Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/bCQXBonwbwiHsfeUuc4P742WxO8.roa
File: bCQXBonwbwiHsfeUuc4P742WxO8.roa (raw, json)
Hash identifier: tzM3NElDc1lrmJWE5n5jHM2+MP1pFvmsxWjljwjnJMs=
Subject key identifier: 6C:24:17:06:89:F0:6F:08:87:B1:F7:94:B9:CE:0F:EF:8D:96:C4:EF
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 018F5F024B48BC139535A50172AF4E513780
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/bCQXBonwbwiHsfeUuc4P742WxO8.roa
Signing time: Thu 09 May 2024 20:18:56 +0000
ROA not before: Thu 09 May 2024 20:18:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215039
IP address blocks: 77.90.4.0/24 maxlen: 24
77.90.5.0/24 maxlen: 24
77.90.14.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Jun 2024 04:07:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:5f:02:4b:48:bc:13:95:35:a5:01:72:af:4e:51:37:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: May 9 20:18:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6c24170689f06f0887b1f794b9ce0fef8d96c4ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:ae:5f:2c:3c:c4:de:f1:b3:73:1f:7c:7a:d2:
73:f5:39:b7:90:e6:25:be:dd:e0:5b:fb:ea:e2:31:
fd:04:ce:66:dc:6f:3c:5b:80:ff:ef:63:3c:7e:9c:
7e:19:bc:aa:8b:cc:9e:79:ea:61:fa:36:71:9b:57:
a7:01:32:c6:fb:ae:b4:b2:72:38:b9:15:f1:1b:40:
33:95:8d:15:e8:b3:5a:6a:21:5d:e2:9c:de:1b:ef:
9b:fb:9f:0a:8e:2c:fe:82:05:94:78:ca:4a:21:c7:
33:19:fe:be:c9:e9:0a:c2:b1:8f:f5:82:58:f3:99:
ea:49:63:a1:69:59:87:79:82:f5:4f:47:0c:f8:bb:
7a:c8:6d:74:26:7a:d0:39:38:05:ae:d9:82:76:8a:
f0:3d:94:ff:56:1f:d0:54:74:45:4b:3c:eb:d1:f2:
e8:7f:b0:a6:cd:cc:d7:8b:f1:ff:0b:3b:0e:c0:00:
e8:7a:c6:51:7e:1a:73:73:6b:e9:12:e5:d0:06:b5:
cb:85:fe:8a:2a:7f:35:6b:13:85:bb:de:60:98:17:
4c:ed:82:33:98:4c:8b:36:1d:41:90:51:7b:dc:88:
79:ab:95:cc:26:02:85:56:7c:97:e7:24:fa:d1:e9:
1e:9d:e0:fc:d5:79:8b:ff:5c:7f:07:bc:25:05:c1:
7f:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:24:17:06:89:F0:6F:08:87:B1:F7:94:B9:CE:0F:EF:8D:96:C4:EF
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/bCQXBonwbwiHsfeUuc4P742WxO8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.4.0/23
77.90.14.0/24
Signature Algorithm: sha256WithRSAEncryption
bb:99:95:23:ed:14:21:75:b4:de:8f:c8:e3:54:cb:3d:01:e6:
f7:19:be:cd:2f:d9:e0:e6:1a:4f:8a:bc:36:90:0b:ba:50:89:
b6:ad:38:fc:81:09:9d:00:9b:a5:b3:62:3c:7a:31:95:0c:9a:
31:71:ad:c2:85:85:a0:1c:24:67:a6:fe:e2:27:fe:3b:92:14:
c1:cc:34:5b:bb:4d:27:16:da:cd:46:d3:34:d2:e1:8f:42:56:
4d:ed:af:81:3f:99:be:23:5d:96:53:02:de:11:bd:e9:dd:71:
59:1e:15:81:a0:43:d2:82:e8:79:e8:e4:9f:93:21:bc:29:2c:
e4:34:fc:99:b7:db:4e:6e:cf:fe:c8:42:4e:93:a0:15:8b:e2:
77:3f:8f:3e:f5:be:65:db:a3:da:69:c0:9e:cc:da:5e:86:7a:
27:08:79:0f:bb:f8:c4:ed:da:c3:8f:b3:6f:19:00:5a:2b:3a:
b3:3d:8c:d4:ad:d6:36:c4:46:76:2d:12:66:3f:e2:6b:6d:19:
23:02:08:8a:9d:35:ea:8a:f0:da:b7:fc:8c:47:4d:bd:a5:61:
75:eb:17:50:77:a9:84:02:09:a3:88:f5:1c:9d:df:8a:a0:20:
d9:30:7c:40:97:f2:89:2b:4c:9c:c1:66:2a:7d:b1:33:46:4c:
f0:19:cd:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 10 04:53:26 2024 by rpki-client on console-fra.rpki-client.org