Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/5V_OeygqEPbWednfdaIT21U_Yr4.roa
File: 5V_OeygqEPbWednfdaIT21U_Yr4.roa (raw, json)
Hash identifier: F9lpAncm3s9eSgtQUIrzNa4Wg/QrA35rikaOOu4MFN4=
Subject key identifier: E5:5F:CE:7B:28:2A:10:F6:D6:79:D9:DF:75:A2:13:DB:55:3F:62:BE
Certificate issuer: /CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Certificate serial: 0187954CF59DC26636DBA700764747094EF8
Authority key identifier: 3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/5V_OeygqEPbWednfdaIT21U_Yr4.roa
Signing time: Tue 18 Apr 2023 16:57:41 +0000
ROA not before: Tue 18 Apr 2023 16:57:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42821
IP address blocks: 77.90.129.0/24 maxlen: 24
77.90.128.0/24 maxlen: 24
77.90.130.0/24 maxlen: 24
77.90.132.0/24 maxlen: 24
77.90.136.0/24 maxlen: 24
77.90.135.0/24 maxlen: 24
77.90.137.0/24 maxlen: 24
77.90.133.0/24 maxlen: 24
77.90.134.0/24 maxlen: 24
77.90.143.0/24 maxlen: 24
77.90.142.0/24 maxlen: 24
77.90.144.0/24 maxlen: 24
77.90.140.0/24 maxlen: 24
77.90.151.0/24 maxlen: 24
77.90.147.0/24 maxlen: 24
77.90.146.0/24 maxlen: 24
77.90.148.0/24 maxlen: 24
77.90.178.0/24 maxlen: 24
213.209.138.0/24 maxlen: 24
2a04:29c2::/32 maxlen: 32
2a04:29c7:1290:24::/64 maxlen: 64
2a04:29c7:1371:6027::/64 maxlen: 64
2a04:29c7:1280:27::/64 maxlen: 64
2a04:29c7:1420::/48 maxlen: 48
2a04:29c7::/32 maxlen: 32
2a04:29c7:1280:24::/64 maxlen: 64
2a04:29c7:1300:24::/64 maxlen: 64
Validation: Failed, certificate revoked on Wed 19 Apr 2023 07:20:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:95:4c:f5:9d:c2:66:36:db:a7:00:76:47:47:09:4e:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Validity
Not Before: Apr 18 16:57:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e55fce7b282a10f6d679d9df75a213db553f62be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:be:45:d4:23:e4:29:7c:25:ba:eb:f0:f3:2d:
f9:81:5c:1d:30:cd:54:c8:ff:71:cc:a4:ea:b0:16:
21:1c:e1:e7:e6:98:e7:ea:bd:8c:aa:f1:4e:da:f7:
32:af:9f:53:c0:1d:fe:b2:df:ba:44:24:1d:fb:ff:
83:5c:db:41:55:cd:f4:a1:24:58:70:9f:ea:7e:9b:
15:f8:b1:9f:6e:02:1a:4d:aa:31:06:29:b8:b0:ff:
61:a6:a9:16:e8:61:35:ea:6b:40:a8:08:82:96:46:
cd:79:49:f5:fe:ff:03:24:ab:e8:f4:94:06:ee:05:
01:c1:b4:78:94:d5:a8:b2:a6:27:86:e7:96:56:12:
e8:26:8a:d3:48:0e:c5:ab:b3:6c:21:52:54:03:f3:
71:17:b6:fc:7f:9b:d2:68:60:38:c7:88:ca:69:e9:
a2:ae:08:3b:3e:31:a3:01:24:cf:59:78:a1:74:f6:
16:5e:63:95:6f:32:a8:fa:ff:a5:88:36:54:db:c4:
e8:1b:07:54:63:66:fb:b5:98:06:20:70:15:ae:0e:
43:e2:d2:7c:0b:c0:4b:7b:b0:02:91:d2:a3:33:71:
6e:bb:42:d8:78:47:71:53:6f:d3:b3:22:d1:c9:c0:
9f:4f:06:79:33:4f:0f:04:02:96:ca:36:c7:5d:49:
48:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:5F:CE:7B:28:2A:10:F6:D6:79:D9:DF:75:A2:13:DB:55:3F:62:BE
X509v3 Authority Key Identifier:
keyid:3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/5V_OeygqEPbWednfdaIT21U_Yr4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.128.0-77.90.130.255
77.90.132.0-77.90.137.255
77.90.140.0/24
77.90.142.0-77.90.144.255
77.90.146.0-77.90.148.255
77.90.151.0/24
77.90.178.0/24
213.209.138.0/24
IPv6:
2a04:29c2::/32
2a04:29c7::/32
Signature Algorithm: sha256WithRSAEncryption
a9:2d:38:c9:a2:68:d8:95:ca:05:2d:77:52:6a:3a:bb:97:86:
71:79:3d:ef:25:f9:8b:c2:d9:6b:1a:cc:77:ca:a2:9a:2c:78:
58:bf:5c:f4:04:08:4c:d4:2c:76:bc:8f:8a:06:7a:2a:1c:39:
ac:7f:7e:bc:68:71:73:d4:7f:c8:52:f9:0e:ab:73:af:cf:3c:
55:18:08:c6:86:24:5b:65:fa:ef:ac:00:d7:7a:8a:4e:ad:a5:
38:e9:17:ae:a0:a9:db:5f:d7:f8:b1:fc:ab:1b:98:9b:e8:27:
8b:8c:33:89:bc:66:42:96:c9:9a:e5:4c:b3:54:9d:35:86:95:
5d:c3:ce:f6:0b:60:b6:a0:24:31:da:1a:b4:4a:28:fa:08:8d:
07:8d:49:ab:2c:76:4e:f4:99:1b:ed:07:42:26:dc:dc:bb:71:
c5:f7:ce:b2:5a:88:e1:58:ec:7e:13:46:3b:35:2b:75:10:d0:
98:f1:c4:cc:88:16:6d:77:16:68:ce:59:f0:16:42:d3:19:1b:
c7:f1:50:5b:b5:84:98:74:00:db:aa:d4:b4:9b:ba:a3:5a:e6:
55:29:97:e2:27:85:29:bf:3c:27:e4:8a:76:7a:12:31:eb:78:
e1:32:ec:15:e2:f1:29:d2:f4:47:40:1a:d7:e6:24:ed:4e:a9:
e6:7e:68:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:02 2024 by rpki-client on console-fra.rpki-client.org