Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/04HyvPQWfJgCT_bGVMLi4Wgo4Y0.roa
File: 04HyvPQWfJgCT_bGVMLi4Wgo4Y0.roa (raw, json)
Hash identifier: fym0xhykQGFChDbbDHyiRRHzs1QoKxNNsBXhni0iKRg=
Subject key identifier: D3:81:F2:BC:F4:16:7C:98:02:4F:F6:C6:54:C2:E2:E1:68:28:E1:8D
Certificate issuer: /CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Certificate serial: 019229C28CAC5F196843AF7029653E3B013D
Authority key identifier: 3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/04HyvPQWfJgCT_bGVMLi4Wgo4Y0.roa
Signing time: Wed 25 Sep 2024 15:17:48 +0000
ROA not before: Wed 25 Sep 2024 15:17:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42821
IP address blocks: 77.90.128.0/24 maxlen: 24
77.90.129.0/24 maxlen: 24
77.90.130.0/24 maxlen: 24
77.90.132.0/24 maxlen: 24
77.90.133.0/24 maxlen: 24
77.90.134.0/24 maxlen: 24
77.90.135.0/24 maxlen: 24
77.90.136.0/24 maxlen: 24
77.90.137.0/24 maxlen: 24
77.90.139.0/24 maxlen: 24
77.90.140.0/24 maxlen: 24
77.90.142.0/24 maxlen: 24
77.90.143.0/24 maxlen: 24
77.90.144.0/24 maxlen: 24
77.90.146.0/24 maxlen: 24
77.90.147.0/24 maxlen: 24
77.90.148.0/24 maxlen: 24
213.209.138.0/24 maxlen: 24
213.209.150.0/24 maxlen: 24
2a04:29c2::/32 maxlen: 32
2a04:29c7::/32 maxlen: 32
2a04:29c7:1280:24::/64 maxlen: 64
2a04:29c7:1280:27::/64 maxlen: 64
2a04:29c7:1290:24::/64 maxlen: 64
2a04:29c7:1300:24::/64 maxlen: 64
2a04:29c7:1371:6027::/64 maxlen: 64
2a04:29c7:1420::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 02 Oct 2024 10:05:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:29:c2:8c:ac:5f:19:68:43:af:70:29:65:3e:3b:01:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Validity
Not Before: Sep 25 15:17:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d381f2bcf4167c98024ff6c654c2e2e16828e18d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:3a:c5:11:53:6a:65:3a:38:da:d0:bb:75:90:
5e:e7:17:13:4a:a7:4d:16:ea:34:67:7e:07:4e:1c:
38:be:7d:09:4d:8e:0b:b4:28:1f:d3:4b:10:3b:57:
f8:15:ac:11:66:8a:93:23:6b:64:70:25:d4:c7:4b:
f2:56:aa:cb:25:fc:10:21:07:0c:2e:f1:91:30:3f:
da:26:22:6a:ad:fd:46:7e:14:a0:10:f9:95:3a:a7:
e6:24:ef:e5:56:fa:2e:1b:e7:9a:58:4c:b6:40:79:
9a:6b:b7:47:cc:85:53:68:af:d9:36:34:fc:65:0b:
c2:c0:d9:9a:3b:f5:7a:dd:58:4d:d8:94:22:94:78:
a0:dd:31:25:f3:e2:36:fd:7c:4f:b6:67:9d:64:82:
7c:18:4c:fd:98:fd:64:c7:1d:59:78:db:f9:9b:5e:
d0:ce:3c:d1:b3:c4:8e:6c:a2:8c:a9:f2:cd:eb:ef:
b7:1a:02:21:9b:29:eb:a4:66:24:b9:9c:e7:22:10:
6e:b9:0f:bb:dd:42:c7:88:2e:78:00:fc:0b:b2:da:
43:8f:5d:7c:37:96:7b:00:56:c8:f0:a8:88:36:91:
c2:15:c1:6b:f2:24:24:4a:cc:ea:ff:5c:a4:fe:73:
82:86:ca:c9:23:b2:a2:f5:aa:d6:42:28:f8:28:0b:
86:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:81:F2:BC:F4:16:7C:98:02:4F:F6:C6:54:C2:E2:E1:68:28:E1:8D
X509v3 Authority Key Identifier:
keyid:3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/04HyvPQWfJgCT_bGVMLi4Wgo4Y0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.128.0-77.90.130.255
77.90.132.0-77.90.137.255
77.90.139.0-77.90.140.255
77.90.142.0-77.90.144.255
77.90.146.0-77.90.148.255
213.209.138.0/24
213.209.150.0/24
IPv6:
2a04:29c2::/32
2a04:29c7::/32
Signature Algorithm: sha256WithRSAEncryption
86:35:1a:cc:3f:4c:ef:f2:8e:f6:f0:ce:c3:50:89:fe:4a:61:
97:97:03:97:23:ff:0f:f7:9e:69:3c:12:38:73:25:00:27:90:
25:b2:84:30:f4:3d:7a:e8:16:d9:34:6f:9a:d7:05:81:c5:a9:
b2:b0:66:bd:a1:0e:48:62:6a:3c:3c:5b:bd:b2:27:d7:0d:f7:
77:fd:5f:1d:a7:a9:dd:37:82:bd:67:6f:9e:cd:a6:ed:ca:68:
f6:51:1e:ec:6d:2c:7b:1f:4e:f4:3c:99:15:95:60:9b:13:e1:
43:f8:1a:41:08:b5:cf:4d:b0:63:b5:5d:b1:ce:b3:ee:66:2a:
62:16:39:5d:b4:47:7e:73:11:16:6b:2f:6a:41:25:05:4d:21:
17:a9:b4:db:35:35:91:d8:66:f7:e7:ae:60:0c:99:40:cd:0d:
35:79:9b:91:e1:47:1f:4d:63:11:3a:b2:fa:17:5a:0a:e3:1b:
35:42:8d:39:70:b4:9c:28:9d:44:5f:2d:8f:f2:55:31:c9:c5:
c3:f6:2f:e8:1f:a6:1c:49:c9:a1:e4:0e:d3:84:9c:96:5e:ae:
bd:7d:63:b5:fc:a9:5c:0f:c3:3d:64:51:b0:2d:74:3d:34:d6:
e2:0e:23:d0:96:ca:6e:5f:3c:3a:44:98:46:3a:30:60:0f:44:
c2:ca:35:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 2 14:01:02 2024 by rpki-client on console-ams.rpki-client.org