Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/a89vbnzUZ6aCP4bDCLx1JAF53fg.roa
File: a89vbnzUZ6aCP4bDCLx1JAF53fg.roa (raw, json)
Hash identifier: L5E4Yxrh4mHpv9eXjAqNEODarF+52yaAWzGpi35QMVY=
Subject key identifier: 6B:CF:6F:6E:7C:D4:67:A6:82:3F:86:C3:08:BC:75:24:01:79:DD:F8
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 019565F882D5328F037C7E8107F8BFEA3B1D
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/a89vbnzUZ6aCP4bDCLx1JAF53fg.roa
Signing time: Wed 05 Mar 2025 11:02:19 +0000
ROA not before: Wed 05 Mar 2025 11:02:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 60345
IP address blocks: 77.90.55.0/24 maxlen: 24
89.144.41.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 05 Apr 2025 04:12:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:65:f8:82:d5:32:8f:03:7c:7e:81:07:f8:bf:ea:3b:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Mar 5 11:02:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6bcf6f6e7cd467a6823f86c308bc75240179ddf8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:a6:a6:e8:4c:ac:fa:f6:72:55:bb:9b:65:c7:
94:65:5c:50:4d:fb:3e:77:0a:67:85:aa:d2:f5:aa:
6e:03:5a:7a:b5:87:22:ce:ee:36:30:5f:08:28:36:
12:be:2e:ac:18:ee:ac:e3:56:77:51:54:70:cd:ac:
8f:40:05:43:93:b9:fe:36:69:24:bd:c7:f9:a1:75:
c8:e0:06:12:2c:8d:95:ce:72:ac:6f:46:27:66:23:
01:67:19:4d:4b:8a:41:9e:b7:6b:c9:83:ac:6f:2a:
34:5d:29:47:38:85:47:0f:9a:13:81:12:ab:4d:d3:
c4:6c:26:5a:26:ce:c1:85:23:b5:e7:0a:0b:62:5f:
3f:cc:c3:38:cd:52:a5:6f:56:2c:3c:47:c2:5a:64:
43:94:13:e6:89:40:7a:bc:7b:9a:d7:03:af:de:a9:
70:f3:61:1d:2a:58:a7:a8:c7:5a:d5:d6:77:a4:90:
c6:c7:a8:94:4b:3b:c1:48:5a:1a:f4:2a:9b:7a:94:
50:d6:7c:e0:fc:a1:57:10:98:ba:81:91:2d:d3:38:
23:46:df:15:3b:4d:fa:65:9f:f5:a6:86:93:c0:7f:
3c:80:51:7e:7c:05:03:68:30:83:73:9d:30:8a:0a:
92:52:6b:93:23:8d:a4:ed:fe:e6:3f:63:b0:12:1f:
63:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:CF:6F:6E:7C:D4:67:A6:82:3F:86:C3:08:BC:75:24:01:79:DD:F8
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/a89vbnzUZ6aCP4bDCLx1JAF53fg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.55.0/24
89.144.41.0/24
Signature Algorithm: sha256WithRSAEncryption
da:8d:34:cc:05:4f:83:a5:82:80:d2:6a:c4:ea:d6:0c:32:4d:
11:73:ad:7d:16:78:8c:ea:83:52:03:28:d3:17:04:39:ed:51:
c6:75:5e:1d:f7:44:96:6c:2f:af:86:38:ab:5d:c9:8a:f9:6e:
6e:cb:b8:c2:a7:6f:16:4c:f0:38:aa:2b:8d:14:7b:fa:7f:b1:
d2:4f:ec:be:b2:ca:0e:27:f1:85:a9:76:1c:36:3b:4b:91:d9:
c1:56:3b:7b:a8:c9:76:2e:22:56:26:9f:c2:c9:0f:37:a5:1d:
20:61:e0:d3:62:87:2d:96:9b:3c:48:1d:5c:39:6f:b3:dc:4c:
c3:87:00:fe:cb:88:a0:ae:e4:ad:1e:64:d5:f7:19:ef:99:3f:
d4:42:83:59:7c:1b:41:bd:b2:9e:e6:26:8e:af:61:30:c2:aa:
d9:2f:8a:6f:fe:4f:e5:c9:d2:42:3e:00:35:12:30:55:f3:e3:
e0:80:d0:8e:65:25:7a:e6:bb:b7:ea:76:47:fd:95:57:90:3f:
ec:a9:d4:22:1c:1a:34:17:d1:7e:73:c9:2e:35:40:a4:35:0d:
b8:19:98:a9:ac:17:db:12:51:95:d1:c1:30:80:f4:e2:bd:ed:
48:3a:fb:bd:21:40:60:f9:5d:0c:16:22:8d:7b:d1:ea:46:95:
79:65:26:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 02:34:36 2025 by rpki-client