Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/JSamlFVs74TUKU5hvANoJSHIOTE.roa
File: JSamlFVs74TUKU5hvANoJSHIOTE.roa (raw, json)
Hash identifier: dTXEZdoc6sT4VjbzpeXH/aJRu8w9wXQ6itpZ2wi8IvQ=
Subject key identifier: 25:26:A6:94:55:6C:EF:84:D4:29:4E:61:BC:03:68:25:21:C8:39:31
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 0194222017E8D73C69D08A4F8870556FA9F8
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/JSamlFVs74TUKU5hvANoJSHIOTE.roa
Signing time: Wed 01 Jan 2025 13:48:36 +0000
ROA not before: Wed 01 Jan 2025 13:48:36 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 214556
IP address blocks: 77.90.27.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 24 Mar 2025 17:16:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:20:17:e8:d7:3c:69:d0:8a:4f:88:70:55:6f:a9:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Jan 1 13:48:36 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2526a694556cef84d4294e61bc03682521c83931
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:d7:45:64:bd:2c:e3:15:e7:10:82:46:a3:2c:
d9:28:e5:d2:ce:f9:6f:00:0d:f2:cc:6b:78:5e:12:
a1:8a:0d:28:e3:a2:b9:32:fe:c1:03:ce:d2:fe:54:
76:83:e2:1e:05:c3:7a:84:9f:30:19:ed:69:fa:c9:
7d:85:05:da:c0:bf:ec:12:9c:b5:e8:95:d4:6c:b1:
57:dd:f8:35:61:3c:6b:22:91:a8:2d:a0:18:da:aa:
b6:ac:bf:f8:7a:98:6a:9d:3e:c3:42:3f:d8:5f:44:
57:2f:1a:6c:b3:ef:74:16:42:92:d7:5a:70:df:ef:
d2:9d:8a:aa:f8:52:9b:61:a3:2e:86:2a:df:5e:86:
e3:d7:e1:42:8e:aa:c7:6b:1e:fc:f1:66:17:68:1d:
e5:fe:6c:60:fa:60:69:15:4d:4f:34:37:7e:d4:44:
d3:d3:8f:70:0e:5a:b9:a6:2f:46:4c:b8:ee:e4:af:
4e:d7:bf:84:02:60:ff:8b:59:78:a7:0c:53:e6:d7:
61:32:43:99:5b:da:8b:6a:ab:e0:e1:b0:d4:6c:03:
f4:eb:42:c0:f5:ba:34:8b:12:d1:75:de:ff:c2:57:
82:3a:8d:ae:a4:0c:93:92:f3:24:b4:19:78:0f:ef:
9a:11:40:80:9e:78:67:d4:95:74:3e:d6:e1:1a:70:
98:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:26:A6:94:55:6C:EF:84:D4:29:4E:61:BC:03:68:25:21:C8:39:31
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/JSamlFVs74TUKU5hvANoJSHIOTE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.27.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:0b:82:4c:f9:88:a8:5b:11:e8:c9:cf:8b:c4:c5:62:43:cf:
1f:9d:c0:a4:13:a9:80:38:75:c9:40:46:ec:de:81:ee:1b:50:
bc:a7:27:80:0b:55:8b:67:51:05:a7:2a:0c:28:12:c5:d5:b1:
3d:27:da:54:96:15:35:1d:d3:cf:43:94:e9:cf:57:0d:ec:55:
f3:fe:e2:c5:8b:93:94:c3:b0:39:4b:36:86:d8:22:b8:47:9a:
bb:13:e8:5b:a4:0a:f9:a3:33:e8:51:3f:5d:f6:7a:75:ff:ee:
9f:13:67:6d:b2:43:1b:d7:cb:6c:1c:83:3f:6b:6f:b6:0e:6d:
e1:6c:fb:01:dd:f5:96:37:ba:54:aa:88:80:39:f0:e5:2d:42:
43:18:ae:d5:5b:fd:83:e2:ea:b2:d4:1d:a6:73:8e:f0:e9:cd:
8b:13:90:29:b4:52:de:df:b8:9d:65:4d:f6:4a:7e:f0:47:b4:
8e:19:bf:79:75:f6:c8:f9:6d:13:5c:7b:e6:38:4e:31:8a:a2:
a2:52:fd:c0:98:26:95:20:27:c9:23:fe:d5:f6:fd:7a:b2:a5:
ca:66:70:9b:18:b1:12:17:4b:93:4d:89:5e:0d:6f:a4:f6:85:
90:0c:1d:6e:be:57:65:84:a4:fd:f9:27:3d:91:5a:80:9c:c9:
89:09:bf:22
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQiIBfo1zxp0IpPiHBVb6n4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNlNjA5NzY5ODY4NmUxNTU1ZjUxZjZjODgzYmM1YTU4NTQ5
YjIzNjIwHhcNMjUwMTAxMTM0ODM2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyNTI2YTY5NDU1NmNlZjg0ZDQyOTRlNjFiYzAzNjgyNTIxYzgzOTMxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxtdFZL0s4xXnEIJGoyzZKOXSzvlv
AA3yzGt4XhKhig0o46K5Mv7BA87S/lR2g+IeBcN6hJ8wGe1p+sl9hQXawL/sEpy1
6JXUbLFX3fg1YTxrIpGoLaAY2qq2rL/4ephqnT7DQj/YX0RXLxpss+90FkKS11pw
3+/SnYqq+FKbYaMuhirfXobj1+FCjqrHax788WYXaB3l/mxg+mBpFU1PNDd+1ETT
049wDlq5pi9GTLju5K9O17+EAmD/i1l4pwxT5tdhMkOZW9qLaqvg4bDUbAP060LA
9bo0ixLRdd7/wleCOo2upAyTkvMktBl4D++aEUCAnnhn1JV0PtbhGnCYyQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCUmppRVbO+E1ClOYbwDaCUhyDkxMB8GA1UdIwQY
MBaAFD5gl2mGhuFVX1H2yIO8WlhUmyNiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGIt
ZTFiZDg4ZDNmZDA3LzEvSlNhbWxGVnM3NFRVS1U1aHZBTm9KU0hJT1RFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGItZTFiZDg4ZDNmZDA3
LzEvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQATVobMA0G
CSqGSIb3DQEBCwUAA4IBAQCgC4JM+YioWxHoyc+LxMViQ88fncCkE6mAOHXJQEbs
3oHuG1C8pyeAC1WLZ1EFpyoMKBLF1bE9J9pUlhU1HdPPQ5Tpz1cN7FXz/uLFi5OU
w7A5SzaG2CK4R5q7E+hbpAr5ozPoUT9d9np1/+6fE2dtskMb18tsHIM/a2+2Dm3h
bPsB3fWWN7pUqoiAOfDlLUJDGK7VW/2D4uqy1B2mc47w6c2LE5AptFLe37idZU32
Sn7wR7SOGb95dfbI+W0TXHvmOE4xiqKiUv3AmCaVICfJI/7V9v16sqXKZnCbGLES
F0uTTYleDW+k9oWQDB1uvldlhKT9+Sc9kVqAnMmJCb8i
-----END CERTIFICATE-----
Generated at Sat Apr 12 03:12:57 2025 by rpki-client