Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/hxjcejLObARtsyJ6Y2gIpr0L5v4.roa
File: hxjcejLObARtsyJ6Y2gIpr0L5v4.roa (raw, json)
Hash identifier: 9hKemwevAt1LyqB9vseHEV6UpwcczNSU1YOjyi2kgNQ=
Subject key identifier: 87:18:DC:7A:32:CE:6C:04:6D:B3:22:7A:63:68:08:A6:BD:0B:E6:FE
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 018EF313354101482346A17D26C338DD78DD
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/hxjcejLObARtsyJ6Y2gIpr0L5v4.roa
Signing time: Thu 18 Apr 2024 21:18:26 +0000
ROA not before: Thu 18 Apr 2024 21:18:26 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48314
IP address blocks: 77.90.0.0/24 maxlen: 24
77.90.2.0/24 maxlen: 24
77.90.8.0/24 maxlen: 24
77.90.13.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 19 Jul 2024 11:56:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:f3:13:35:41:01:48:23:46:a1:7d:26:c3:38:dd:78:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Apr 18 21:18:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8718dc7a32ce6c046db3227a636808a6bd0be6fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:fa:75:3b:a2:84:c9:fb:73:b7:9c:f6:1d:ad:
f0:97:c0:29:f9:5c:cb:bd:51:e3:21:e3:fe:62:49:
f5:e7:ab:8f:d9:28:82:28:e8:d2:d7:27:99:19:bd:
64:a8:73:14:6f:89:04:0a:95:5f:d3:fd:85:51:43:
30:03:57:24:50:72:be:a1:41:50:49:78:d9:7e:5d:
1f:01:aa:3a:40:87:86:bb:ed:bd:15:14:93:8e:da:
a9:93:1e:b9:a3:a3:c0:44:8f:3c:10:0a:0a:88:ec:
50:f9:0a:bd:b8:a0:b8:52:5c:59:ec:3f:58:fc:ff:
97:cc:41:62:15:07:20:61:35:7b:ca:03:e7:79:da:
db:77:be:e8:f0:52:1f:3c:0e:8d:92:b5:c9:04:c7:
60:b5:45:16:3a:1b:aa:b8:3a:60:81:4f:d7:ba:b8:
eb:da:89:83:7f:d7:11:54:35:4d:53:44:b1:df:a3:
d4:c2:e1:d6:0f:70:23:f9:63:29:6d:03:4a:0f:54:
25:6c:52:3d:08:46:c7:b5:24:1b:7b:fc:28:dd:1c:
dc:3e:53:07:63:5e:37:36:7f:43:e2:53:1b:3d:08:
86:36:f0:37:bc:f3:3a:55:db:d0:44:3b:dd:7c:a0:
9b:b5:bc:55:0f:ce:d8:c4:9b:e1:da:9d:38:c2:16:
0d:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:18:DC:7A:32:CE:6C:04:6D:B3:22:7A:63:68:08:A6:BD:0B:E6:FE
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/hxjcejLObARtsyJ6Y2gIpr0L5v4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.0.0/24
77.90.2.0/24
77.90.8.0/24
77.90.13.0/24
Signature Algorithm: sha256WithRSAEncryption
72:73:59:d7:65:35:56:47:1e:e0:3a:fc:32:74:0f:d7:fa:4c:
54:7e:61:78:02:12:15:b6:20:a5:f9:7e:93:1c:57:47:1d:eb:
d9:37:aa:d3:26:bd:34:4b:44:04:79:56:a5:a0:18:49:68:05:
33:4e:3c:e6:98:29:78:16:f7:73:28:5b:ae:f6:5c:8a:17:69:
d3:bf:06:96:c7:bc:2b:31:ed:52:26:3b:55:a9:7b:f9:62:83:
8a:26:89:09:b5:1a:a7:fd:b1:fa:5a:6a:b4:f6:ed:71:26:ad:
4b:af:ef:2d:35:b0:d3:2b:1d:96:38:93:76:fc:c3:da:04:f5:
9e:45:93:a7:7d:0d:8b:31:56:14:a6:15:5c:05:65:63:d8:6d:
c1:9f:39:bb:a8:15:38:6a:a5:b6:f1:8e:f2:60:a0:72:6c:b5:
7d:50:ac:28:00:27:05:29:0a:05:2f:6c:87:1e:38:c1:cf:14:
32:b8:e9:2a:ed:9a:99:23:2f:5d:d8:a1:d9:a1:9d:8a:97:fa:
58:e4:de:17:a9:16:c6:0a:19:7f:78:4d:e8:ff:94:3a:17:04:
c1:10:ae:77:01:54:f4:12:60:ab:76:20:0b:05:65:2c:e0:66:
d8:4c:c0:bc:6f:92:05:42:05:3f:cd:f2:2b:a6:d3:b7:ea:93:
49:7b:59:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 19 14:02:00 2024 by rpki-client on console-ams.rpki-client.org