Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/ph3yGMFMGkFyTEPyqelKpqFeTis.roa
File: ph3yGMFMGkFyTEPyqelKpqFeTis.roa (raw, json)
Hash identifier: 8Jz/2lWJ/m/ppRE+O0UzOZjECJ6Q3YalI+mGQBqKg38=
Subject key identifier: A6:1D:F2:18:C1:4C:1A:41:72:4C:43:F2:A9:E9:4A:A6:A1:5E:4E:2B
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 0195F4AF1689838C22BA58DCF9CB95279CBC
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/ph3yGMFMGkFyTEPyqelKpqFeTis.roa
Signing time: Wed 02 Apr 2025 04:07:50 +0000
ROA not before: Wed 02 Apr 2025 04:07:50 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 215039
IP address blocks: 77.90.5.0/24 maxlen: 24
77.90.53.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 02 Apr 2025 06:45:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:f4:af:16:89:83:8c:22:ba:58:dc:f9:cb:95:27:9c:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Apr 2 04:07:50 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a61df218c14c1a41724c43f2a9e94aa6a15e4e2b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:37:e0:13:ab:66:07:2e:1e:ee:be:70:c2:d5:
4a:60:e1:81:30:a6:40:84:e2:16:5b:09:ca:c6:db:
e5:11:cb:54:0e:76:b1:3e:8d:da:26:87:58:a9:2d:
e1:2f:a7:ea:2c:25:8e:99:f9:68:b6:ff:3b:cc:db:
54:bf:00:42:40:2d:74:5e:20:fe:59:bd:71:e3:0a:
0e:bd:0b:37:7d:3f:98:7d:d0:24:9e:6f:66:c0:67:
31:ca:21:5a:75:f0:df:3b:2e:89:ad:30:ea:ca:a3:
f7:12:64:ed:af:01:ac:de:61:1e:78:c7:b8:4f:fd:
c8:b5:d4:36:fb:74:b6:32:b5:9d:38:77:c9:6d:1d:
62:e0:29:3c:b7:ed:a4:9c:49:52:22:21:4f:b6:a8:
0a:75:36:57:e7:8e:1c:28:fe:f8:f2:88:08:68:ed:
22:39:f1:21:f1:a5:6f:db:28:eb:16:0d:8f:e8:3a:
d7:b2:0d:90:ce:90:09:aa:4e:69:7a:00:d7:cb:09:
d7:8f:ed:fe:78:b3:98:1f:79:5d:b8:ee:e5:0e:e3:
7a:47:42:34:c0:dc:f7:db:53:94:0d:90:6b:88:15:
e3:7e:d0:bb:13:18:6c:3e:b6:41:52:01:ae:a0:12:
d4:88:d9:3d:10:f3:74:a9:46:fc:94:b9:ac:d0:40:
4a:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:1D:F2:18:C1:4C:1A:41:72:4C:43:F2:A9:E9:4A:A6:A1:5E:4E:2B
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/ph3yGMFMGkFyTEPyqelKpqFeTis.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.5.0/24
77.90.53.0/24
Signature Algorithm: sha256WithRSAEncryption
30:41:79:6a:ed:ae:30:2b:91:18:7b:c6:63:f8:53:6b:56:60:
89:93:ac:d8:94:b2:51:d5:35:f9:62:c7:13:14:e6:18:a6:3b:
3d:ec:82:74:9e:4b:e8:a0:f0:5b:4c:85:04:94:06:9a:6d:a1:
2d:d9:0b:e6:36:d3:2a:3d:6a:32:cd:7d:73:42:2b:ac:e5:da:
be:03:96:08:59:a2:d1:8f:89:64:43:d8:c4:a1:59:d4:67:d8:
1b:4e:c4:df:97:c8:fa:45:37:70:aa:44:f7:87:30:5c:22:b2:
1f:54:7a:63:73:16:11:7f:1e:d8:a5:c9:65:09:a0:19:51:0f:
cb:75:b7:71:11:2f:a1:e9:8c:11:56:4e:28:d6:18:d8:8c:0b:
30:0b:bf:57:78:7d:2a:0d:0d:1f:0a:df:02:21:2b:ab:02:b8:
39:5d:cc:77:9f:d7:0f:8d:4d:0d:a6:5d:44:29:31:2b:da:00:
6a:f4:1f:cb:23:96:b9:1e:66:8b:c6:8d:0c:81:6f:e0:90:aa:
4d:4c:1a:7f:2b:a2:90:2b:bc:d3:bf:92:23:34:08:58:7b:ce:
ba:8c:e0:bb:6e:92:d9:7a:7d:3f:da:26:ad:e3:ec:74:8a:72:
94:15:2a:b4:86:3a:e0:be:66:4e:1c:39:93:ca:ed:1a:ff:1e:
db:5c:dc:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 03:20:24 2025 by rpki-client