Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/cxXDCePgJknnM1Jn1GwwiKROt0Q.roa
File: cxXDCePgJknnM1Jn1GwwiKROt0Q.roa (raw, json)
Hash identifier: tx3HKgkFGe7lspPpH9ObO2Rhu5W4kzLAF/DB2/bW2mE=
Subject key identifier: 73:15:C3:09:E3:E0:26:49:E7:33:52:67:D4:6C:30:88:A4:4E:B7:44
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 01920B1612898669FCBEE9D8C1D24DFDF766
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/cxXDCePgJknnM1Jn1GwwiKROt0Q.roa
Signing time: Thu 19 Sep 2024 16:20:48 +0000
ROA not before: Thu 19 Sep 2024 16:20:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48314
IP address blocks: 77.90.0.0/24 maxlen: 24
77.90.2.0/24 maxlen: 24
77.90.8.0/24 maxlen: 24
77.90.13.0/24 maxlen: 24
77.90.45.0/24 maxlen: 24
77.90.51.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 22 Oct 2024 17:37:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:0b:16:12:89:86:69:fc:be:e9:d8:c1:d2:4d:fd:f7:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Sep 19 16:20:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7315c309e3e02649e7335267d46c3088a44eb744
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:aa:66:c4:81:f0:33:b6:b4:01:d0:e9:58:3c:
ae:3a:4c:aa:41:c3:55:c9:0b:64:89:ed:78:35:3a:
19:26:ca:21:20:38:b7:f6:76:fb:99:dc:02:5d:ff:
26:92:57:41:ca:3f:03:90:ed:6b:b1:05:e6:e4:2d:
da:d8:1b:cf:95:74:9b:36:7b:55:df:37:f4:47:ca:
8f:eb:83:0f:0d:d8:cd:ee:17:f7:87:23:6d:d4:ff:
51:28:e0:f7:e1:ee:55:e1:64:64:2f:26:83:81:01:
94:6c:2e:e4:28:ca:8c:d9:44:f4:e8:d4:29:3a:c0:
c7:8a:67:23:55:9e:8a:89:ec:a9:94:fe:fc:c1:73:
08:ac:e5:fa:31:88:50:d6:5f:b5:f9:2e:ca:ec:46:
38:8c:fb:69:a9:e0:d6:bb:50:b4:ad:b6:0a:d9:1d:
48:88:55:e4:e4:50:b9:46:be:ab:80:03:16:4c:66:
a1:46:9e:f7:65:75:3a:25:3d:e5:a7:7f:b0:2e:74:
17:61:4b:18:c9:59:ed:f2:c7:b0:42:fe:b8:2f:44:
30:f9:f6:74:76:48:cc:7b:aa:e7:d1:e7:b8:c2:10:
1f:ca:32:c5:94:c2:32:e0:d7:f8:c3:c7:79:dd:3b:
bb:a4:85:63:51:74:e7:ea:f9:e3:e2:65:b8:6e:d9:
ce:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:15:C3:09:E3:E0:26:49:E7:33:52:67:D4:6C:30:88:A4:4E:B7:44
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/cxXDCePgJknnM1Jn1GwwiKROt0Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.0.0/24
77.90.2.0/24
77.90.8.0/24
77.90.13.0/24
77.90.45.0/24
77.90.51.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:c4:2e:15:73:ce:4b:28:e8:ab:f9:0c:67:bf:e0:02:d6:54:
1c:5f:e8:bf:f2:29:ee:cb:e0:12:05:66:8b:3b:38:6d:ad:fd:
e9:9b:a2:8a:0b:17:30:3d:55:df:97:04:64:bd:9d:2c:b9:57:
05:ad:da:26:de:56:22:1c:2d:92:ad:c3:97:71:b2:ca:b1:17:
c8:e4:28:8c:b9:3f:c9:5d:23:2b:b6:57:bb:8d:19:93:4d:9c:
d4:d4:d6:b8:01:30:62:6c:cf:0f:69:01:ee:d5:a7:51:13:6e:
dd:c0:22:e8:ae:65:e5:44:d0:d1:10:4c:98:94:c1:93:93:8f:
28:31:d8:f6:cc:e0:2a:43:a7:30:91:e7:ed:a6:0c:bc:8b:6f:
ae:d4:e5:95:ef:9b:52:5a:a1:c2:e6:fd:a8:9e:69:32:bf:08:
d0:d8:2c:3f:9f:58:eb:8d:22:3d:61:71:ea:c2:dd:00:0c:09:
57:b3:1a:5d:81:cb:fb:39:30:c1:f3:09:f2:3d:27:f8:4d:3b:
10:c9:fe:e5:bb:91:e8:6b:c0:24:1b:83:1f:ff:e8:53:0b:7e:
8a:df:ca:31:af:81:04:f7:b5:8b:d2:30:1a:cd:bf:fd:ef:f6:
c4:38:23:39:67:4e:8f:6c:ed:16:0a:24:32:d9:df:7e:40:86:
4b:14:bb:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 22 19:33:52 2024 by rpki-client on console-ams.rpki-client.org