki-client.org