Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/3vG8V-4ooU5Fp-gLhhzlVlmAN8Q.roa
File: 3vG8V-4ooU5Fp-gLhhzlVlmAN8Q.roa (raw, json)
Hash identifier: 2GCj4/UR5pje0qxbRYdETVDsrwitkpezSHc1SKoVV8g=
Subject key identifier: DE:F1:BC:57:EE:28:A1:4E:45:A7:E8:0B:86:1C:E5:56:59:80:37:C4
Certificate issuer: /CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Certificate serial: 019229C37810C719A4D634E3C297A64D459B
Authority key identifier: 3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/3vG8V-4ooU5Fp-gLhhzlVlmAN8Q.roa
Signing time: Wed 25 Sep 2024 15:18:48 +0000
ROA not before: Wed 25 Sep 2024 15:18:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 31334
IP address blocks: 77.90.154.0/24 maxlen: 24
185.230.14.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 30 Sep 2024 14:59:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:29:c3:78:10:c7:19:a4:d6:34:e3:c2:97:a6:4d:45:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Validity
Not Before: Sep 25 15:18:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=def1bc57ee28a14e45a7e80b861ce556598037c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:65:32:e6:bc:c3:4b:e3:3e:1c:27:37:8e:6a:
29:19:5f:24:a9:c7:b2:1a:87:b4:6a:db:0b:45:77:
6b:cb:f0:6d:64:a7:99:ed:56:c4:1a:1d:24:ca:b1:
11:c9:25:65:a4:5f:c0:5a:fd:9d:3b:63:8a:43:16:
7d:65:10:8d:ff:5d:1b:6f:af:34:97:62:12:75:49:
d0:ef:58:c1:be:c3:59:d6:2e:36:93:29:89:77:6e:
a9:dc:71:f6:e8:51:dd:00:80:6f:59:08:1d:7c:a7:
18:54:ab:50:74:8c:44:b7:65:c2:1e:0d:e4:12:b7:
11:b4:b6:7b:3a:99:ba:86:f7:86:d5:7c:82:cf:66:
d2:a5:b9:f1:1f:63:24:2a:80:8a:8c:bc:7c:bb:e9:
d3:60:10:87:aa:d4:d0:6b:03:d8:23:ef:ef:bc:af:
2d:21:25:04:22:f8:29:14:77:28:40:37:00:3d:1b:
53:da:5a:fa:92:8a:10:0e:26:56:4e:22:48:3a:cd:
96:2a:c7:8b:65:52:47:81:3c:73:09:c8:c4:7c:c8:
f8:d5:7f:a6:77:8e:e9:1c:c3:bd:8b:71:73:0e:d4:
e4:70:68:b2:7b:70:5c:46:ec:00:7b:5e:94:b7:c4:
05:54:c4:0d:74:07:db:4f:6f:f5:89:2a:07:8f:a4:
57:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:F1:BC:57:EE:28:A1:4E:45:A7:E8:0B:86:1C:E5:56:59:80:37:C4
X509v3 Authority Key Identifier:
keyid:3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/3vG8V-4ooU5Fp-gLhhzlVlmAN8Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.154.0/24
185.230.14.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:93:2e:57:23:79:aa:21:55:e7:b4:b6:af:f9:94:6d:63:75:
51:ea:da:77:4c:ae:12:7f:28:77:e8:0d:76:7b:b9:47:b3:07:
1a:ca:3f:b5:45:31:20:82:0d:36:1b:61:86:72:40:6a:47:85:
f4:95:a1:ad:b2:18:a8:20:cc:10:cf:f0:48:e7:76:28:4a:d5:
89:e6:9d:ed:b0:4d:53:58:46:c5:54:75:da:c2:f0:80:cc:47:
8f:c2:05:35:5a:74:92:79:f3:3c:90:0f:02:e1:fe:c3:c3:f3:
5e:44:5b:9b:c2:ee:8f:40:04:80:be:e6:7c:7e:ef:32:c8:18:
5a:fb:c3:d0:1e:d1:a8:2d:64:aa:ff:d3:bd:3b:c7:66:cb:76:
cb:84:4b:42:d0:c7:e6:ed:3d:eb:e0:92:4b:aa:ff:fe:96:e7:
09:00:e7:5b:7d:19:7c:f9:a2:ce:57:6a:97:4f:d0:5b:4a:b1:
e7:02:a2:e5:d8:6b:9c:aa:1c:9b:95:ff:a1:d0:f1:9b:44:7b:
37:fd:46:e8:f7:16:94:c8:e9:87:2a:30:cd:87:a6:13:c8:35:
b5:15:3d:84:a2:4b:e6:45:7e:83:99:e3:3d:54:35:68:9e:be:
e2:63:d9:3e:b0:8e:f2:e9:2e:ec:0f:e7:36:60:00:9a:d2:e2:
ac:44:2c:c4
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAZIpw3gQxxmk1jTjwpemTUWbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNiNDc2ZTEyZTg5ODdlNWIzMDJjZGMyNGJkZDlkYjNmZTgz
Yzg0NDkwHhcNMjQwOTI1MTUxODQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkZWYxYmM1N2VlMjhhMTRlNDVhN2U4MGI4NjFjZTU1NjU5ODAzN2M0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlmUy5rzDS+M+HCc3jmopGV8kqcey
Goe0atsLRXdry/BtZKeZ7VbEGh0kyrERySVlpF/AWv2dO2OKQxZ9ZRCN/10bb680
l2ISdUnQ71jBvsNZ1i42kymJd26p3HH26FHdAIBvWQgdfKcYVKtQdIxEt2XCHg3k
ErcRtLZ7Opm6hveG1XyCz2bSpbnxH2MkKoCKjLx8u+nTYBCHqtTQawPYI+/vvK8t
ISUEIvgpFHcoQDcAPRtT2lr6kooQDiZWTiJIOs2WKseLZVJHgTxzCcjEfMj41X+m
d47pHMO9i3FzDtTkcGiye3BcRuwAe16Ut8QFVMQNdAfbT2/1iSoHj6RXUQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFN7xvFfuKKFORafoC4Yc5VZZgDfEMB8GA1UdIwQY
MBaAFDtHbhLomH5bMCzcJL3Z2z/oPIRJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTzBkdUV1aVlmbHN3TE53a3ZkbmJQLWc4aEVrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC9kOTBjNmYtNjU3Ni00NmI5LTgzMTMt
NmNiZmYzYzRkYTAxLzEvM3ZHOFYtNG9vVTVGcC1nTGhoemxWbG1BTjhRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNC9kOTBjNmYtNjU3Ni00NmI5LTgzMTMtNmNiZmYzYzRkYTAx
LzEvTzBkdUV1aVlmbHN3TE53a3ZkbmJQLWc4aEVrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQATVqaAwQA
ueYOMA0GCSqGSIb3DQEBCwUAA4IBAQAaky5XI3mqIVXntLav+ZRtY3VR6tp3TK4S
fyh36A12e7lHswcayj+1RTEggg02G2GGckBqR4X0laGtshioIMwQz/BI53YoStWJ
5p3tsE1TWEbFVHXawvCAzEePwgU1WnSSefM8kA8C4f7Dw/NeRFubwu6PQASAvuZ8
fu8yyBha+8PQHtGoLWSq/9O9O8dmy3bLhEtC0Mfm7T3r4JJLqv/+lucJAOdbfRl8
+aLOV2qXT9BbSrHnAqLl2Gucqhyblf+h0PGbRHs3/Ubo9xaUyOmHKjDNh6YTyDW1
FT2EokvmRX6DmeM9VDVonr7iY9k+sI7y6S7sD+c2YACa0uKsRCzE
-----END CERTIFICATE-----
Generated at Mon Sep 30 18:08:11 2024 by rpki-client on console-fra.rpki-client.org