Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/xFjyO1vN2WPCPbXuoLPgaon6kNA.roa
File: xFjyO1vN2WPCPbXuoLPgaon6kNA.roa (raw, json)
Hash identifier: duksYXyJQx07/827WhyHIu2zVkXInw47NLjK1U+qyu4=
Subject key identifier: C4:58:F2:3B:5B:CD:D9:63:C2:3D:B5:EE:A0:B3:E0:6A:89:FA:90:D0
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 01924BF5BE8240376AAEC9096B42053432C1
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/xFjyO1vN2WPCPbXuoLPgaon6kNA.roa
Signing time: Wed 02 Oct 2024 06:40:48 +0000
ROA not before: Wed 02 Oct 2024 06:40:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 197477
IP address blocks: 77.90.10.0/24 maxlen: 24
77.90.11.0/24 maxlen: 24
77.90.50.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 02 Nov 2024 05:12:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:4b:f5:be:82:40:37:6a:ae:c9:09:6b:42:05:34:32:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Oct 2 06:40:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c458f23b5bcdd963c23db5eea0b3e06a89fa90d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:4c:6b:0d:5a:24:f8:be:f2:de:3f:f0:a0:2e:
34:13:77:10:4a:7d:c9:fb:1f:28:fb:63:f4:74:33:
18:12:d5:a3:98:13:a9:58:b2:ca:fa:1b:80:82:1f:
18:e4:cb:a7:0c:97:ef:78:17:90:a9:77:7c:7f:08:
17:7f:f4:fd:39:12:f3:4f:52:81:1a:31:b9:9b:bf:
7f:64:39:19:d0:9b:ff:41:ef:de:4d:a9:47:1d:b4:
1c:f5:bf:a6:bb:f9:55:77:b2:1d:de:84:01:23:ca:
fb:c9:70:f0:f0:07:d5:9f:2b:be:18:b1:de:45:84:
6e:aa:c8:eb:6c:98:25:62:32:b6:21:f1:c7:d4:ec:
87:02:10:c6:42:bb:b9:32:79:6b:18:45:fd:88:d6:
46:78:47:dd:7a:cb:23:f5:87:4e:44:85:b2:af:73:
11:4d:68:37:d0:f3:f0:a6:12:41:af:a7:45:24:64:
4f:26:14:4f:4a:96:80:14:40:f2:ef:80:77:24:7d:
4c:0a:12:1c:39:92:2d:2b:37:80:69:c6:74:5e:4b:
2b:a2:a8:01:d3:6f:6e:bf:f9:94:12:50:f0:b8:15:
d1:18:86:db:7a:b7:9a:e9:ba:3d:0b:3e:6d:6f:60:
87:77:73:b1:2b:74:f5:33:ac:ad:87:ab:7a:2d:82:
cb:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:58:F2:3B:5B:CD:D9:63:C2:3D:B5:EE:A0:B3:E0:6A:89:FA:90:D0
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/xFjyO1vN2WPCPbXuoLPgaon6kNA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.10.0/23
77.90.50.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:e0:ed:bd:16:a4:47:6f:8d:3e:dc:a6:5e:6f:b2:f7:e3:01:
d7:5b:65:ba:eb:cc:08:19:fe:6c:cf:2b:f6:e2:8f:c3:a3:35:
00:e1:f1:42:43:6d:7d:5a:14:f2:e0:e2:81:95:f7:8f:84:58:
37:6c:a3:ce:d4:be:ad:bd:bf:7b:83:bc:eb:fd:0a:b3:b0:a3:
7f:0e:f6:2a:76:4a:61:28:e7:e1:61:a6:19:fb:ef:3f:49:dc:
1d:b2:32:78:8b:ee:fe:62:da:f3:d0:36:ae:47:c1:07:59:14:
35:32:64:46:24:69:06:08:aa:30:85:5f:d3:65:4a:c4:bb:6e:
3b:0e:65:41:bf:f2:f9:25:7c:ff:10:ee:d4:1f:84:33:a9:de:
1f:db:46:dd:fe:58:f9:74:17:99:d7:92:95:f9:0f:ae:ac:b2:
e3:36:f5:b1:12:79:d3:f8:ac:c0:c4:a2:ce:21:fa:fc:91:d0:
c6:4c:7a:dc:b2:51:81:1a:74:26:c0:a4:41:01:95:d7:20:82:
83:c6:97:72:3f:1a:1f:d0:d3:10:c0:ea:66:14:d1:1e:62:5d:
26:61:77:c4:1b:f7:fc:17:1e:5b:06:26:da:bc:df:ea:e4:b5:
83:41:62:9a:3e:ab:bd:37:87:3f:24:bf:82:71:f5:3c:e2:89:
a2:a1:1c:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 2 05:56:21 2024 by rpki-client on console-fra.rpki-client.org