Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/MznY37Hgu8k4zefUNRtCzF8Kbzg.roa
File: MznY37Hgu8k4zefUNRtCzF8Kbzg.roa (raw, json)
Hash identifier: YLgOpadb5TFigfu0aHro7gdwiRW191xjf0J2MId3fmA=
Subject key identifier: 33:39:D8:DF:B1:E0:BB:C9:38:CD:E7:D4:35:1B:42:CC:5F:0A:6F:38
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 0193A4AC6949E48FE1D2208D49220C8B3D43
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/MznY37Hgu8k4zefUNRtCzF8Kbzg.roa
Signing time: Sun 08 Dec 2024 05:09:42 +0000
ROA not before: Sun 08 Dec 2024 05:09:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215828
IP address blocks: 77.90.25.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 12 Dec 2024 18:09:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:a4:ac:69:49:e4:8f:e1:d2:20:8d:49:22:0c:8b:3d:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Dec 8 05:09:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3339d8dfb1e0bbc938cde7d4351b42cc5f0a6f38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:a6:28:df:f7:98:08:d8:67:c3:fd:00:7a:4a:
60:78:e8:c0:d0:94:6d:fc:40:d9:21:db:20:40:43:
f7:be:f2:37:e6:82:43:3c:89:13:ee:fa:10:94:a5:
38:7f:2a:37:b9:3b:52:0c:13:d1:fe:42:e9:f9:0e:
05:63:6c:fc:ab:63:d0:00:bd:df:5c:46:b8:c9:cc:
a7:dd:b7:98:64:f1:c3:f4:22:0c:e9:b5:59:45:42:
04:21:8d:fd:f1:89:ed:47:fa:d3:8e:e7:1e:e7:66:
1a:ce:25:4e:86:d7:dd:1e:ef:ec:20:95:fc:a9:33:
bb:af:a3:d4:59:4a:1f:0f:3a:20:66:fc:28:e5:f5:
9e:64:b6:de:7f:b2:46:8d:27:b4:17:7b:00:26:c9:
bd:0a:b8:00:0d:6d:fe:bb:c7:c1:1f:b2:48:ce:90:
4a:c3:da:de:2d:73:c3:0d:ba:83:5c:fd:28:b2:66:
f6:6a:f2:6b:ee:13:cb:c8:fc:b1:6a:65:62:38:df:
6a:ec:55:38:73:d6:ab:43:cb:d3:e4:b2:81:64:d4:
f5:d1:b9:87:39:5a:03:13:8b:28:a4:d6:2d:97:fe:
23:06:75:75:22:79:c5:7e:fb:28:48:ee:00:2a:db:
33:75:5d:ee:80:5f:68:7c:95:ad:22:07:8d:a6:88:
17:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:39:D8:DF:B1:E0:BB:C9:38:CD:E7:D4:35:1B:42:CC:5F:0A:6F:38
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/MznY37Hgu8k4zefUNRtCzF8Kbzg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.25.0/24
Signature Algorithm: sha256WithRSAEncryption
44:10:98:c6:4d:2e:5e:92:d2:bb:cd:8e:75:ca:c8:e0:85:9a:
2d:82:a1:c3:c8:39:46:46:be:7d:50:82:81:fd:5f:53:6e:ed:
d5:08:4a:4a:97:c2:2c:2a:9a:f8:cf:ff:8c:12:f5:fd:3f:c8:
17:02:62:fc:07:73:c5:d2:a3:d4:3c:41:96:aa:82:a0:5a:91:
79:89:b1:d2:71:6f:bb:ae:b0:3c:23:3e:ca:ed:97:91:6e:df:
78:5d:a0:34:ad:cb:ea:ac:19:b9:54:ea:f4:11:12:85:c3:2e:
17:91:01:a3:b9:ae:95:bb:c2:31:75:69:d6:b0:47:09:8c:50:
19:2f:07:55:a7:11:79:0c:48:b5:7b:4d:a4:14:32:de:4c:eb:
0e:eb:ef:73:d9:de:e1:c3:bc:44:4e:6f:44:d3:d2:ee:38:e4:
03:ff:c3:73:44:b6:ab:62:41:f6:ab:1f:8f:2c:ba:96:92:bc:
c3:41:1a:12:f3:63:a5:ae:1a:21:31:19:8a:23:26:65:2d:2f:
7a:2e:45:9f:ca:5d:b6:ac:e0:aa:5f:58:8c:2b:ed:97:c9:c6:
16:db:c3:47:98:4d:5d:02:2d:2a:9c:09:de:a5:59:1f:1a:39:
99:8f:b2:8c:7e:c6:da:a9:c8:4c:b3:62:de:b5:27:15:5f:c2:
8a:a0:22:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Dec 12 22:59:02 2024 by rpki-client on console-ams.rpki-client.org