Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/hblwTxC4vzQKbqQF-CWZPTs1LnM.roa
File: hblwTxC4vzQKbqQF-CWZPTs1LnM.roa (raw, json)
Hash identifier: 1ll944sB/5d273iX+tb7Hbo/u1fow0UY6ONduxSi5tM=
Subject key identifier: 85:B9:70:4F:10:B8:BF:34:0A:6E:A4:05:F8:25:99:3D:3B:35:2E:73
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 0192B0A418815F03E85DFFFFFD1F4F277B5A
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/hblwTxC4vzQKbqQF-CWZPTs1LnM.roa
Signing time: Mon 21 Oct 2024 19:53:17 +0000
ROA not before: Mon 21 Oct 2024 19:53:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215310
IP address blocks: 77.90.42.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 24 Oct 2024 01:24:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:b0:a4:18:81:5f:03:e8:5d:ff:ff:fd:1f:4f:27:7b:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Oct 21 19:53:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=85b9704f10b8bf340a6ea405f825993d3b352e73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:1a:c1:40:e4:98:9f:43:1d:d8:49:12:70:42:
bb:05:a1:55:f3:ca:21:1b:51:4b:77:fa:9c:b4:fe:
fb:58:04:44:dc:73:77:8d:de:d8:2e:fb:78:c9:33:
ae:cd:50:f8:6c:53:49:a8:f5:f0:95:f0:f5:f0:0a:
e6:8d:32:58:32:37:7c:ae:40:32:39:07:cf:6b:1b:
c7:68:82:6c:83:69:6d:e6:c8:87:31:fa:27:73:71:
e0:86:b0:d6:b8:9d:3c:f4:5c:35:5b:8b:e2:08:98:
ca:be:98:66:5d:33:76:81:ba:2a:f6:38:e1:95:78:
f1:d9:f5:26:ba:3e:91:7e:37:d7:42:ef:10:64:c7:
67:46:85:88:64:c7:30:10:5b:d2:10:bd:e0:e9:ed:
c7:70:f7:2f:e6:b0:ee:22:1b:9a:a3:09:51:25:e3:
75:cd:3d:8e:58:01:6f:2e:39:6a:0e:55:cf:86:dc:
b4:31:a6:b7:00:2f:60:1f:3a:23:f2:a8:3d:9e:33:
65:7f:e7:84:a5:19:90:f7:83:aa:f3:18:82:d8:73:
e9:ae:ec:c1:0f:ed:30:af:6b:ba:8d:e2:c2:8f:ab:
0a:22:7e:43:4a:d2:b5:6b:aa:c3:c8:d2:94:8d:ea:
d3:77:4b:c0:69:0f:cc:5a:b4:5c:55:e1:11:0c:7c:
03:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:B9:70:4F:10:B8:BF:34:0A:6E:A4:05:F8:25:99:3D:3B:35:2E:73
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/hblwTxC4vzQKbqQF-CWZPTs1LnM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.42.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:f7:d8:b4:6e:64:c8:2b:74:8a:cd:b3:20:72:8b:f4:be:eb:
81:7a:90:5f:d7:79:19:84:9f:39:06:a4:63:6b:bf:6d:bf:a6:
4b:5a:7e:c8:b7:d0:4f:fa:f7:64:42:de:52:25:3d:d0:ce:9e:
6d:8f:b9:5c:87:c9:a8:75:c9:13:04:2c:be:86:26:e8:05:64:
9d:7c:cd:44:69:37:77:2a:66:17:e6:cd:5f:63:38:c9:71:32:
ae:d3:c5:40:9b:cd:e5:84:e5:8c:2d:af:b4:44:89:10:cd:38:
63:3c:d1:4d:bd:5b:69:51:dc:97:fc:53:d7:f8:18:41:85:ac:
af:9c:21:ae:76:24:75:02:b3:70:61:de:f8:94:fc:43:9c:34:
c9:19:d4:c5:3a:c3:e3:dc:ae:59:96:79:66:52:c9:52:88:c7:
35:13:21:1b:57:1a:28:3e:1e:aa:d3:c4:ab:f9:b4:95:62:b9:
ff:e9:c5:88:04:71:bd:11:cb:a4:f2:51:cf:c2:81:4a:fc:b8:
b0:16:12:fb:1a:c5:39:95:49:60:69:69:24:11:96:06:09:69:
7c:de:db:2a:5d:cd:51:c0:3b:87:64:34:7d:f7:e8:4b:94:07:
07:4c:86:0b:12:84:39:d1:4b:8a:4b:6d:2c:33:cb:a7:5d:d1:
b9:40:0e:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 24 04:01:21 2024 by rpki-client on console-fra.rpki-client.org