Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/TlVAhmApYv-sMONQTdp5zUOjlwc.roa
File: TlVAhmApYv-sMONQTdp5zUOjlwc.roa (raw, json)
Hash identifier: O8CWmYFsOIfo/jyZsZp6wrTdGAX04CIDtDSR03ZDdaI=
Subject key identifier: 4E:55:40:86:60:29:62:FF:AC:30:E3:50:4D:DA:79:CD:43:A3:97:07
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 019422201A460FF09482E06930971273DFBE
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/TlVAhmApYv-sMONQTdp5zUOjlwc.roa
Signing time: Wed 01 Jan 2025 13:48:36 +0000
ROA not before: Wed 01 Jan 2025 13:48:36 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 214771
IP address blocks: 77.90.20.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 24 Feb 2025 05:12:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:20:1a:46:0f:f0:94:82:e0:69:30:97:12:73:df:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Jan 1 13:48:36 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4e554086602962ffac30e3504dda79cd43a39707
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:41:52:71:a1:7c:1c:2c:f7:1a:04:99:d3:a8:
55:87:a1:60:8e:64:de:c0:7a:05:27:c8:8c:bc:1f:
0c:72:c3:36:25:4b:d0:e0:72:ee:33:45:89:f2:82:
c7:82:5e:70:d0:7e:a7:4a:9d:14:7d:eb:b3:bf:df:
4f:9f:0f:f4:e7:84:bd:ea:2b:54:c3:a4:21:78:89:
53:19:d6:2f:52:49:40:5e:5f:07:4a:b4:4f:9f:d6:
76:dd:f3:7c:6c:25:63:de:73:27:3f:24:d8:7b:6e:
43:70:d8:b2:fd:48:68:49:90:ff:5a:24:50:3b:a4:
ee:0c:99:77:f5:88:3d:51:55:ac:7e:6c:e7:cb:b3:
d7:78:6d:88:e7:3f:b5:e5:b2:ef:14:49:0b:5e:65:
ff:74:76:d1:9d:83:3d:cc:19:52:b6:24:16:0e:0e:
4d:da:8f:a1:59:72:b1:2f:6f:8a:e9:34:91:6d:84:
77:b2:21:5e:17:82:f6:13:0e:5d:81:ec:e4:e0:35:
6e:22:df:34:52:44:19:f2:88:99:3c:9e:d4:b8:df:
ca:ae:90:49:a5:4b:98:02:e9:00:44:32:6f:45:ba:
2d:fc:07:92:53:d9:39:3b:3a:6b:1f:cf:81:e2:de:
af:f6:22:28:83:e1:df:ed:48:1b:e0:b9:3d:6a:39:
df:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:55:40:86:60:29:62:FF:AC:30:E3:50:4D:DA:79:CD:43:A3:97:07
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/TlVAhmApYv-sMONQTdp5zUOjlwc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.20.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:38:fa:c7:42:b2:d2:3a:13:7b:70:4b:b7:aa:ca:e5:e4:c7:
da:ed:65:21:61:76:a2:72:2c:60:9d:8b:20:4c:6f:66:00:9e:
4a:93:7d:77:ad:82:cd:c7:ee:67:2d:b2:2e:4d:04:9c:61:99:
c6:b3:34:3c:db:e5:db:35:94:98:a2:52:de:25:e3:f5:96:11:
23:60:5c:38:91:9e:7a:56:33:7d:bf:45:05:ca:e3:dd:32:cf:
ec:20:87:d5:40:b0:17:77:9e:70:b6:26:d7:c4:e2:3a:9a:1e:
d0:5a:cd:dc:87:6e:d6:d4:a6:0d:1f:cb:8a:93:29:71:50:67:
4c:6b:de:73:38:9a:2f:cf:e8:d7:51:c0:f8:15:89:44:4a:03:
ca:af:2d:51:e9:d0:aa:81:f1:48:68:02:a3:5f:c1:ee:d1:dc:
43:a5:67:15:f8:1f:95:a3:28:2d:98:79:8e:20:24:9b:57:ad:
d0:fd:e4:12:45:97:99:4c:d6:49:ba:3e:b3:dd:87:32:82:c8:
45:de:bf:89:60:33:ce:ca:97:fc:44:61:3a:b9:c6:73:92:49:
0c:a4:e4:99:13:e5:28:5d:2c:0c:24:99:0e:dc:1c:10:5d:90:
ee:30:ea:63:73:08:be:7e:8d:5a:f7:15:e9:e8:7a:ea:f6:c6:
e7:a2:b5:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 02:32:16 2025 by rpki-client