Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/raSPWfU2hx63FRlhoB5vOeX3QMY.roa
File: raSPWfU2hx63FRlhoB5vOeX3QMY.roa (raw, json)
Hash identifier: 8mPQ80bLT29N63JNmNhnx6uVH00QK4PhxxGaLO0V/4o=
Subject key identifier: AD:A4:8F:59:F5:36:87:1E:B7:15:19:61:A0:1E:6F:39:E5:F7:40:C6
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 018712D5AF379DDC4AB7AB1B52274F327FAD
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/raSPWfU2hx63FRlhoB5vOeX3QMY.roa
Signing time: Fri 24 Mar 2023 08:56:46 +0000
ROA not before: Fri 24 Mar 2023 08:56:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57433
IP address blocks: 77.90.9.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 01 Dec 2023 10:47:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:12:d5:af:37:9d:dc:4a:b7:ab:1b:52:27:4f:32:7f:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Mar 24 08:56:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ada48f59f536871eb7151961a01e6f39e5f740c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:fb:57:40:20:d3:01:5a:01:65:42:d7:0f:f8:
f1:5d:2f:90:77:40:34:97:28:2e:d5:72:f4:b7:28:
9e:7b:7d:e6:11:54:50:e9:3e:91:63:b3:20:25:b8:
40:bb:82:6d:68:b6:74:c6:c2:61:97:f9:94:e9:6d:
da:d6:1e:bf:d3:c0:99:3e:dd:ac:a7:c9:52:46:dd:
60:da:3c:94:d4:75:e2:e1:3c:7c:79:24:8e:97:62:
5c:88:14:53:6e:cc:92:9a:82:5d:02:e4:ae:eb:87:
95:ba:6b:7b:93:89:37:2e:e0:92:10:50:d4:bc:0f:
04:f1:e2:30:d8:3c:04:a3:f0:14:fa:47:c2:b0:e2:
b4:da:09:16:b8:e5:5f:23:85:37:33:4b:4b:0b:3d:
85:fc:a3:8e:1b:ea:09:e4:60:3d:fe:19:a9:8c:11:
d9:51:16:b6:d9:7f:f3:bb:b5:83:46:d1:24:b7:9b:
8e:38:fa:4f:97:52:d5:83:65:6c:e4:e8:70:8f:e1:
5e:2b:8b:e7:e5:9b:1b:73:0e:80:8f:e6:57:4a:d1:
08:1f:a0:b0:f0:6d:0a:bb:c3:73:a2:40:8d:af:3b:
df:7b:4d:a9:c1:bf:6a:73:9f:e4:8e:50:52:90:35:
77:16:cd:f9:d4:f3:1e:f8:41:05:df:3e:76:70:81:
8b:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:A4:8F:59:F5:36:87:1E:B7:15:19:61:A0:1E:6F:39:E5:F7:40:C6
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/raSPWfU2hx63FRlhoB5vOeX3QMY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.9.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:b3:a0:06:10:15:55:44:68:b3:97:80:bb:00:6d:cb:00:5e:
d1:69:22:35:99:0d:39:27:1a:d4:cd:59:a5:28:6f:d1:66:09:
bf:df:76:88:57:7f:05:07:a1:20:ff:a5:39:fa:9e:d1:2e:4c:
58:3e:7d:e6:b6:f1:53:11:19:89:4c:10:6e:a9:70:a0:ff:5b:
dd:f9:e3:d7:3d:70:1a:b3:7d:b5:54:82:00:31:5b:db:4d:9a:
1f:e2:fc:e6:91:49:06:7c:58:d6:42:2f:09:13:7f:89:a5:29:
04:44:ad:d0:ce:54:52:79:ac:35:fe:cb:4e:a1:f8:5e:18:69:
8b:6f:95:3f:ee:51:4b:fc:58:57:14:5f:84:72:96:92:82:ac:
4c:2d:84:b2:5d:b5:c7:0b:11:76:a0:5c:c1:a2:d4:58:19:12:
6a:06:2c:8e:34:01:e2:82:ee:34:df:01:7d:5b:06:ca:b3:7c:
71:ee:ed:1f:35:e0:9d:1e:be:8b:31:2c:cd:8f:85:db:f5:be:
15:79:55:e9:77:ae:f9:96:8c:e7:96:04:7e:e6:83:02:d5:44:
66:50:ec:4c:8e:08:3a:0d:46:d5:36:99:1c:aa:12:ed:0d:80:
fb:55:47:db:bb:fc:d2:af:88:a3:1b:8f:24:2c:f8:80:b5:55:
46:61:d3:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:54 2024 by rpki-client on console-ams.rpki-client.org