Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/jOC-SXWJqtjXbleTxyT8APwo3_g.roa
File: jOC-SXWJqtjXbleTxyT8APwo3_g.roa (raw, json)
Hash identifier: DCfVKDVfoEGhxiWeLw0Y7dhjOWduW/TtrQkJJHZJwIc=
Subject key identifier: 8C:E0:BE:49:75:89:AA:D8:D7:6E:57:93:C7:24:FC:00:FC:28:DF:F8
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 018F09F56790F0EDE51F7C8B02AEF1197460
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/jOC-SXWJqtjXbleTxyT8APwo3_g.roa
Signing time: Tue 23 Apr 2024 07:57:08 +0000
ROA not before: Tue 23 Apr 2024 07:57:08 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44592
IP address blocks: 77.90.15.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 21 May 2024 04:06:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:09:f5:67:90:f0:ed:e5:1f:7c:8b:02:ae:f1:19:74:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Apr 23 07:57:08 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8ce0be497589aad8d76e5793c724fc00fc28dff8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:a8:f8:0f:d2:03:67:5a:0a:0f:a5:02:ec:c2:
fc:a7:24:9a:6c:e9:f3:bf:29:d6:db:27:80:58:1a:
4e:60:8f:52:a9:ff:81:a7:fb:f6:a4:03:bd:db:25:
d5:50:b5:fc:fc:f6:82:05:0b:1d:e4:e7:47:a1:d5:
8e:7c:be:b1:a1:6a:74:e5:38:a2:c3:47:27:a4:70:
fc:a3:fd:49:a4:a7:f0:37:90:72:5a:19:5e:2d:d1:
79:36:cf:0b:fd:c8:97:db:9c:e7:65:0d:b3:a0:72:
d9:4e:c4:93:fb:b9:3f:8c:d1:3f:52:84:32:3e:c2:
25:c9:8f:2e:f6:8b:09:00:d7:d3:dc:47:e3:39:7b:
25:5e:16:41:a3:1d:b7:29:02:ca:1a:c7:4c:0c:6e:
10:64:40:9d:08:8d:0f:97:eb:14:26:d0:06:c3:57:
55:1f:2f:26:f4:3c:cd:52:81:6e:32:89:c5:dc:8b:
65:c7:34:cd:d8:f0:ae:51:dc:fc:be:e6:ed:e4:77:
38:68:47:9b:c7:6f:a4:c9:7f:22:88:a8:1a:fa:8b:
21:93:0e:14:ae:e4:eb:f2:3a:73:38:6b:f2:0f:7e:
f5:0c:2f:18:b5:37:9f:07:34:ac:0e:b4:3f:ea:c8:
4f:5e:37:93:3f:05:26:b6:3c:33:7b:46:95:b9:e7:
e1:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:E0:BE:49:75:89:AA:D8:D7:6E:57:93:C7:24:FC:00:FC:28:DF:F8
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/jOC-SXWJqtjXbleTxyT8APwo3_g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.15.0/24
Signature Algorithm: sha256WithRSAEncryption
c4:22:86:f0:6e:d6:9a:b6:84:16:8b:f6:12:69:cd:9d:c9:40:
e9:f3:49:bf:2d:e3:c3:4b:7c:58:92:ac:bf:c6:a1:75:bb:77:
3c:e3:be:d0:e5:02:25:50:b0:79:58:fa:91:63:eb:5c:11:e2:
e1:0e:70:1f:f8:f8:a3:5c:88:08:5b:9d:6e:f6:11:9c:63:3a:
53:4d:a4:f5:5d:73:f9:32:41:4c:52:6f:29:a9:40:c3:eb:51:
be:af:59:74:83:e6:6a:29:60:f7:35:ae:61:40:b1:29:04:c4:
12:e3:67:47:09:0a:29:a7:82:89:dd:f9:a0:4c:e4:f6:d3:4b:
d5:fc:14:fe:07:c3:2a:4c:d5:36:d1:2e:7f:db:e9:c0:95:47:
c5:1c:04:52:fe:a0:6d:1e:6e:da:fb:94:8d:4c:ec:ff:4a:00:
47:e3:46:68:4e:17:bd:a0:53:13:8d:8f:51:70:04:b2:16:bc:
d8:f0:be:e6:8c:56:fc:9d:b8:68:34:40:81:f2:7f:38:6a:34:
99:b1:20:42:e9:08:60:e3:ad:29:0b:7f:b4:b0:46:b4:ca:10:
98:34:f7:f4:a0:38:78:bb:de:b9:96:37:7a:8c:18:d6:4c:0a:
d2:5d:33:f2:38:1d:a5:22:42:fd:89:96:5e:90:b4:95:87:77:
45:46:45:b1
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY8J9WeQ8O3lH3yLAq7xGXRgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNlNjA5NzY5ODY4NmUxNTU1ZjUxZjZjODgzYmM1YTU4NTQ5
YjIzNjIwHhcNMjQwNDIzMDc1NzA4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4Y2UwYmU0OTc1ODlhYWQ4ZDc2ZTU3OTNjNzI0ZmMwMGZjMjhkZmY4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk6j4D9IDZ1oKD6UC7ML8pySabOnz
vynW2yeAWBpOYI9Sqf+Bp/v2pAO92yXVULX8/PaCBQsd5OdHodWOfL6xoWp05Tii
w0cnpHD8o/1JpKfwN5ByWhleLdF5Ns8L/ciX25znZQ2zoHLZTsST+7k/jNE/UoQy
PsIlyY8u9osJANfT3EfjOXslXhZBox23KQLKGsdMDG4QZECdCI0Pl+sUJtAGw1dV
Hy8m9DzNUoFuMonF3ItlxzTN2PCuUdz8vubt5Hc4aEebx2+kyX8iiKga+oshkw4U
ruTr8jpzOGvyD371DC8YtTefBzSsDrQ/6shPXjeTPwUmtjwze0aVuefhzQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIzgvkl1iarY125Xk8ck/AD8KN/4MB8GA1UdIwQY
MBaAFD5gl2mGhuFVX1H2yIO8WlhUmyNiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGIt
ZTFiZDg4ZDNmZDA3LzEvak9DLVNYV0pxdGpYYmxlVHh5VDhBUHdvM19nLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGItZTFiZDg4ZDNmZDA3
LzEvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQATVoPMA0G
CSqGSIb3DQEBCwUAA4IBAQDEIobwbtaatoQWi/YSac2dyUDp80m/LePDS3xYkqy/
xqF1u3c8477Q5QIlULB5WPqRY+tcEeLhDnAf+PijXIgIW51u9hGcYzpTTaT1XXP5
MkFMUm8pqUDD61G+r1l0g+ZqKWD3Na5hQLEpBMQS42dHCQopp4KJ3fmgTOT200vV
/BT+B8MqTNU20S5/2+nAlUfFHARS/qBtHm7a+5SNTOz/SgBH40ZoThe9oFMTjY9R
cASyFrzY8L7mjFb8nbhoNECB8n84ajSZsSBC6Qhg460pC3+0sEa0yhCYNPf0oDh4
u965ljd6jBjWTArSXTPyOB2lIkL9iZZekLSVh3dFRkWx
-----END CERTIFICATE-----
Generated at Tue May 21 04:50:49 2024 by rpki-client on console-fra.rpki-client.org