Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/K4fujyN9xGEwGpPf_tlyGj4vEEg.roa
File: K4fujyN9xGEwGpPf_tlyGj4vEEg.roa (raw, json)
Hash identifier: wUnLeknwxciFY628GZjUGdzmvtAHd1w+2ap9lQEnmWc=
Subject key identifier: 2B:87:EE:8F:23:7D:C4:61:30:1A:93:DF:FE:D9:72:1A:3E:2F:10:48
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 018E605BFCF6C3C0F6580E96599881E66B1C
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/K4fujyN9xGEwGpPf_tlyGj4vEEg.roa
Signing time: Thu 21 Mar 2024 09:33:45 +0000
ROA not before: Thu 21 Mar 2024 09:33:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 20473
IP address blocks: 77.90.1.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 19 Apr 2024 17:58:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:60:5b:fc:f6:c3:c0:f6:58:0e:96:59:98:81:e6:6b:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Mar 21 09:33:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2b87ee8f237dc461301a93dffed9721a3e2f1048
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:df:47:3f:3d:31:52:2c:87:ae:eb:a8:76:b6:
9b:fa:41:b0:cb:73:df:bb:e7:24:fc:95:4b:7b:b9:
9c:db:23:83:94:91:81:f6:38:10:a4:6a:64:d1:bb:
c3:f4:b8:ae:bc:26:9b:5c:32:69:6d:52:8d:64:c5:
75:08:f8:a8:cf:69:59:f4:f6:4b:38:e9:69:67:d7:
99:40:af:8c:3f:4e:c2:c5:42:46:5c:fa:d4:3c:6d:
1e:09:f3:95:47:b9:8e:99:b4:7b:19:b4:64:e6:7e:
4d:bd:9f:5f:53:74:47:a2:0f:39:62:17:2f:96:25:
72:de:39:61:d2:86:0d:9b:ce:fe:cb:47:78:c5:20:
02:2a:d0:36:fe:5a:5b:43:e5:a3:d4:9d:ad:90:d3:
bd:3a:12:d4:e0:c4:6d:dc:ba:3a:fe:c2:71:ab:23:
26:79:2f:b2:28:11:d5:3e:8a:0a:7a:a9:f2:14:e3:
76:70:4c:1e:0f:7d:85:64:b1:4a:78:40:ba:d4:e7:
41:ae:74:b8:06:70:ee:ac:ae:15:49:a5:b9:8b:d1:
6c:87:79:61:1d:99:52:4a:13:0c:d4:4a:40:43:5a:
ec:bb:31:c2:dd:3e:21:88:b3:e9:c9:c2:81:26:02:
77:0c:cd:09:63:7d:90:33:0d:20:1c:60:f7:6b:23:
e5:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:87:EE:8F:23:7D:C4:61:30:1A:93:DF:FE:D9:72:1A:3E:2F:10:48
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/K4fujyN9xGEwGpPf_tlyGj4vEEg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.1.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:13:b9:be:7f:e3:c9:35:30:33:d9:a2:a8:fc:9f:32:12:59:
26:6e:9d:41:34:28:5b:82:22:09:ce:42:28:12:b2:4c:60:55:
d5:7b:bb:cc:72:16:a1:44:a4:86:26:c7:3f:e8:bd:62:c1:6a:
e0:40:d3:d9:82:80:07:21:ed:88:fd:d2:b8:99:b2:18:cd:cd:
b7:65:bb:16:3a:8e:3b:93:38:ea:4e:6c:8b:0a:2a:b2:19:35:
3b:d7:9f:6d:e9:88:a6:3e:61:13:c8:35:71:c4:89:49:14:4f:
3e:aa:1a:c7:78:d2:b4:5f:75:91:7b:31:23:58:54:64:85:98:
72:16:bd:e9:c0:37:7f:35:b6:cf:d2:cb:ea:f3:9e:a3:93:a0:
79:e1:0b:3d:7b:cf:6d:c2:5b:5c:c5:50:b7:27:7d:7f:2e:d3:
5e:e3:b2:7f:16:54:2a:74:4e:9a:eb:db:74:3d:6b:b4:2b:c0:
67:e7:50:ce:3d:e6:0c:60:51:4f:c3:58:19:2b:24:f6:6e:0b:
a4:7f:42:10:6b:f1:9e:22:f0:b6:31:c9:50:8c:69:6b:5f:08:
ca:d0:fa:0e:8f:42:50:d7:b9:9d:f0:79:d8:f6:4e:52:57:88:
b9:d0:e6:41:02:9e:cc:99:c0:ce:fe:fd:23:af:77:54:8e:08:
26:c2:3a:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:30 2024 by rpki-client on console-fra.rpki-client.org