Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/Q8KrfXCP8PPCGTSIvsTgN1EB6ME.roa
File: Q8KrfXCP8PPCGTSIvsTgN1EB6ME.roa (raw, json)
Hash identifier: zmwnAh5YDQvpt3dfVqSxv+lRcd/PR2q/vsLc8IS9mQA=
Subject key identifier: 43:C2:AB:7D:70:8F:F0:F3:C2:19:34:88:BE:C4:E0:37:51:01:E8:C1
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 01942220196E360622E5639CD30FD03975EC
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/Q8KrfXCP8PPCGTSIvsTgN1EB6ME.roa
Signing time: Wed 01 Jan 2025 13:48:36 +0000
ROA not before: Wed 01 Jan 2025 13:48:36 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 214603
IP address blocks: 77.90.18.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 02 Feb 2025 05:09:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:20:19:6e:36:06:22:e5:63:9c:d3:0f:d0:39:75:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Jan 1 13:48:36 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=43c2ab7d708ff0f3c2193488bec4e0375101e8c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:2f:9a:a1:4f:33:75:2a:4e:d4:1a:95:71:88:
ff:29:d3:47:8d:08:cd:f6:10:5a:93:6e:1f:1c:36:
7a:cb:b8:73:16:1b:21:b7:21:48:43:bc:a7:09:04:
3a:b9:cd:d4:11:f2:64:93:d6:1a:a1:14:6c:55:2a:
01:06:29:ef:a7:1e:5c:a4:c7:a5:04:bd:39:ab:84:
83:cd:d9:fa:28:19:a8:4a:a1:f3:b6:53:eb:63:b8:
1c:b9:be:d6:0b:b9:d7:9c:c5:9c:b5:e0:ba:7d:66:
e6:01:9f:10:c5:f4:de:18:28:1f:80:42:12:cd:d4:
15:02:ee:69:0d:a5:df:01:23:e2:16:ca:22:6d:b7:
34:f8:80:61:19:9d:70:d0:6d:d2:5f:ac:44:b5:6a:
bb:3e:46:96:49:d2:fc:6a:35:8e:85:c2:f0:e6:cf:
f2:fe:cb:e0:d9:23:92:84:45:de:bf:77:79:77:e0:
29:4d:64:7d:45:87:ee:56:a6:7a:b5:c6:d0:90:13:
1a:2a:6a:ad:f0:fd:2a:c6:9a:a2:43:36:92:55:68:
4b:14:26:8c:9e:f4:44:49:e1:84:32:76:b2:2d:53:
24:29:f7:85:40:c9:4b:58:5e:27:4a:b7:ea:80:af:
d2:01:e3:bd:08:f6:24:54:13:26:fe:a5:45:5f:ca:
1f:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:C2:AB:7D:70:8F:F0:F3:C2:19:34:88:BE:C4:E0:37:51:01:E8:C1
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/Q8KrfXCP8PPCGTSIvsTgN1EB6ME.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.18.0/24
Signature Algorithm: sha256WithRSAEncryption
e2:65:64:a2:63:ea:81:ee:08:bd:5f:1f:34:1d:71:69:4d:98:
c1:18:da:07:2a:d0:44:09:f6:7a:fd:3b:7f:0f:93:72:af:65:
1b:d1:b3:61:b7:4b:2a:df:38:77:fe:25:56:fa:29:33:e4:86:
a3:65:b5:a1:f6:2c:dc:d3:ea:53:4d:c9:7e:5c:79:81:ca:d6:
c4:71:08:e0:5e:da:72:74:9d:3f:97:b1:b6:20:5b:59:6e:77:
41:ec:06:49:a4:a8:e8:3c:5d:b3:9b:6f:ec:47:44:eb:b6:bc:
a3:4e:70:88:ef:a6:e1:80:bd:eb:86:ce:25:df:ea:68:40:c3:
76:3d:7d:29:d3:87:1e:85:a1:fc:1f:61:ef:6c:08:3c:a7:f7:
8d:6b:3f:35:25:a6:be:72:36:db:2e:ff:64:da:58:c5:04:9e:
64:4a:64:90:d0:b5:a7:ed:22:4b:46:d3:35:50:17:de:5b:5f:
42:07:0e:ba:15:c3:cc:93:7d:d6:2f:45:84:74:e3:4c:75:87:
8d:80:78:23:34:39:7d:53:2f:a5:d8:20:61:90:08:58:f0:d4:
4d:45:13:d7:eb:74:c4:3b:9e:c5:96:e8:32:72:27:69:fc:c3:
90:65:2c:f6:96:e7:59:46:95:65:fa:bb:34:4f:cc:01:59:55:
45:f8:9b:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 02:26:49 2025 by rpki-client