Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/UMGCGRAsQAlZNNdUVfEE16eMHco.roa
File: UMGCGRAsQAlZNNdUVfEE16eMHco.roa (raw, json)
Hash identifier: Ql/ieCg0xP+Cv2beLYNSOCa+EAzufuwtXfvyFrq8IEA=
Subject key identifier: 50:C1:82:19:10:2C:40:09:59:34:D7:54:55:F1:04:D7:A7:8C:1D:CA
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 0191032DE4A4B481C3B8A5234F30589C90B6
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/UMGCGRAsQAlZNNdUVfEE16eMHco.roa
Signing time: Tue 30 Jul 2024 10:27:04 +0000
ROA not before: Tue 30 Jul 2024 10:27:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43043
IP address blocks: 77.90.48.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 30 Sep 2024 04:07:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:03:2d:e4:a4:b4:81:c3:b8:a5:23:4f:30:58:9c:90:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Jul 30 10:27:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=50c18219102c40095934d75455f104d7a78c1dca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:44:0c:11:64:56:87:9d:e0:0c:a8:61:b4:40:
ef:03:d2:b9:33:73:de:43:02:64:59:88:86:5c:8a:
fb:3b:bc:34:9e:99:0e:2d:e0:3f:65:56:a9:d1:06:
28:3a:28:30:54:61:d8:08:64:5b:92:c8:9b:2b:bf:
a3:ea:78:92:22:36:6f:14:fb:69:db:42:aa:19:9f:
5e:f1:8d:af:62:05:9c:b0:52:1a:40:cd:ce:f5:68:
13:e6:24:e6:38:41:ec:45:87:a7:cd:82:86:02:ac:
ab:dd:d4:cd:fc:13:56:3f:75:4b:11:77:ad:22:1f:
d9:db:b6:1b:d4:f9:1c:42:23:b5:b5:94:98:18:91:
de:2b:73:90:45:8d:65:80:78:24:88:f3:93:8d:4a:
00:d1:96:d6:7d:c6:77:2c:45:65:9a:8c:28:9e:8b:
8e:8a:d4:a5:a7:1a:87:fc:96:ee:6f:89:b3:67:30:
80:bc:29:0a:98:4c:39:d9:fd:5a:55:d2:33:de:48:
f5:41:99:24:c8:dd:c0:28:b6:35:6d:7c:06:a6:4e:
9b:4f:e5:3b:5f:03:8d:5b:80:cd:0a:07:bb:9f:6f:
4e:a7:ff:ff:34:ab:cc:ec:c0:cd:d8:36:e4:65:09:
9b:2a:f3:fb:65:03:b0:89:f5:89:b1:e1:02:e7:0f:
38:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:C1:82:19:10:2C:40:09:59:34:D7:54:55:F1:04:D7:A7:8C:1D:CA
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/UMGCGRAsQAlZNNdUVfEE16eMHco.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.48.0/24
Signature Algorithm: sha256WithRSAEncryption
69:17:2a:ee:1f:7f:02:1b:d2:81:45:71:1c:da:24:ea:6b:40:
0f:36:3a:6c:d4:24:11:02:4d:b3:d7:47:42:b0:30:da:70:52:
5f:99:f2:8b:09:e5:1a:5d:d5:1d:c5:0d:18:e9:30:dd:17:d8:
df:6f:58:4b:90:6d:4a:48:a6:b0:57:f5:1b:14:2a:54:f5:30:
34:b2:26:e4:47:a9:b3:15:13:54:df:15:4f:51:92:4c:0b:8f:
cb:5f:b0:a8:54:f3:fb:bd:69:9f:68:1f:77:ec:b2:40:d9:32:
c4:49:93:99:94:8e:f5:df:a1:18:aa:ae:80:76:51:ae:ed:94:
31:ce:e7:2e:0a:97:7d:45:b1:3d:fc:ef:8d:ac:cd:f2:0e:a4:
6c:ac:a4:60:49:b2:75:a7:36:4e:c4:a7:8d:76:61:72:84:74:
83:26:d5:a1:55:28:82:69:dd:67:f9:79:e5:83:7e:69:a6:52:
f4:2d:7c:bc:75:e7:aa:ce:7a:45:44:da:35:ae:0f:ef:19:ef:
80:e3:7d:b3:88:ec:15:a9:86:a8:20:17:5b:fd:53:7e:63:16:
84:99:df:03:30:11:44:b9:03:4a:c7:00:3e:5c:65:c8:71:9f:
33:ef:a6:a8:ca:b9:4c:06:fd:b8:35:4d:53:87:7c:4c:85:23:
35:30:fd:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 30 06:51:03 2024 by rpki-client on console-ams.rpki-client.org