Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/MnjzrpJh4bdF8ImYJbZdwl5AiU8.roa
File: MnjzrpJh4bdF8ImYJbZdwl5AiU8.roa (raw, json)
Hash identifier: BsleBrB7IQtmnu6AsuN89bFEigW7qQVy7tvcEDvG3Vk=
Subject key identifier: 32:78:F3:AE:92:61:E1:B7:45:F0:89:98:25:B6:5D:C2:5E:40:89:4F
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 0193147B8DE8B331A59DA18AE314523ABA0D
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/MnjzrpJh4bdF8ImYJbZdwl5AiU8.roa
Signing time: Sun 10 Nov 2024 05:11:01 +0000
ROA not before: Sun 10 Nov 2024 05:11:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215039
IP address blocks: 77.90.14.0/24 maxlen: 24
77.90.53.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 10 Nov 2024 08:33:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:14:7b:8d:e8:b3:31:a5:9d:a1:8a:e3:14:52:3a:ba:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Nov 10 05:11:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3278f3ae9261e1b745f0899825b65dc25e40894f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:a1:26:fa:4d:3a:d7:99:e0:a2:bc:8a:ad:c9:
ac:bb:3a:66:bc:68:32:0e:f2:1f:82:43:3f:53:19:
d3:7f:04:0f:e5:33:2b:e2:be:ad:0d:40:20:98:91:
2d:eb:c1:cf:26:52:30:7d:ec:85:99:ef:e0:8e:11:
89:72:ea:f0:d6:4d:57:57:d4:58:1a:e0:86:65:8d:
a6:5d:c6:e3:25:4a:5b:a7:28:c4:7e:f6:80:35:ec:
41:e4:fb:8c:c5:82:28:15:bf:eb:cd:32:40:d7:83:
a9:be:54:f1:36:0a:76:c5:c4:68:4d:9c:f7:74:67:
d4:87:60:84:92:14:25:dd:2e:cb:7f:5d:3e:17:43:
ba:95:89:c8:c2:2d:77:95:f8:5d:e3:6d:8e:96:01:
4e:1c:48:a4:a3:51:90:ae:44:62:7e:53:26:99:fd:
73:e0:0a:7f:2f:98:8e:0a:64:0d:05:94:a0:f7:2a:
1d:a6:03:7d:22:e4:2d:d0:88:32:37:2c:03:99:e1:
ea:1e:94:eb:3f:e4:13:64:10:f4:28:bc:df:9a:dc:
23:df:32:e0:12:6e:be:d4:f0:00:d1:0e:b5:54:83:
92:34:46:1a:30:d6:40:76:a7:d0:37:dd:92:ca:f3:
e3:ec:ed:f9:af:fa:54:67:7c:99:24:6e:c3:df:00:
8c:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:78:F3:AE:92:61:E1:B7:45:F0:89:98:25:B6:5D:C2:5E:40:89:4F
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/MnjzrpJh4bdF8ImYJbZdwl5AiU8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.14.0/24
77.90.53.0/24
Signature Algorithm: sha256WithRSAEncryption
d7:c8:e4:65:21:3b:f6:d8:eb:4e:99:ba:eb:5a:3e:25:a8:be:
c6:9c:4d:1a:db:87:00:b1:43:5d:3e:1c:36:f7:ab:da:0b:7b:
ad:07:10:5f:7c:f7:84:78:3f:7a:ba:37:a7:6a:28:78:7d:c5:
36:33:94:ca:fc:a2:99:c1:66:7c:09:99:ed:f3:10:05:db:08:
42:8c:24:a5:a1:7d:c4:c0:21:42:2f:1d:12:2f:5e:58:ae:07:
64:cd:22:6c:fd:01:4a:6e:8b:38:7a:1e:c3:28:35:1e:dd:6e:
ff:69:fc:56:86:25:54:a4:dc:48:38:66:ec:e0:f6:13:e2:6c:
70:d1:78:78:e8:07:94:b6:89:40:ae:33:7c:38:f0:52:ea:95:
58:4a:01:c9:a8:88:8a:14:70:d9:15:91:22:81:70:0b:49:86:
6c:cb:bf:a8:5a:64:0c:df:96:63:1f:33:2e:e4:97:89:e6:32:
78:10:9e:4a:f6:f1:0b:f1:81:31:93:c0:11:1c:58:5d:fb:7d:
1d:3b:1d:fe:78:5e:de:95:b8:3a:5e:5e:80:d7:5c:ac:68:46:
31:e8:1c:6f:73:0b:e7:5c:e0:b1:e4:a5:ea:2a:1a:df:ef:af:
7b:c3:b9:09:9a:88:d0:ae:03:6c:aa:ee:a0:d0:f9:0a:be:a8:
f9:0a:00:ef
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAZMUe43oszGlnaGK4xRSOroNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNlNjA5NzY5ODY4NmUxNTU1ZjUxZjZjODgzYmM1YTU4NTQ5
YjIzNjIwHhcNMjQxMTEwMDUxMTAxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzMjc4ZjNhZTkyNjFlMWI3NDVmMDg5OTgyNWI2NWRjMjVlNDA4OTRmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiKEm+k0615ngoryKrcmsuzpmvGgy
DvIfgkM/UxnTfwQP5TMr4r6tDUAgmJEt68HPJlIwfeyFme/gjhGJcurw1k1XV9RY
GuCGZY2mXcbjJUpbpyjEfvaANexB5PuMxYIoFb/rzTJA14OpvlTxNgp2xcRoTZz3
dGfUh2CEkhQl3S7Lf10+F0O6lYnIwi13lfhd422OlgFOHEiko1GQrkRiflMmmf1z
4Ap/L5iOCmQNBZSg9yodpgN9IuQt0IgyNywDmeHqHpTrP+QTZBD0KLzfmtwj3zLg
Em6+1PAA0Q61VIOSNEYaMNZAdqfQN92SyvPj7O35r/pUZ3yZJG7D3wCM2QIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFDJ4866SYeG3RfCJmCW2XcJeQIlPMB8GA1UdIwQY
MBaAFD5gl2mGhuFVX1H2yIO8WlhUmyNiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGIt
ZTFiZDg4ZDNmZDA3LzEvTW5qenJwSmg0YmRGOEltWUpiWmR3bDVBaVU4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGItZTFiZDg4ZDNmZDA3
LzEvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQATVoOAwQA
TVo1MA0GCSqGSIb3DQEBCwUAA4IBAQDXyORlITv22OtOmbrrWj4lqL7GnE0a24cA
sUNdPhw296vaC3utBxBffPeEeD96ujenaih4fcU2M5TK/KKZwWZ8CZnt8xAF2whC
jCSloX3EwCFCLx0SL15YrgdkzSJs/QFKbos4eh7DKDUe3W7/afxWhiVUpNxIOGbs
4PYT4mxw0Xh46AeUtolArjN8OPBS6pVYSgHJqIiKFHDZFZEigXALSYZsy7+oWmQM
35ZjHzMu5JeJ5jJ4EJ5K9vEL8YExk8ARHFhd+30dOx3+eF7elbg6Xl6A11ysaEYx
6BxvcwvnXOCx5KXqKhrf7697w7kJmojQrgNsqu6g0PkKvqj5CgDv
-----END CERTIFICATE-----
Generated at Sun Nov 10 12:46:23 2024 by rpki-client on console-fra.rpki-client.org