Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/M7j49QSscjCZnZReBYjTajQHY0w.roa
File: M7j49QSscjCZnZReBYjTajQHY0w.roa (raw, json)
Hash identifier: eKhcvCanAjzPLSA+Ce3pOyJoOE1TuB/WLKolQeUXU5g=
Subject key identifier: 33:B8:F8:F5:04:AC:72:30:99:9D:94:5E:05:88:D3:6A:34:07:63:4C
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 01917096E4F1C1432D0CB567E8A7628CE3F3
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/M7j49QSscjCZnZReBYjTajQHY0w.roa
Signing time: Tue 20 Aug 2024 16:20:22 +0000
ROA not before: Tue 20 Aug 2024 16:20:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211301
IP address blocks: 77.90.57.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 21 Sep 2024 04:09:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:70:96:e4:f1:c1:43:2d:0c:b5:67:e8:a7:62:8c:e3:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Aug 20 16:20:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=33b8f8f504ac7230999d945e0588d36a3407634c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:1e:14:51:05:ce:b2:ec:3e:cd:3e:09:ef:9f:
fa:73:2e:37:b0:2b:60:32:15:24:a8:fa:20:42:5a:
1c:55:7c:c3:0e:e2:73:33:46:47:62:cc:ff:43:0f:
3b:f9:cc:f0:0e:c7:22:28:4b:4a:ec:9d:ed:51:d7:
3d:8f:a1:90:bb:ff:46:e8:8e:56:b2:43:d2:c0:a5:
31:85:cf:bf:d7:6f:65:83:c3:57:5b:7c:24:73:41:
dc:52:b3:df:b2:5f:d5:07:fb:9f:0b:b9:2e:37:29:
d4:7c:3c:27:fb:f7:ed:95:70:de:a7:18:23:b3:96:
3d:6a:0c:51:87:b4:9f:aa:33:36:73:5c:b6:85:6d:
8f:97:f0:23:71:6b:73:d9:89:df:4e:11:d1:1a:69:
4c:5c:e9:24:22:77:3c:7f:91:90:b4:ec:b3:09:1b:
58:7f:d9:6f:38:c1:72:97:11:d2:8c:a8:11:1f:be:
98:8a:40:b5:cf:ca:cd:8c:eb:bf:14:dc:e1:b6:71:
82:c4:a1:2d:9e:5c:4d:5c:8d:e3:a7:25:cd:d9:b3:
47:2f:d3:59:91:91:8f:a5:06:60:d9:60:a8:c7:80:
f2:42:0f:ba:46:5f:80:71:0f:a8:49:e6:46:c9:e6:
84:3b:62:26:e9:5b:11:79:4c:52:59:8e:92:95:8e:
e7:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:B8:F8:F5:04:AC:72:30:99:9D:94:5E:05:88:D3:6A:34:07:63:4C
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/M7j49QSscjCZnZReBYjTajQHY0w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.57.0/24
Signature Algorithm: sha256WithRSAEncryption
c4:98:bd:bc:44:f5:be:a6:d4:b9:3e:6d:10:4a:7e:a0:d8:73:
fa:34:65:4f:12:76:a9:6a:bc:da:f9:dd:86:37:74:7d:00:fe:
43:31:8d:cd:93:0d:14:3c:24:a5:74:ee:5a:11:27:f2:06:c3:
2f:f3:1d:e2:df:17:28:ea:a7:1a:40:8d:e9:e4:d3:08:b7:7b:
7e:aa:00:05:68:df:22:97:76:19:a8:ad:3f:58:cc:ff:c8:36:
14:fc:54:05:63:80:b3:83:2b:61:98:34:7b:e5:af:fb:1e:5b:
95:14:f3:d4:af:1b:4a:37:88:43:41:d6:41:7b:84:3e:17:8e:
4f:c2:b4:42:f2:77:e4:e1:39:9e:39:e4:40:d1:9b:54:bb:eb:
bd:f1:47:c7:18:d8:d2:5d:c5:32:c7:46:ba:a0:4c:c9:4c:ab:
3e:b6:94:59:1a:55:ea:d7:8b:14:ac:74:d6:4e:05:a6:69:f7:
bb:b6:00:c3:4d:9e:f8:e5:b2:25:ad:70:ce:12:f3:ba:de:f8:
57:6e:52:bc:b3:22:2f:30:5f:4e:de:0f:25:a2:bb:76:c1:1e:
62:d5:dd:86:1f:fa:0c:92:44:1b:0a:dd:f1:f1:3e:6b:48:0a:
df:50:c6:f2:4b:3f:76:11:06:d2:a9:32:dc:f5:d3:bd:ec:c5:
81:ac:d8:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 21 07:22:49 2024 by rpki-client on console-ams.rpki-client.org