Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/2P3mOSB-Ok_EHw2Abr2MnPuQXzw.roa
File: 2P3mOSB-Ok_EHw2Abr2MnPuQXzw.roa (raw, json)
Hash identifier: aD85mxreopdS1T909BR1gXdTkYUgcda9xNPPdr0nvNc=
Subject key identifier: D8:FD:E6:39:20:7E:3A:4F:C4:1F:0D:80:6E:BD:8C:9C:FB:90:5F:3C
Certificate issuer: /CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Certificate serial: 018616285E2207BA5E383CCC2387F6C68DCD
Authority key identifier: 3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/2P3mOSB-Ok_EHw2Abr2MnPuQXzw.roa
Signing time: Fri 03 Feb 2023 07:23:09 +0000
ROA not before: Fri 03 Feb 2023 07:23:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43260
IP address blocks: 77.90.138.0/24 maxlen: 24
77.90.151.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 08 Apr 2023 08:37:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:16:28:5e:22:07:ba:5e:38:3c:cc:23:87:f6:c6:8d:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Validity
Not Before: Feb 3 07:23:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d8fde639207e3a4fc41f0d806ebd8c9cfb905f3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:f6:8c:4d:f6:74:46:c2:0e:a6:de:7a:88:27:
57:f6:df:a9:d2:79:f0:7b:5a:54:42:c8:d4:21:fd:
8e:a2:91:97:5f:45:fb:7f:9f:75:d0:b7:c6:1a:fc:
3c:27:20:7c:21:dd:b7:1c:a8:cb:42:a8:1a:6a:5a:
08:64:76:62:80:2b:d0:b6:ef:7c:57:9d:b2:11:b8:
ff:6a:e6:d7:e8:b9:30:08:2d:d6:4b:45:1e:1c:74:
85:0d:cd:ff:35:08:57:f0:90:a9:dd:6d:2b:81:7c:
14:55:09:20:93:0b:d8:0e:82:0e:67:5b:f6:ce:e3:
1e:12:3a:a1:a5:80:cd:28:67:61:70:ea:78:73:ba:
55:bc:27:c8:62:be:79:6c:b0:cf:2b:39:04:04:14:
e2:7f:a9:f9:44:bf:b9:ef:a3:d1:8f:b5:2c:bb:6b:
67:f5:46:16:f6:05:30:e9:41:83:51:dd:aa:94:6c:
9c:0e:eb:ad:f5:f9:78:4d:8f:48:44:94:25:3c:c7:
6e:22:5d:40:d9:aa:dd:18:b3:5d:31:e9:c8:30:1b:
97:f5:fe:84:84:4f:c3:4d:e8:5a:8d:68:fa:12:72:
73:2d:8d:30:ec:60:30:71:1b:08:1d:61:bc:93:0a:
43:a9:d3:03:f1:ed:f8:12:78:a7:2d:9f:f8:13:8c:
1f:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:FD:E6:39:20:7E:3A:4F:C4:1F:0D:80:6E:BD:8C:9C:FB:90:5F:3C
X509v3 Authority Key Identifier:
keyid:3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/2P3mOSB-Ok_EHw2Abr2MnPuQXzw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.138.0/24
77.90.151.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:06:a3:a6:ea:97:f7:db:c3:9c:a0:12:ee:c5:39:dd:05:63:
5a:b3:3b:38:74:a9:eb:1e:b2:11:a1:98:31:9e:c0:96:f4:cb:
ca:31:ca:3c:c8:ba:48:1c:18:fc:3b:61:ef:ff:f4:f0:e8:da:
1a:82:fe:70:68:aa:43:43:bb:cd:2d:68:13:bd:03:de:ee:3c:
cb:d8:e5:43:60:1f:39:47:d7:f3:95:9f:68:41:04:a5:a1:4b:
9a:76:f8:5c:50:a5:6c:42:d8:7d:0b:92:d9:84:26:ea:5f:66:
02:3e:00:95:5d:56:3d:ec:10:2d:5c:96:ca:42:c3:05:e2:6b:
8b:2a:50:74:52:d4:15:8f:df:9d:62:f2:00:e1:67:01:18:d5:
a8:41:9c:40:39:ad:34:60:8c:8d:27:63:fb:b8:bd:72:1b:80:
ae:8e:c8:e0:97:e1:eb:e5:5b:77:08:33:56:cc:1b:4d:db:f9:
03:74:f3:63:7c:43:fe:78:91:4e:6b:87:d8:14:ef:db:cd:f6:
ce:62:3a:45:0a:a8:f2:fc:5a:87:97:1e:9d:d0:99:94:3d:f9:
26:c3:7f:4f:65:fe:d1:62:b2:0b:0d:4d:31:46:25:2a:fd:9b:
70:cf:2f:41:14:47:d0:ee:c5:da:c8:46:b8:46:78:14:23:ec:
05:25:60:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:02 2024 by rpki-client on console-fra.rpki-client.org