Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/VZq4kckMVp53lGk2ZQ92-2HUJz0.roa
File: VZq4kckMVp53lGk2ZQ92-2HUJz0.roa (raw, json)
Hash identifier: y1iy3rAvCwayGyXBK6bTAS90gZEdSglOJB8/WkxxyZE=
Subject key identifier: 55:9A:B8:91:C9:0C:56:9E:77:94:69:36:65:0F:76:FB:61:D4:27:3D
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 0192DDD90BF1D4117415602A79DED0BD06DC
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/VZq4kckMVp53lGk2ZQ92-2HUJz0.roa
Signing time: Wed 30 Oct 2024 14:34:01 +0000
ROA not before: Wed 30 Oct 2024 14:34:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215039
IP address blocks: 77.90.5.0/24 maxlen: 24
77.90.14.0/24 maxlen: 24
77.90.53.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 10 Nov 2024 05:11:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:dd:d9:0b:f1:d4:11:74:15:60:2a:79:de:d0:bd:06:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Oct 30 14:34:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=559ab891c90c569e77946936650f76fb61d4273d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:ba:55:86:e7:84:20:fc:32:eb:9e:cf:13:5f:
90:fa:58:ed:c3:35:89:20:d1:97:81:b9:cd:64:e5:
ce:86:c4:7d:8c:9b:24:16:74:99:89:c4:62:ac:dc:
f2:d8:82:8c:f3:0c:f8:f2:60:1a:8c:d1:c9:45:0b:
23:15:b5:74:14:4f:ab:89:2b:d4:08:01:62:a9:a5:
e8:ef:20:34:7f:f6:e6:30:c4:67:62:c8:42:bc:80:
5c:eb:43:14:0d:d4:8c:28:ac:f2:24:ef:e0:57:38:
80:8f:20:4d:54:44:8c:96:dd:81:d6:99:d1:37:60:
83:c4:22:16:6a:03:c4:cd:07:00:71:5f:88:c1:18:
e3:3c:41:96:fd:9b:89:e2:d8:2a:0c:44:a8:5d:72:
20:5b:59:49:93:9e:09:fe:1b:0d:05:f3:2f:99:8f:
3d:17:45:66:5c:9f:10:9f:14:ae:62:47:31:be:2d:
f3:f0:c3:45:0c:cc:b3:cf:c8:5c:e5:d3:35:5a:ab:
e3:c8:08:c8:9d:73:14:fe:8c:9f:33:40:c6:9c:6e:
dd:a7:66:6f:d5:33:a7:4a:c6:31:6a:36:a2:f8:0e:
c2:66:b4:37:b2:b7:4f:13:55:31:b5:0e:ac:ba:85:
41:bd:a4:b9:be:1a:ea:b4:59:a2:8b:07:f7:81:99:
93:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:9A:B8:91:C9:0C:56:9E:77:94:69:36:65:0F:76:FB:61:D4:27:3D
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/VZq4kckMVp53lGk2ZQ92-2HUJz0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.5.0/24
77.90.14.0/24
77.90.53.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:98:6d:a2:98:95:69:8d:22:d5:bc:21:22:cf:19:d6:ff:48:
17:0a:d1:a5:eb:6c:18:fc:49:28:ee:ca:c8:84:7b:ef:d1:24:
32:1d:32:cb:68:d3:53:da:e1:7f:c4:a4:1d:35:82:ea:3f:a4:
4d:19:73:3f:f5:8a:8f:79:ec:de:2c:e6:fe:05:41:6b:95:32:
4d:46:e9:00:59:98:80:42:15:e6:c7:15:99:b3:72:59:a2:e6:
df:de:aa:9c:c7:00:87:a6:36:99:92:ae:31:ad:48:7c:c5:1b:
5c:47:3e:49:4b:42:da:70:a9:df:10:8f:a4:b3:52:88:39:8e:
d4:4e:bd:94:f7:b6:73:71:b1:86:51:96:0a:09:f1:33:4b:ef:
b6:28:c0:30:23:b5:a0:81:b0:5c:7a:1b:20:7b:a9:14:a3:42:
c5:c2:55:41:81:c5:2d:bd:ab:14:50:bc:89:06:ea:92:17:62:
b9:f5:fd:ca:97:e2:05:f2:6b:54:46:69:fe:7b:6c:f6:8f:27:
b4:9a:ff:2c:e5:4f:8f:6d:4b:47:54:71:7e:5c:42:6f:90:8b:
a1:38:6d:0e:9b:51:32:1b:22:e7:06:3b:3e:10:66:cf:0b:aa:
af:d5:47:89:b1:ac:d0:a0:e5:98:0d:cb:33:25:9d:53:c0:88:
94:6e:71:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 10 10:19:12 2024 by rpki-client on console-ams.rpki-client.org