Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/_gEHlEDVqGc5ae8oDnW-olJViag.roa
File: _gEHlEDVqGc5ae8oDnW-olJViag.roa (raw, json)
Hash identifier: A/IgHE5NdB5elGSK7FMANatrXLlvetQfGNYt0HYJa4A=
Subject key identifier: FE:01:07:94:40:D5:A8:67:39:69:EF:28:0E:75:BE:A2:52:55:89:A8
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 0194221FFE6B76333E31A4CF50F46C2F8E6D
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/_gEHlEDVqGc5ae8oDnW-olJViag.roa
Signing time: Wed 01 Jan 2025 13:48:29 +0000
ROA not before: Wed 01 Jan 2025 13:48:29 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 47263
IP address blocks: 77.90.15.0/24 maxlen: 24
77.90.37.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 12 Jan 2025 19:59:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:1f:fe:6b:76:33:3e:31:a4:cf:50:f4:6c:2f:8e:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Jan 1 13:48:29 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=fe01079440d5a8673969ef280e75bea2525589a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:4f:5f:c0:76:ae:77:d6:fe:02:e3:a9:b0:22:
cf:f9:74:df:b8:b3:c2:a9:93:a6:d3:6b:60:4e:aa:
c5:f8:29:c9:e2:9a:71:90:8a:49:d0:7a:dd:d4:d0:
98:ed:38:a3:c4:55:f4:e4:75:9f:51:b7:a5:16:77:
99:1c:00:9f:1d:81:5f:88:71:f5:cb:80:94:96:3f:
c2:51:21:56:9d:9e:61:84:60:7f:5a:11:07:bf:6e:
3a:1c:3d:aa:56:a2:8e:9d:6b:8e:6d:f6:82:97:7b:
93:d5:31:66:f2:59:9b:d3:5c:e0:22:47:96:c5:b1:
8f:5e:4d:ce:da:c1:23:32:70:0c:7b:e6:33:c6:23:
e9:3d:60:9d:07:98:2b:7b:22:a7:d2:05:c2:d9:13:
24:90:59:39:f8:ff:6e:9e:66:bc:34:03:33:be:75:
c6:9f:fb:99:ba:a4:a2:74:b9:d7:0f:70:d9:e0:9e:
68:df:e9:90:9e:62:17:6e:6a:16:76:88:62:5c:db:
9f:36:ef:60:1d:91:1e:19:90:0e:4c:b4:20:45:e4:
98:42:e1:ab:33:df:d6:bf:7e:83:d9:9a:53:c0:8e:
85:3c:89:d2:3c:0c:b0:c6:c8:ed:f7:f7:d3:43:0f:
00:8c:44:9f:be:ab:7d:57:8b:7d:20:4b:21:21:00:
7a:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:01:07:94:40:D5:A8:67:39:69:EF:28:0E:75:BE:A2:52:55:89:A8
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/_gEHlEDVqGc5ae8oDnW-olJViag.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.15.0/24
77.90.37.0/24
Signature Algorithm: sha256WithRSAEncryption
31:e0:ac:84:9c:cf:62:03:4d:e7:43:7b:b9:4b:85:5b:97:7a:
c5:70:58:0a:61:93:9b:12:b5:2e:de:b5:36:54:f1:1f:19:42:
49:b6:bb:67:f7:cc:54:3e:b7:f5:ab:72:45:29:10:51:72:77:
9c:2a:5d:6b:cb:2a:89:7b:3d:cd:dc:11:8a:f7:c8:fc:06:d6:
31:90:1f:4d:8a:bb:14:c3:c5:27:50:84:78:2d:10:0c:07:50:
02:80:cc:4c:88:5b:fe:e3:dd:97:93:4b:bc:33:62:13:54:ac:
59:ab:ab:b7:3e:9a:ad:20:d3:54:8d:2d:38:57:ea:e6:d5:e5:
15:29:54:08:f8:d7:f4:42:b4:26:7d:86:a7:99:52:fd:e6:6e:
13:36:2c:0b:c4:cb:e3:f5:33:be:da:8d:dc:bd:5e:64:1a:d6:
00:41:68:13:b8:2d:52:d8:75:fe:ad:18:b7:75:72:82:67:12:
01:ab:1c:fb:a5:7d:46:88:7e:93:46:a7:9b:db:26:29:db:21:
eb:5f:2a:0e:c9:4e:75:38:0a:cc:f5:f3:88:bc:85:85:e0:52:
65:e3:b4:1a:00:eb:de:b5:57:b2:ef:00:a9:21:02:f8:9b:87:
2c:8e:29:90:37:c2:71:e5:ec:ff:08:24:e3:f5:05:e4:f4:4d:
62:10:b6:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 03:18:23 2025 by rpki-client