Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/WRoIKZChbeuBrF06dmuUoLvYVXs.roa
File: WRoIKZChbeuBrF06dmuUoLvYVXs.roa (raw, json)
Hash identifier: 1DQY936tOY8vchQUlWNsqsyV0fkFY9RUFY2+qYqMjeg=
Subject key identifier: 59:1A:08:29:90:A1:6D:EB:81:AC:5D:3A:76:6B:94:A0:BB:D8:55:7B
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 0191194D5843DCD25C92F8C04C25BC03723D
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/WRoIKZChbeuBrF06dmuUoLvYVXs.roa
Signing time: Sat 03 Aug 2024 17:33:04 +0000
ROA not before: Sat 03 Aug 2024 17:33:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207252
IP address blocks: 77.90.12.0/24 maxlen: 24
77.90.23.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 03 Aug 2024 23:03:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:19:4d:58:43:dc:d2:5c:92:f8:c0:4c:25:bc:03:72:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Aug 3 17:33:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=591a082990a16deb81ac5d3a766b94a0bbd8557b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:29:96:54:04:fe:80:5d:ba:56:d1:39:cd:db:
bb:a5:8e:10:a9:b9:fe:8c:a5:9b:fe:d8:be:cb:0d:
17:f3:ff:43:e2:4f:d0:fd:2d:da:41:be:e2:d9:03:
e2:c3:05:e1:ff:af:15:56:6d:11:3e:f3:14:ef:90:
b9:4f:3a:c7:e9:94:29:8d:7b:a0:d0:ca:0f:a7:f4:
30:33:dc:bb:0a:8b:b7:08:a2:62:c9:03:09:0b:fe:
38:7e:ed:a4:2a:26:5f:a0:7e:85:49:03:53:ed:62:
8e:98:7c:a7:5c:73:a2:37:08:eb:f1:b9:64:a5:b4:
07:f7:6f:95:20:98:a0:88:1d:9e:e3:6c:e7:c4:54:
c5:8c:0d:f5:91:e8:ce:d0:98:3f:6e:49:54:be:54:
23:67:8b:ff:56:3a:9d:6d:c8:dc:dd:6a:2c:00:1e:
23:5f:79:26:5a:28:d7:d3:10:0e:8c:7e:da:69:b9:
c0:c5:2c:1f:80:49:a7:ff:3b:c8:9b:00:46:6a:f9:
11:ac:32:6c:56:4a:09:89:d5:ad:39:a8:ad:3b:56:
e8:ff:28:ed:30:6d:bd:79:d2:9d:c8:70:b5:78:dc:
14:28:20:87:64:9d:da:7e:3e:a4:5e:de:64:50:d0:
df:35:23:bf:e0:8b:a3:c9:35:dd:14:9f:8b:24:df:
06:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:1A:08:29:90:A1:6D:EB:81:AC:5D:3A:76:6B:94:A0:BB:D8:55:7B
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/WRoIKZChbeuBrF06dmuUoLvYVXs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.12.0/24
77.90.23.0/24
Signature Algorithm: sha256WithRSAEncryption
14:9f:91:20:11:c6:9d:d5:a5:e9:04:9a:23:8e:ac:3b:99:d7:
42:33:d1:a8:7a:12:2f:8c:14:c4:9d:14:3b:63:f2:8a:49:37:
36:06:52:8e:23:84:ac:42:14:c2:cd:64:71:a1:eb:9e:d5:44:
d2:77:a1:a4:f1:9e:8e:50:1b:45:67:49:05:c5:09:37:58:0b:
da:e2:21:ee:59:59:35:98:9b:6d:2f:84:56:f1:74:3e:75:72:
06:db:8e:ff:eb:52:08:90:83:b3:8d:52:e9:fd:50:b9:b0:19:
30:43:31:47:97:d8:84:ce:73:99:07:a2:d1:7d:68:bc:d8:48:
5e:ce:20:9f:d2:56:5c:88:88:9b:40:eb:c5:08:09:07:a1:38:
2e:17:bc:b2:2b:59:98:33:08:a6:77:80:c4:bc:21:ab:29:3c:
1f:42:05:5c:ef:80:c5:96:1d:03:ff:40:70:65:5c:af:00:bf:
d9:76:dd:55:8b:22:cf:27:65:6f:46:f0:86:02:69:f0:22:f3:
3c:77:ce:92:e1:64:aa:dd:e4:6c:65:5c:14:38:37:af:f5:d4:
7d:06:0e:19:af:2d:fc:77:6b:11:bb:b8:0d:3c:d2:1f:2a:b1:
9f:05:c2:e9:f2:45:54:51:e6:0e:ed:b7:a5:aa:b8:af:0f:6c:
ca:57:d9:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 3 23:51:43 2024 by rpki-client on console-fra.rpki-client.org