Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/W8bFEMKM9gvj2pNho0yojtP1stk.roa
File: W8bFEMKM9gvj2pNho0yojtP1stk.roa (raw, json)
Hash identifier: TI0E7BpflXJxQlDT9MkcpZ/kSLYNiINmWbjj6iuZkDI=
Subject key identifier: 5B:C6:C5:10:C2:8C:F6:0B:E3:DA:93:61:A3:4C:A8:8E:D3:F5:B2:D9
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 019178439D360245323FA6D6FB5E4BC7EFD7
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/W8bFEMKM9gvj2pNho0yojtP1stk.roa
Signing time: Thu 22 Aug 2024 04:06:22 +0000
ROA not before: Thu 22 Aug 2024 04:06:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 58212
IP address blocks: 77.90.7.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 10 Sep 2024 19:19:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:78:43:9d:36:02:45:32:3f:a6:d6:fb:5e:4b:c7:ef:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Aug 22 04:06:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5bc6c510c28cf60be3da9361a34ca88ed3f5b2d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:db:4c:13:59:bb:84:9b:bd:52:32:64:27:1c:
23:b2:b4:1f:8b:ac:ae:00:57:4c:8b:19:12:6a:53:
cf:a7:49:63:52:23:36:e9:c7:52:55:b5:2d:e0:77:
de:c7:08:ea:bd:45:0c:6e:d0:c9:70:a9:0c:40:44:
56:c5:f7:27:e0:d2:29:c1:bb:65:63:38:f6:c0:ee:
12:d0:0b:bc:19:00:62:61:66:08:19:67:d5:8d:ac:
35:d7:c5:02:84:0d:a5:93:79:76:2d:6b:66:3d:c5:
38:7e:5e:7c:bc:43:bc:46:8b:af:78:a9:04:c4:33:
30:eb:98:62:61:42:c6:00:97:50:b1:75:0f:6a:10:
c4:37:18:ec:28:66:e0:67:8c:87:b0:96:e2:06:19:
bc:8c:81:66:ff:3c:e6:3a:eb:dd:f3:90:8f:cf:f4:
61:2c:fe:01:8f:94:33:b7:3d:ba:d9:c7:c5:17:3d:
1d:ce:30:60:4a:df:34:dd:16:13:ba:1e:4d:22:66:
1b:ff:a2:26:6e:5b:b1:17:e7:5e:f9:0e:4a:ac:fc:
ab:c7:e6:5c:32:5a:eb:95:98:ed:5c:08:1f:69:8c:
9d:0d:cd:0e:7a:96:ff:62:e0:14:ee:5e:52:e9:10:
6b:e1:cf:ce:5d:b6:5f:91:19:4e:20:8d:45:a0:6d:
eb:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:C6:C5:10:C2:8C:F6:0B:E3:DA:93:61:A3:4C:A8:8E:D3:F5:B2:D9
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/W8bFEMKM9gvj2pNho0yojtP1stk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.7.0/24
Signature Algorithm: sha256WithRSAEncryption
b6:65:23:78:4d:3d:2a:cf:24:b6:ee:85:f3:0c:37:e5:ad:94:
b0:d1:09:a6:94:59:34:93:bd:ef:fb:db:d8:9b:e5:1c:12:87:
9b:06:6e:06:fd:44:9b:35:44:a9:5a:f5:b4:fe:56:5d:db:05:
3e:ce:9a:2e:9a:1c:6a:05:54:91:45:0b:95:4f:fe:d7:de:c7:
15:f3:5d:92:d1:a6:9d:f5:aa:88:11:2c:77:36:53:72:79:ac:
c0:42:0c:bf:36:9b:e2:4f:88:a9:a1:51:b7:be:cc:a9:d7:2d:
c5:b8:1f:ee:57:56:c6:49:4a:94:70:94:1b:e6:12:a7:e2:ea:
9d:46:5b:40:b2:78:69:f7:d2:62:f6:f2:34:d1:55:d0:e4:4e:
68:e0:46:b3:c3:a0:d0:44:39:54:fd:88:1b:96:91:f9:9a:e7:
98:d6:76:de:e5:02:36:ea:bb:3b:f3:48:7b:72:9f:04:0f:fb:
d1:4d:a9:fa:a5:6f:16:39:a9:bc:9f:91:7d:c3:f4:28:55:3b:
27:a6:c7:00:85:8c:fc:bd:5e:d7:0b:5f:8b:72:27:55:85:b0:
a7:75:31:ae:4c:90:a5:8a:3d:ad:7f:d2:8d:e5:6b:50:ba:31:
48:8e:10:10:a5:25:21:98:af:cc:38:ba:16:79:3f:8a:f5:4a:
03:c0:71:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 10 23:11:31 2024 by rpki-client on console-ams.rpki-client.org