Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/M-gPmJUg5p7eGQbWGhLSbfI_2Hs.roa
File: M-gPmJUg5p7eGQbWGhLSbfI_2Hs.roa (raw, json)
Hash identifier: K7Rd2wpPebVyEu+r5Ezw11PytcR9Cen9xNddauMLYOw=
Subject key identifier: 33:E8:0F:98:95:20:E6:9E:DE:19:06:D6:1A:12:D2:6D:F2:3F:D8:7B
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 019426E6FBDDBA8121486A8187C7D88936C5
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/M-gPmJUg5p7eGQbWGhLSbfI_2Hs.roa
Signing time: Thu 02 Jan 2025 12:04:19 +0000
ROA not before: Thu 02 Jan 2025 12:04:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 197477
IP address blocks: 77.90.10.0/24 maxlen: 24
77.90.11.0/24 maxlen: 24
77.90.50.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 02 Feb 2025 21:49:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:e6:fb:dd:ba:81:21:48:6a:81:87:c7:d8:89:36:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Jan 2 12:04:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=33e80f989520e69ede1906d61a12d26df23fd87b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:b5:ee:60:46:77:80:77:84:fb:04:35:67:21:
b6:80:bf:c9:2b:23:79:47:d1:00:28:e0:dc:b5:35:
42:f5:40:63:be:ef:51:c5:68:3f:1d:ff:5e:67:98:
15:06:bb:00:fe:af:fb:3f:d0:f3:be:20:e4:25:05:
55:2e:d7:4f:79:b4:94:08:fa:26:e0:ca:5f:bc:e8:
ce:63:d4:63:ae:d4:e7:04:c5:a3:c3:04:26:7c:06:
74:82:ae:6f:28:5e:06:eb:47:51:08:a1:20:74:64:
3b:60:59:88:45:c0:62:29:cb:8c:8d:82:d5:46:31:
1e:f7:63:98:94:eb:bc:7e:dd:2d:c5:91:d3:6c:2f:
4a:32:b9:5c:69:eb:25:5d:e9:4a:bf:fd:56:9d:0b:
d8:bd:51:91:d8:62:7a:d3:89:8b:f1:9a:d9:3a:38:
2a:8b:5a:c6:b3:86:42:46:46:dd:9e:8c:cc:6d:58:
0d:1e:0c:9f:0b:f5:74:c1:c8:3a:eb:e4:78:4f:d5:
99:79:65:c8:de:14:52:63:fe:ee:a1:41:75:04:f8:
db:51:35:2b:1e:eb:69:a1:86:ee:f7:70:d7:d0:14:
d4:2b:55:e9:5f:5d:73:7d:fe:85:d9:f8:77:f7:3d:
25:5d:5b:46:af:c9:bb:af:3d:d0:e0:16:fb:49:e9:
ec:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:E8:0F:98:95:20:E6:9E:DE:19:06:D6:1A:12:D2:6D:F2:3F:D8:7B
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/M-gPmJUg5p7eGQbWGhLSbfI_2Hs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.10.0/23
77.90.50.0/24
Signature Algorithm: sha256WithRSAEncryption
61:5f:19:9d:7c:87:68:4a:7d:49:18:9b:38:51:8c:b7:9e:3c:
2a:ef:3e:05:fb:1a:eb:c6:68:0a:e2:21:67:59:31:0c:44:7b:
9a:0e:76:42:a2:7b:a4:36:73:da:2c:aa:18:06:7a:5e:b8:5c:
98:bb:46:79:86:39:63:4a:89:4f:92:87:9d:5f:d8:b3:40:d3:
7f:20:2a:1b:33:fc:69:98:0d:e5:48:7c:7b:43:13:9d:80:a3:
df:9f:87:88:9b:37:81:db:f8:5a:bf:5e:3f:42:84:46:aa:ac:
c9:e5:98:5b:57:fc:71:80:99:e2:be:85:6f:f5:0c:7f:03:cf:
5f:d7:cb:93:8d:a0:df:06:63:16:1c:d6:31:4f:2a:d4:1f:db:
68:7f:dc:73:b8:d4:af:90:fe:b1:da:cb:7f:2f:4f:63:eb:6d:
e8:ee:f8:0d:80:ed:69:89:da:0c:44:30:9c:63:1e:55:49:fc:
23:77:b7:b9:49:6e:fe:9b:d5:d9:13:a8:aa:33:89:af:17:3a:
89:d3:d6:13:35:92:92:d3:3a:b1:64:6e:e3:a7:9f:2c:66:ed:
3c:9c:dc:32:a2:4e:bb:06:bb:7d:0a:d2:9b:bb:b7:41:73:3f:
b9:77:17:92:e8:cc:a4:03:dc:ef:43:21:7d:50:3f:4d:21:4a:
23:e6:8f:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 02:34:28 2025 by rpki-client