Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/WXQoYaeNsUOVdLjj-203-KpoM9M.roa
File: WXQoYaeNsUOVdLjj-203-KpoM9M.roa (raw, json)
Hash identifier: eoYWRAtAnmEYrRc7M1n2CT5xe0FnXvCm87djJ3evlfw=
Subject key identifier: 59:74:28:61:A7:8D:B1:43:95:74:B8:E3:FB:6D:37:F8:AA:68:33:D3
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 0191571A7E8689CBE8B1BC221028ABE09138
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/WXQoYaeNsUOVdLjj-203-KpoM9M.roa
Signing time: Thu 15 Aug 2024 17:33:59 +0000
ROA not before: Thu 15 Aug 2024 17:33:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207252
IP address blocks: 77.90.12.0/24 maxlen: 24
77.90.22.0/24 maxlen: 24
77.90.23.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 10 Sep 2024 19:19:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:57:1a:7e:86:89:cb:e8:b1:bc:22:10:28:ab:e0:91:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Aug 15 17:33:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=59742861a78db1439574b8e3fb6d37f8aa6833d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:58:ee:60:64:ed:bf:18:2d:2e:14:69:ba:3b:
89:e3:0a:a7:bd:2d:7e:30:1a:e5:85:28:0c:92:8c:
7c:2f:90:25:96:86:fc:0a:10:39:3f:a5:58:15:55:
15:9a:6e:8d:73:f8:6e:a0:21:ca:dc:1c:bb:3d:af:
13:de:36:f5:2c:1a:ac:e0:9b:eb:83:d1:cf:e9:9b:
65:15:ba:ff:32:8b:37:91:c5:b2:a8:e8:8d:bf:e4:
6a:fa:28:f4:1d:21:61:eb:61:54:3b:f3:f1:22:01:
a1:b3:66:e6:cf:ca:5a:f1:f1:ad:8a:b3:6e:3f:7d:
0d:68:f4:0e:df:f8:82:58:45:48:8b:3c:5f:88:e0:
4c:08:d0:e8:f5:29:2d:d0:4b:2c:a5:c2:19:7f:cb:
c9:1d:01:c5:37:25:e3:72:66:8d:15:6c:9e:b9:24:
7b:75:ba:12:95:0c:07:6a:6a:3c:2a:26:d2:cb:02:
49:57:a5:7a:2b:6a:a8:d1:eb:87:57:8d:79:4b:02:
68:f5:0f:f4:bf:56:7c:80:b5:cf:b0:38:0e:90:2d:
68:2b:b5:f4:82:ef:61:77:8e:b2:6c:07:11:02:9d:
2c:4c:40:02:00:93:72:31:64:a6:19:f4:54:a7:9c:
dc:11:28:51:88:38:4d:d5:f8:24:80:f9:48:7b:e2:
47:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:74:28:61:A7:8D:B1:43:95:74:B8:E3:FB:6D:37:F8:AA:68:33:D3
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/WXQoYaeNsUOVdLjj-203-KpoM9M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.12.0/24
77.90.22.0/23
Signature Algorithm: sha256WithRSAEncryption
d1:da:55:3a:4d:cb:38:c4:37:fd:1f:ca:77:d4:a9:c8:c5:7a:
6a:b7:aa:18:27:9a:9c:9e:d8:9e:6e:e2:04:f5:9f:9d:83:38:
9c:e9:d2:70:2c:77:ff:6f:33:f6:ba:ab:92:9b:f3:e1:7d:ed:
c1:16:5b:1d:25:91:e4:54:e0:47:00:39:54:eb:51:3f:0c:f0:
af:ff:ed:1e:5a:29:eb:24:a0:30:6d:6b:da:7c:14:43:32:3e:
26:bc:4d:89:8e:62:6d:95:1d:db:a7:a2:65:ff:ad:0c:9a:4a:
4f:20:c0:f4:47:dc:27:dd:04:8a:d2:21:d6:57:75:dd:2d:91:
a1:21:ea:64:f3:42:c9:aa:a8:09:7a:cd:41:bf:7f:ba:81:0e:
ea:dd:83:ac:80:2c:25:bf:d4:c7:41:c6:5e:ed:94:30:f0:55:
5b:c9:7f:9f:3f:c1:4f:48:c1:52:38:0a:87:ba:89:4c:ef:71:
9f:18:62:ce:15:9e:b4:ea:ff:6b:1e:c0:ba:28:9f:47:e9:16:
20:25:dc:47:b1:dc:bc:8a:00:26:61:8d:05:23:6f:2e:7a:8f:
17:70:6e:55:45:8e:c1:8e:c3:8e:f0:a5:ed:df:68:72:fd:08:
57:2a:e4:44:7b:cb:8d:8b:ea:c9:99:25:77:00:94:bc:64:eb:
20:b5:e9:26
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAZFXGn6GicvosbwiECir4JE4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNlNjA5NzY5ODY4NmUxNTU1ZjUxZjZjODgzYmM1YTU4NTQ5
YjIzNjIwHhcNMjQwODE1MTczMzU5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1OTc0Mjg2MWE3OGRiMTQzOTU3NGI4ZTNmYjZkMzdmOGFhNjgzM2QzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2VjuYGTtvxgtLhRpujuJ4wqnvS1+
MBrlhSgMkox8L5Allob8ChA5P6VYFVUVmm6Nc/huoCHK3By7Pa8T3jb1LBqs4Jvr
g9HP6ZtlFbr/Mos3kcWyqOiNv+Rq+ij0HSFh62FUO/PxIgGhs2bmz8pa8fGtirNu
P30NaPQO3/iCWEVIizxfiOBMCNDo9Skt0EsspcIZf8vJHQHFNyXjcmaNFWyeuSR7
dboSlQwHamo8KibSywJJV6V6K2qo0euHV415SwJo9Q/0v1Z8gLXPsDgOkC1oK7X0
gu9hd46ybAcRAp0sTEACAJNyMWSmGfRUp5zcEShRiDhN1fgkgPlIe+JHuQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFFl0KGGnjbFDlXS44/ttN/iqaDPTMB8GA1UdIwQY
MBaAFD5gl2mGhuFVX1H2yIO8WlhUmyNiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGIt
ZTFiZDg4ZDNmZDA3LzEvV1hRb1lhZU5zVU9WZExqai0yMDMtS3BvTTlNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGItZTFiZDg4ZDNmZDA3
LzEvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQATVoMAwQB
TVoWMA0GCSqGSIb3DQEBCwUAA4IBAQDR2lU6Tcs4xDf9H8p31KnIxXpqt6oYJ5qc
ntiebuIE9Z+dgzic6dJwLHf/bzP2uquSm/Phfe3BFlsdJZHkVOBHADlU61E/DPCv
/+0eWinrJKAwbWvafBRDMj4mvE2JjmJtlR3bp6Jl/60MmkpPIMD0R9wn3QSK0iHW
V3XdLZGhIepk80LJqqgJes1Bv3+6gQ7q3YOsgCwlv9THQcZe7ZQw8FVbyX+fP8FP
SMFSOAqHuolM73GfGGLOFZ606v9rHsC6KJ9H6RYgJdxHsdy8igAmYY0FI28ueo8X
cG5VRY7BjsOO8KXt32hy/QhXKuREe8uNi+rJmSV3AJS8ZOsgtekm
-----END CERTIFICATE-----
Generated at Tue Sep 10 21:29:10 2024 by rpki-client on console-fra.rpki-client.org