Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/YLIgVHwHRLIY63JvV6x5eAS4v4I.roa
File: YLIgVHwHRLIY63JvV6x5eAS4v4I.roa (raw, json)
Hash identifier: R4OkT5BKyyc/AVj8LtxTiMl9eWH3QCSyxtIau27I0ZA=
Subject key identifier: 60:B2:20:54:7C:07:44:B2:18:EB:72:6F:57:AC:79:78:04:B8:BF:82
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 019089C049CA2F9C6B8A762B9F5C05CCDD28
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/YLIgVHwHRLIY63JvV6x5eAS4v4I.roa
Signing time: Sat 06 Jul 2024 20:33:18 +0000
ROA not before: Sat 06 Jul 2024 20:33:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207252
IP address blocks: 77.90.22.0/24 maxlen: 24
77.90.23.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 31 Jul 2024 23:39:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:89:c0:49:ca:2f:9c:6b:8a:76:2b:9f:5c:05:cc:dd:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Jul 6 20:33:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=60b220547c0744b218eb726f57ac797804b8bf82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:f7:25:b1:5e:3d:fa:5c:ec:34:f8:67:25:11:
18:79:5f:1b:71:23:93:7f:7f:63:1c:df:34:8e:15:
36:06:87:4d:9c:a9:3b:6d:de:12:0b:ad:d1:f5:08:
d5:c4:ec:13:83:f4:e0:a2:0a:d4:d1:c5:b8:31:68:
87:d1:51:47:62:f8:bf:d7:5b:eb:39:a0:bd:99:94:
44:72:0e:95:e2:0e:50:90:ce:66:9f:43:d8:3e:00:
22:3a:b7:29:fa:b0:44:84:a0:08:ec:73:06:96:62:
77:ff:c4:f7:bd:a9:8d:55:c0:2e:ae:5d:8a:4c:1e:
d4:72:26:f5:b9:b1:71:58:1d:4d:cb:db:1e:1a:7f:
60:6b:1c:40:76:16:15:78:db:a1:23:02:ac:bb:92:
4a:53:2a:27:3d:d6:01:74:fe:b8:52:01:d9:9f:49:
41:4f:87:73:d5:75:48:64:e0:13:20:58:e4:b5:50:
e7:8e:3d:39:9f:27:d6:76:bb:49:9c:3c:ff:39:20:
b0:e7:3d:b6:aa:c5:a0:0f:a3:6f:42:59:cc:b4:fa:
f8:1c:6a:0a:52:ef:c5:d1:22:54:0c:9e:8b:be:1c:
c7:f0:c9:f4:fc:07:76:32:d2:e0:bb:e5:e1:db:7d:
7f:70:ee:a3:03:9e:36:48:a6:ea:45:41:5e:55:47:
69:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:B2:20:54:7C:07:44:B2:18:EB:72:6F:57:AC:79:78:04:B8:BF:82
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/YLIgVHwHRLIY63JvV6x5eAS4v4I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.22.0/23
Signature Algorithm: sha256WithRSAEncryption
d7:b6:37:d0:f5:d9:a5:2f:ca:39:51:14:fd:4f:95:d3:52:f9:
93:e7:70:b1:55:f6:a9:27:13:2a:b3:26:21:f5:0a:94:6d:b7:
78:bb:60:b7:8e:77:eb:bd:5a:61:a1:c1:1c:db:cb:a2:d0:05:
3a:1e:a2:b2:9f:96:33:fa:20:e1:62:6f:5f:8c:9c:04:ea:b9:
6d:e0:2a:c3:3d:bd:91:52:c9:17:4f:16:e0:9a:0e:43:7d:23:
72:27:0c:1c:30:77:4e:f7:7e:e9:1d:50:80:d5:93:05:79:91:
b0:5b:1b:df:3c:ee:61:2b:4d:a3:54:fe:92:1e:c8:a3:f5:ce:
25:9c:c9:2e:6d:2e:f4:6c:a2:53:a1:ae:3c:b6:df:3d:fb:fa:
b9:4e:f7:bb:ef:ab:7e:bc:23:22:df:2d:38:eb:7b:5e:20:84:
a9:32:54:46:01:42:85:7d:01:ee:78:c8:ed:be:6e:c7:90:bb:
db:6d:50:61:46:94:1e:42:24:f6:64:36:7e:c9:51:f9:b6:37:
e8:a2:d3:e7:69:ca:ac:02:2c:1e:a1:19:1b:97:66:cf:7f:91:
6d:63:88:a2:0a:e6:81:59:c7:19:10:b7:22:eb:c6:d9:3c:58:
1a:3c:c2:c6:7a:77:79:c0:f1:b2:5c:5e:c7:e5:9f:88:60:d4:
fb:04:5a:ef
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZCJwEnKL5xrinYrn1wFzN0oMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNlNjA5NzY5ODY4NmUxNTU1ZjUxZjZjODgzYmM1YTU4NTQ5
YjIzNjIwHhcNMjQwNzA2MjAzMzE4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2MGIyMjA1NDdjMDc0NGIyMThlYjcyNmY1N2FjNzk3ODA0YjhiZjgyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvvclsV49+lzsNPhnJREYeV8bcSOT
f39jHN80jhU2BodNnKk7bd4SC63R9QjVxOwTg/TgogrU0cW4MWiH0VFHYvi/11vr
OaC9mZREcg6V4g5QkM5mn0PYPgAiOrcp+rBEhKAI7HMGlmJ3/8T3vamNVcAurl2K
TB7Ucib1ubFxWB1Ny9seGn9gaxxAdhYVeNuhIwKsu5JKUyonPdYBdP64UgHZn0lB
T4dz1XVIZOATIFjktVDnjj05nyfWdrtJnDz/OSCw5z22qsWgD6NvQlnMtPr4HGoK
Uu/F0SJUDJ6LvhzH8Mn0/Ad2MtLgu+Xh231/cO6jA542SKbqRUFeVUdpTQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGCyIFR8B0SyGOtyb1eseXgEuL+CMB8GA1UdIwQY
MBaAFD5gl2mGhuFVX1H2yIO8WlhUmyNiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGIt
ZTFiZDg4ZDNmZDA3LzEvWUxJZ1ZId0hSTElZNjNKdlY2eDVlQVM0djRJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGItZTFiZDg4ZDNmZDA3
LzEvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBTVoWMA0G
CSqGSIb3DQEBCwUAA4IBAQDXtjfQ9dmlL8o5URT9T5XTUvmT53CxVfapJxMqsyYh
9QqUbbd4u2C3jnfrvVphocEc28ui0AU6HqKyn5Yz+iDhYm9fjJwE6rlt4CrDPb2R
UskXTxbgmg5DfSNyJwwcMHdO937pHVCA1ZMFeZGwWxvfPO5hK02jVP6SHsij9c4l
nMkubS70bKJToa48tt89+/q5Tve776t+vCMi3y0463teIISpMlRGAUKFfQHueMjt
vm7HkLvbbVBhRpQeQiT2ZDZ+yVH5tjfootPnacqsAiweoRkbl2bPf5FtY4iiCuaB
WccZELci68bZPFgaPMLGend5wPGyXF7H5Z+IYNT7BFrv
-----END CERTIFICATE-----
Generated at Thu Aug 1 02:21:58 2024 by rpki-client on console-ams.rpki-client.org