Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/59fFj7VVxjgai_H4yNRkzl18Nng.roa
File: 59fFj7VVxjgai_H4yNRkzl18Nng.roa (raw, json)
Hash identifier: 2FRLDGMNgiJVOWyhBDP/jT3BAv1jp7TFDZLLpBsLK9k=
Subject key identifier: E7:D7:C5:8F:B5:55:C6:38:1A:8B:F1:F8:C8:D4:64:CE:5D:7C:36:78
Certificate issuer: /CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Certificate serial: 018A19A08639D33BF13F30ADF7E1DA3EE822
Authority key identifier: 3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/59fFj7VVxjgai_H4yNRkzl18Nng.roa
Signing time: Mon 21 Aug 2023 19:44:25 +0000
ROA not before: Mon 21 Aug 2023 19:44:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42821
IP address blocks: 77.90.129.0/24 maxlen: 24
77.90.128.0/24 maxlen: 24
77.90.130.0/24 maxlen: 24
77.90.132.0/24 maxlen: 24
185.230.13.0/24 maxlen: 24
185.230.14.0/24 maxlen: 24
77.90.188.0/24 maxlen: 24
77.90.136.0/24 maxlen: 24
77.90.137.0/24 maxlen: 24
77.90.133.0/24 maxlen: 24
77.90.134.0/24 maxlen: 24
77.90.143.0/24 maxlen: 24
77.90.142.0/24 maxlen: 24
77.90.145.0/24 maxlen: 24
77.90.144.0/24 maxlen: 24
77.90.140.0/24 maxlen: 24
77.90.147.0/24 maxlen: 24
77.90.146.0/24 maxlen: 24
77.90.148.0/24 maxlen: 24
77.90.153.0/24 maxlen: 24
77.90.154.0/24 maxlen: 24
213.209.138.0/24 maxlen: 24
213.209.145.0/24 maxlen: 24
213.209.146.0/24 maxlen: 24
213.209.151.0/24 maxlen: 24
213.209.150.0/24 maxlen: 24
2a04:29c2::/32 maxlen: 32
2a04:29c7:1290:24::/64 maxlen: 64
2a04:29c7:1371:6027::/64 maxlen: 64
2a04:29c7:1280:27::/64 maxlen: 64
2a04:29c7:1420::/48 maxlen: 48
2a04:29c7::/32 maxlen: 32
2a04:29c7:1280:24::/64 maxlen: 64
2a04:29c7:1300:24::/64 maxlen: 64
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:19:a0:86:39:d3:3b:f1:3f:30:ad:f7:e1:da:3e:e8:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Validity
Not Before: Aug 21 19:44:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e7d7c58fb555c6381a8bf1f8c8d464ce5d7c3678
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:53:18:58:47:7e:bf:ef:4e:73:fe:b7:2a:d5:
ca:47:61:63:f9:be:ac:c0:79:66:11:6d:6a:80:30:
56:79:60:6a:28:69:de:05:dd:2d:15:34:f6:ac:36:
00:9d:aa:4c:09:c7:ed:cf:85:1c:ca:fb:71:b9:b5:
27:f3:f5:12:f4:05:05:42:4c:00:3a:8a:88:0c:a0:
b7:28:20:9c:e7:4b:ef:e1:41:11:cb:52:5a:e8:75:
e1:62:7b:18:00:84:57:1c:7d:03:58:eb:e6:72:0a:
90:5d:aa:04:67:47:17:ee:b6:18:51:d5:86:69:95:
1a:0e:3e:5c:7f:83:c9:f8:c3:e1:f3:42:be:aa:b4:
c5:e1:47:36:59:90:b3:1a:c2:0c:53:17:b7:2d:a4:
f5:1e:c7:af:5d:7f:86:4f:e1:55:d7:e4:2f:24:f5:
95:02:4b:1c:70:a8:45:fc:d0:6f:e6:51:58:b2:3d:
40:e4:15:4a:ec:16:dc:09:9c:e9:66:f3:5a:4e:72:
21:d6:33:e8:24:c5:c9:f6:09:99:28:5f:3e:65:ca:
10:5f:97:cc:37:0c:37:07:ed:ac:a1:02:85:63:f8:
3c:27:18:a7:e4:05:23:2b:ce:51:07:8b:97:53:d9:
45:79:ca:ce:47:62:37:ab:05:e1:23:f2:72:3a:76:
84:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:D7:C5:8F:B5:55:C6:38:1A:8B:F1:F8:C8:D4:64:CE:5D:7C:36:78
X509v3 Authority Key Identifier:
keyid:3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/59fFj7VVxjgai_H4yNRkzl18Nng.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.128.0-77.90.130.255
77.90.132.0-77.90.134.255
77.90.136.0/23
77.90.140.0/24
77.90.142.0-77.90.148.255
77.90.153.0-77.90.154.255
77.90.188.0/24
185.230.13.0-185.230.14.255
213.209.138.0/24
213.209.145.0-213.209.146.255
213.209.150.0/23
IPv6:
2a04:29c2::/32
2a04:29c7::/32
Signature Algorithm: sha256WithRSAEncryption
9d:1f:b7:e1:9b:49:d5:a8:fa:de:a8:ef:89:2a:7f:27:09:f1:
22:c4:46:8a:a6:fb:99:f3:97:6b:bb:3d:0b:48:d1:a5:a4:db:
c5:4d:2c:f2:bb:ea:db:7b:14:93:33:f5:4e:26:0b:02:0d:d7:
76:3a:18:9e:5d:61:fd:a4:48:86:ed:83:0a:39:2f:f3:d0:aa:
e1:92:43:c9:de:f8:c4:40:95:28:18:b8:61:68:30:72:37:0a:
76:c2:6c:a2:c1:ef:f1:e7:1c:62:74:42:e6:cc:83:0a:c5:71:
88:50:55:1c:54:e6:f9:ff:c1:58:32:96:56:f7:c3:91:f8:e9:
c7:9f:a8:ae:cd:f3:97:48:51:6d:8c:80:b1:fb:25:fc:58:2a:
cc:85:8a:28:c2:58:de:a9:ec:09:e3:91:a5:00:f6:e9:ed:7a:
a5:e6:da:53:d3:f4:1f:b4:76:b3:63:1a:54:6e:61:2f:7d:9e:
5b:d4:94:40:47:53:b2:ce:de:4c:c0:94:fd:71:22:ab:53:41:
91:4c:5a:2b:db:3e:e1:64:47:c3:bb:5b:b9:b1:1a:3b:f1:99:
c9:1f:64:d3:2c:7a:98:27:15:ee:f7:5a:14:66:38:6b:9d:87:
1f:86:5b:ab:4e:60:a7:d2:71:93:f1:9e:bc:9d:d9:5b:1e:17:
95:07:dc:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 22 14:11:16 2023 by rpki-client on console-ams.rpki-client.org