Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/ki9HFHEWDWXT_RUfDC-DT52kARM.roa
File: ki9HFHEWDWXT_RUfDC-DT52kARM.roa (raw, json)
Hash identifier: q0QjXyxKtFPnbameSfAikAxLuISd+ioEC5SYSAVGbqU=
Subject key identifier: 92:2F:47:14:71:16:0D:65:D3:FD:15:1F:0C:2F:83:4F:9D:A4:01:13
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 0192BE9B3B1591A700C6A8E5A078FDDC81BB
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/ki9HFHEWDWXT_RUfDC-DT52kARM.roa
Signing time: Thu 24 Oct 2024 12:58:17 +0000
ROA not before: Thu 24 Oct 2024 12:58:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 31025
IP address blocks: 77.90.20.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 31 Oct 2024 15:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:be:9b:3b:15:91:a7:00:c6:a8:e5:a0:78:fd:dc:81:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Oct 24 12:58:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=922f471471160d65d3fd151f0c2f834f9da40113
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:0f:56:a2:45:92:c6:66:1d:b5:79:52:0a:fc:
25:c7:20:d5:80:7d:04:7a:4c:15:71:c1:e2:77:25:
7f:10:b8:fb:dd:7f:f6:e7:ac:e4:ff:53:ca:69:83:
61:92:0c:02:55:d8:df:0b:b4:31:93:d7:12:02:ee:
92:dc:cf:53:cd:7b:c5:92:84:89:75:73:6e:b9:86:
c0:ab:dc:ef:10:1c:40:b9:7e:0e:8c:49:97:4f:9e:
52:84:03:db:3a:e1:3c:0d:2f:df:30:b1:11:1a:44:
62:33:9d:a2:22:21:c1:76:2d:55:f8:14:e5:35:25:
29:13:24:93:08:16:5d:1d:5e:2b:1c:57:26:d3:81:
a6:5b:5d:f2:f0:f4:07:e3:01:60:15:aa:4f:f9:44:
cd:9a:cb:34:4f:87:5c:3d:c6:18:9d:c1:da:7b:36:
0c:4b:47:15:ae:51:47:eb:2d:6a:06:81:d3:61:d8:
b1:53:b8:60:b2:84:c3:9b:9a:42:c7:45:d3:ee:a4:
b3:4a:45:3f:0e:32:da:2b:09:b5:7f:3b:f7:59:b3:
bf:d7:bf:85:a0:2e:da:35:6d:46:45:d7:ca:e0:c3:
bd:27:0d:dd:8c:d5:c3:db:8b:9c:25:7a:4d:4c:be:
5b:de:8d:45:00:6e:0c:46:79:05:f8:bf:fa:f9:97:
a3:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:2F:47:14:71:16:0D:65:D3:FD:15:1F:0C:2F:83:4F:9D:A4:01:13
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/ki9HFHEWDWXT_RUfDC-DT52kARM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.20.0/24
Signature Algorithm: sha256WithRSAEncryption
76:92:0d:3e:a6:00:df:c1:0c:7a:de:91:9f:5f:9c:ad:06:22:
13:7e:16:9b:7c:e1:41:8a:e0:d3:24:0d:e5:ce:89:45:c5:61:
f3:97:d6:fd:90:8f:4f:1b:59:25:a2:f0:ae:7d:3d:b7:fa:fe:
b0:9a:5a:85:e9:13:02:bb:ea:fc:a8:58:21:8f:b4:27:59:14:
17:dc:f3:03:6f:32:b6:d5:da:bc:11:c5:ce:38:21:c9:b1:07:
d0:c0:fd:ff:60:39:89:6e:4f:46:b8:46:2f:83:61:4d:e1:b9:
04:d6:5c:30:a9:6a:20:2e:92:f7:8a:3f:45:93:d4:e7:a1:a0:
d2:17:dc:8b:1b:cf:cb:81:64:fa:0e:34:3a:99:72:e7:d8:14:
04:9a:ef:6a:8b:4c:a7:98:24:0b:e4:3a:8f:20:19:88:b3:15:
60:fa:d0:94:e7:eb:2d:f4:e5:ec:03:2b:a5:a8:1b:0f:8b:4c:
56:57:74:e5:2c:cf:c2:3f:25:da:aa:be:01:12:2a:9f:5d:44:
16:57:b4:5c:70:81:09:99:03:c9:91:af:38:6f:c2:21:9d:22:
84:d8:07:68:47:d9:a0:a9:96:82:36:3c:41:9e:c5:df:94:60:
02:39:0f:27:54:8c:2c:b9:73:5f:26:e8:23:5b:68:6a:fd:be:
3e:22:85:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 31 17:47:13 2024 by rpki-client on console-fra.rpki-client.org