Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PFJHYYzYQbj6wXS3gjWTi8P1bHk.roa
File: PFJHYYzYQbj6wXS3gjWTi8P1bHk.roa (raw, json)
Hash identifier: YgtgD+AqZeCivZCB9ftM07yzeCDfQ5hIhiJ9ey7xbAw=
Subject key identifier: 3C:52:47:61:8C:D8:41:B8:FA:C1:74:B7:82:35:93:8B:C3:F5:6C:79
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 0190F94B5F1E077EB491CA5F07B83940216B
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PFJHYYzYQbj6wXS3gjWTi8P1bHk.roa
Signing time: Sun 28 Jul 2024 12:23:04 +0000
ROA not before: Sun 28 Jul 2024 12:23:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 50580
IP address blocks: 77.90.44.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 29 Aug 2024 04:07:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:f9:4b:5f:1e:07:7e:b4:91:ca:5f:07:b8:39:40:21:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Jul 28 12:23:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3c5247618cd841b8fac174b78235938bc3f56c79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:50:16:9b:1a:26:a9:52:78:70:de:8b:9a:4f:
ae:53:c9:91:00:ed:6e:26:cb:02:4c:24:ea:bc:50:
61:0c:e2:2e:aa:f2:51:29:98:ae:a4:4a:36:35:27:
7f:2c:7d:45:5a:76:66:95:f9:9f:f2:4c:5d:a7:a3:
75:95:43:b8:67:ab:fd:b0:29:cb:f9:07:7d:9f:15:
05:d1:34:a6:1f:08:11:1a:8d:d9:1b:e4:b6:f0:d6:
f6:e7:c6:0b:b0:6e:e5:a0:07:7e:16:2e:56:45:4b:
95:50:17:32:c9:53:c4:8b:ce:e7:c0:39:bc:a5:ea:
4c:b2:06:a3:1f:42:15:ff:da:53:c4:04:db:a0:74:
07:78:bd:c8:3e:8a:1e:e5:29:9a:e9:51:25:64:80:
f7:3a:77:2e:1d:82:20:77:e6:d1:81:3b:8f:18:c0:
d0:12:10:09:9e:43:fc:15:36:9d:29:14:a9:22:35:
9c:48:1e:50:ea:ae:0e:00:62:e6:76:44:80:c3:d7:
55:48:8e:6e:31:a5:bc:85:ba:03:74:37:c7:ab:27:
a7:b4:37:d5:a7:65:1e:33:72:4f:a3:c4:76:f0:48:
94:93:e4:7d:2c:0c:1c:ac:eb:d0:37:8a:98:07:f1:
07:50:e2:19:91:09:06:72:85:29:c1:26:dc:f9:53:
48:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:52:47:61:8C:D8:41:B8:FA:C1:74:B7:82:35:93:8B:C3:F5:6C:79
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PFJHYYzYQbj6wXS3gjWTi8P1bHk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.44.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:c8:1d:3b:a8:ca:b6:48:7a:61:0d:c3:4e:54:31:65:ac:61:
eb:65:f2:88:09:5d:ea:27:0a:4e:b0:46:1c:c4:ac:e3:ae:e6:
00:f4:9b:b6:58:11:28:cf:34:f6:b6:6d:f0:ab:48:23:de:7c:
b1:11:3a:6f:cc:38:12:88:00:a0:1e:df:bc:62:30:8d:26:f9:
0f:6a:65:f6:71:fc:6a:f0:53:f1:3e:4e:4d:87:e4:ea:9e:d1:
81:7c:18:a7:ae:3d:d6:df:c6:13:d8:6f:ad:78:92:ac:48:1a:
9b:7f:d7:05:f0:41:31:37:f8:98:07:f5:45:be:3f:96:28:5f:
7d:a7:f3:8a:f1:a8:c4:07:f8:77:2f:a7:fe:54:98:51:57:a9:
29:1d:f4:56:c3:12:cd:57:e9:f4:f2:cb:9c:26:8d:9b:dc:5a:
df:92:db:d9:87:4f:3d:61:3f:7a:ca:04:57:a8:78:41:7e:26:
48:e3:8b:a5:0e:3a:bc:ec:8b:34:72:6a:03:41:41:09:cd:f5:
e5:5f:67:50:09:60:ef:c1:74:61:15:de:3d:7d:ad:be:ea:dd:
3a:ee:28:d9:90:a7:9a:32:e9:47:50:cf:99:1c:bb:a3:a5:3d:
bc:c4:7d:82:bb:75:e6:a8:e0:cc:c2:31:ad:4e:a1:51:f8:b2:
d8:6d:58:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 29 06:12:37 2024 by rpki-client on console-ams.rpki-client.org