Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/GTwJzyBh2LwuH_mUPlRlH_eptS8.roa
File: GTwJzyBh2LwuH_mUPlRlH_eptS8.roa (raw, json)
Hash identifier: 24J5JkzaLG1Lf58lGcaLEZlsFK2xOyK4JeT5VSm7aIE=
Subject key identifier: 19:3C:09:CF:20:61:D8:BC:2E:1F:F9:94:3E:54:65:1F:F7:A9:B5:2F
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 0190D270C4D3AA053E7EA13D37ED4F2418D6
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/GTwJzyBh2LwuH_mUPlRlH_eptS8.roa
Signing time: Sat 20 Jul 2024 23:18:44 +0000
ROA not before: Sat 20 Jul 2024 23:18:44 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 58212
IP address blocks: 77.90.7.0/24 maxlen: 24
77.90.29.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 22 Aug 2024 04:06:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:d2:70:c4:d3:aa:05:3e:7e:a1:3d:37:ed:4f:24:18:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Jul 20 23:18:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=193c09cf2061d8bc2e1ff9943e54651ff7a9b52f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:69:65:58:a3:fe:76:78:b6:7d:da:b8:8a:a3:
c9:d1:ec:b3:77:4d:b0:e7:bd:71:d1:e1:75:8f:bf:
1a:a0:c1:b8:88:9a:e7:a0:6e:1f:da:6e:a4:0c:66:
fc:91:6a:8b:28:e2:e1:e2:f0:2e:37:bb:8c:4c:35:
5a:65:8b:30:35:8b:f9:c5:8c:6b:31:aa:17:0e:49:
6f:95:46:1b:5d:6d:77:b9:41:8a:9b:16:f8:a0:fe:
6c:12:a6:2d:c5:84:16:13:62:0d:24:b7:01:31:f6:
a4:84:a8:a6:4c:28:91:d3:d5:a6:7e:c4:e0:6e:f5:
80:b4:d5:c4:89:f1:a8:c8:87:81:7d:9c:66:d7:a0:
c0:3f:fa:79:2a:b3:24:53:c3:5d:a6:7e:5c:6f:1a:
6a:d8:f8:1a:52:f8:6f:43:e4:fd:05:c6:c4:fe:ca:
ca:e4:9a:99:db:35:0b:67:08:9e:20:6d:5e:cf:59:
a0:64:c6:32:2e:97:20:c9:58:62:7f:b4:f6:02:fe:
00:d0:a5:bf:4f:27:ba:37:e7:23:98:23:53:c8:88:
fd:19:a4:40:d9:89:bd:b2:8e:11:0f:2e:d0:a8:e3:
ca:1a:40:34:d4:07:f6:5e:46:32:95:e9:6c:7b:b8:
21:39:03:ee:c6:43:ce:fb:63:38:54:1f:be:81:37:
40:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:3C:09:CF:20:61:D8:BC:2E:1F:F9:94:3E:54:65:1F:F7:A9:B5:2F
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/GTwJzyBh2LwuH_mUPlRlH_eptS8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.7.0/24
77.90.29.0/24
Signature Algorithm: sha256WithRSAEncryption
69:c5:62:97:24:57:53:d1:d5:af:61:ae:e1:16:20:0a:a4:8b:
90:b4:ea:8d:ad:0e:c3:d5:f1:95:6e:f0:b3:46:9d:fe:04:44:
0f:cc:33:fd:44:60:f4:36:4a:ab:ee:3e:96:cc:54:ff:f4:d1:
19:e2:b5:46:5c:32:e0:40:74:a6:08:15:8c:e4:9c:81:fd:2e:
09:2e:e5:23:11:71:b8:fc:ac:ca:54:9f:15:01:14:90:fb:86:
d6:f1:bd:19:2d:03:cc:6a:21:f1:a5:3b:cc:48:fa:04:bc:17:
84:8c:80:f8:f9:42:57:9d:e8:3d:ef:02:fa:3f:b9:4d:37:b3:
2a:04:bc:ba:ec:3c:01:8b:e3:e2:db:ff:0f:c1:7a:4a:ec:6a:
a3:78:f7:37:65:8b:73:18:97:48:03:8c:64:d9:4b:d4:56:4e:
eb:09:be:13:3d:40:3e:dd:12:57:2a:5b:57:ea:78:1e:e5:3b:
5f:c4:22:77:b3:a8:59:ec:de:ca:75:0c:1f:53:71:f3:32:8b:
12:35:4d:6e:45:5f:e5:39:c6:96:c7:25:59:e8:aa:98:22:ef:
96:a4:b1:de:8e:d0:a3:f1:5a:8b:6c:d1:64:89:16:ad:a8:96:
db:dd:b5:63:9e:55:cf:1b:95:0a:fa:78:51:45:3e:c8:f4:a0:
f7:6b:cc:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 22 06:46:00 2024 by rpki-client on console-fra.rpki-client.org