Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/KK8dpTh8CHYpQVnwlDokZt1l7kU.roa
File: KK8dpTh8CHYpQVnwlDokZt1l7kU.roa (raw, json)
Hash identifier: TQjYrfhMmD+umNjlWRw0dyxdT0Al8aFf4WaKTxVEV6k=
Subject key identifier: 28:AF:1D:A5:38:7C:08:76:29:41:59:F0:94:3A:24:66:DD:65:EE:45
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 019422201E5FBA3DCE96B3B9621F5235352D
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/KK8dpTh8CHYpQVnwlDokZt1l7kU.roa
Signing time: Wed 01 Jan 2025 13:48:37 +0000
ROA not before: Wed 01 Jan 2025 13:48:37 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 216150
IP address blocks: 77.90.49.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 05:13:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:20:1e:5f:ba:3d:ce:96:b3:b9:62:1f:52:35:35:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Jan 1 13:48:37 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=28af1da5387c0876294159f0943a2466dd65ee45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:46:b7:d2:39:40:4f:a0:24:3d:c2:74:f5:e3:
34:c9:68:2d:a1:aa:92:41:31:4b:50:9c:64:94:91:
32:d7:00:4f:38:8f:f6:0f:be:e4:f7:8f:94:c6:c2:
de:d6:27:eb:4e:ba:d8:ea:99:5c:9f:25:a8:3c:b3:
41:41:c5:c4:00:59:a6:71:f9:49:72:7f:72:66:d7:
6d:99:33:39:8d:a0:5b:d6:57:fe:b0:85:4c:17:c8:
1c:81:c8:ee:f3:af:02:a3:13:9b:ed:3e:16:46:0f:
38:16:db:64:c4:61:98:4f:5a:ab:c3:e4:ea:f0:9a:
f4:fe:da:f9:d3:11:ba:00:6e:40:21:0c:dd:7c:e6:
e4:91:a9:1d:3a:e1:13:d9:8d:7e:8b:6d:7b:f8:bb:
c8:99:2a:42:81:b1:36:6e:d1:ba:6d:72:09:bb:da:
d5:73:b4:0e:c7:40:fc:8e:c4:93:18:83:01:65:8c:
fd:1e:08:e1:59:4b:60:11:7e:91:42:29:53:46:36:
97:19:8c:85:aa:63:4d:8e:e7:5a:b2:2a:ca:73:bc:
6f:f0:fc:4e:46:30:31:f9:24:26:07:eb:ff:41:6d:
1c:7e:0c:39:73:1e:69:e3:3c:e3:4c:82:1d:05:1c:
9d:16:aa:9d:b9:8f:46:2e:69:9a:13:43:66:49:24:
ff:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:AF:1D:A5:38:7C:08:76:29:41:59:F0:94:3A:24:66:DD:65:EE:45
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/KK8dpTh8CHYpQVnwlDokZt1l7kU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.49.0/24
Signature Algorithm: sha256WithRSAEncryption
69:f2:ec:87:3a:88:68:1e:b2:e5:02:66:3e:54:46:f6:4e:29:
8d:c2:90:c8:14:cf:a6:d3:43:2a:93:4d:90:34:1f:10:d1:94:
20:ec:a6:6b:72:18:28:3f:e0:14:47:47:4b:a3:0c:ae:3b:64:
80:f0:ba:ab:3c:8c:3f:f7:16:0d:3f:b7:46:26:7f:24:f2:ec:
19:ad:94:b6:33:fc:3f:25:7d:6a:03:74:b8:d4:29:32:60:46:
de:a9:9d:b1:a7:0a:fd:7e:cc:9a:2d:e6:e1:c0:32:30:bd:ad:
b0:8e:ba:f0:b5:0f:79:df:74:fe:02:c7:24:01:3e:6e:b7:a1:
5b:9a:14:74:11:58:11:33:11:0b:79:8b:53:73:40:5c:4d:52:
84:11:ef:1e:fc:1f:b1:ae:50:5f:92:f0:93:aa:86:2d:d3:71:
27:b9:67:d0:1f:58:a0:9c:21:03:ce:70:65:87:1f:d7:fa:5a:
55:67:db:42:b1:27:9b:5c:48:19:db:83:3e:fd:a7:c5:2f:4a:
e7:6d:34:5f:de:37:6e:aa:38:d7:bd:b3:57:c9:6a:ee:c4:7b:
d2:86:3e:a3:d4:89:10:5c:19:e4:89:2a:56:c3:85:6e:72:60:
14:ca:1c:95:b6:ed:5e:fb:88:35:7e:d6:83:98:24:d7:23:e5:
cf:8c:fc:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 03:22:47 2025 by rpki-client