Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/BgWwku_ZMrQEEkQDiDYdwDGC8XM.roa
File: BgWwku_ZMrQEEkQDiDYdwDGC8XM.roa (raw, json)
Hash identifier: zRPFXBNFBWrosT/qrpG2GLS6xuPUAlf3gxbP47lYC5Y=
Subject key identifier: 06:05:B0:92:EF:D9:32:B4:04:12:44:03:88:36:1D:C0:31:82:F1:73
Certificate issuer: /CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Certificate serial: 018A215D5818FA66112A118F7E8F08E2E179
Authority key identifier: 3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/BgWwku_ZMrQEEkQDiDYdwDGC8XM.roa
Signing time: Wed 23 Aug 2023 07:48:00 +0000
ROA not before: Wed 23 Aug 2023 07:48:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42821
IP address blocks: 77.90.129.0/24 maxlen: 24
77.90.128.0/24 maxlen: 24
77.90.130.0/24 maxlen: 24
77.90.132.0/24 maxlen: 24
185.230.13.0/24 maxlen: 24
185.230.14.0/24 maxlen: 24
77.90.188.0/24 maxlen: 24
77.90.136.0/24 maxlen: 24
77.90.137.0/24 maxlen: 24
77.90.133.0/24 maxlen: 24
77.90.134.0/24 maxlen: 24
77.90.143.0/24 maxlen: 24
77.90.142.0/24 maxlen: 24
77.90.144.0/24 maxlen: 24
77.90.140.0/24 maxlen: 24
77.90.147.0/24 maxlen: 24
77.90.146.0/24 maxlen: 24
77.90.148.0/24 maxlen: 24
77.90.153.0/24 maxlen: 24
213.209.138.0/24 maxlen: 24
213.209.145.0/24 maxlen: 24
213.209.146.0/24 maxlen: 24
213.209.151.0/24 maxlen: 24
213.209.150.0/24 maxlen: 24
2a04:29c2::/32 maxlen: 32
2a04:29c7:1290:24::/64 maxlen: 64
2a04:29c7:1371:6027::/64 maxlen: 64
2a04:29c7:1280:27::/64 maxlen: 64
2a04:29c7:1420::/48 maxlen: 48
2a04:29c7::/32 maxlen: 32
2a04:29c7:1300:24::/64 maxlen: 64
2a04:29c7:1280:24::/64 maxlen: 64
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:21:5d:58:18:fa:66:11:2a:11:8f:7e:8f:08:e2:e1:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Validity
Not Before: Aug 23 07:48:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0605b092efd932b40412440388361dc03182f173
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:11:7b:06:d6:b5:3c:d5:27:a4:98:46:b1:cb:
a2:2f:fe:35:ff:ab:a9:1b:f8:25:1a:03:ff:c5:ec:
c5:15:e1:bb:36:21:0c:dc:9d:67:b9:d2:5c:46:3c:
40:99:e2:1f:1b:6b:93:8c:58:ef:2e:72:f9:f0:ad:
c8:98:ce:9f:37:c4:4e:75:f4:f0:dd:bc:f7:f4:ab:
9f:8c:64:fd:82:3e:ae:da:4d:58:d1:63:ab:f3:23:
5e:2f:9e:ff:95:e8:93:72:36:9a:f4:21:c6:f9:96:
22:75:be:b7:ac:e7:ad:2e:af:32:36:1b:5a:3b:8e:
6d:7b:52:10:b1:f4:e5:d9:7c:17:18:d5:18:a9:92:
5f:da:44:44:04:07:4f:b2:18:7c:b5:bc:15:82:13:
a0:81:34:7b:e7:bd:0a:c6:ae:1a:8a:33:82:13:ff:
cc:3e:ab:55:62:d0:d1:fe:1f:fd:64:fb:55:9f:e6:
bf:62:ff:47:bb:ef:64:ef:23:2c:bb:3d:50:b8:c1:
80:1a:d9:4c:0b:69:97:86:7b:43:30:6c:9a:e2:e7:
35:61:54:4e:2d:8a:c7:ac:fb:3e:c7:02:d6:22:50:
34:36:0c:b6:42:ca:1d:c1:23:c1:d5:a9:f6:35:11:
d2:b9:85:cf:d6:80:e3:76:a0:69:e5:d9:d2:63:c2:
84:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:05:B0:92:EF:D9:32:B4:04:12:44:03:88:36:1D:C0:31:82:F1:73
X509v3 Authority Key Identifier:
keyid:3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/BgWwku_ZMrQEEkQDiDYdwDGC8XM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.128.0-77.90.130.255
77.90.132.0-77.90.134.255
77.90.136.0/23
77.90.140.0/24
77.90.142.0-77.90.144.255
77.90.146.0-77.90.148.255
77.90.153.0/24
77.90.188.0/24
185.230.13.0-185.230.14.255
213.209.138.0/24
213.209.145.0-213.209.146.255
213.209.150.0/23
IPv6:
2a04:29c2::/32
2a04:29c7::/32
Signature Algorithm: sha256WithRSAEncryption
8f:43:dd:0d:97:6a:40:61:50:80:43:02:20:4c:82:f3:45:a7:
75:3f:da:ff:d2:04:67:ff:dd:6c:df:aa:2f:88:bf:62:4d:dd:
f8:4b:9c:ac:d3:fa:d1:fa:9b:47:2d:a1:49:bd:94:31:35:3c:
b2:32:c8:a3:26:a7:ec:2e:2f:73:a8:d0:42:85:cb:98:66:1a:
d2:9d:79:fc:90:97:f5:85:60:5f:71:05:fc:16:d5:a7:62:42:
f6:b4:91:bc:3d:81:36:bd:a0:30:63:22:50:03:da:4d:63:6d:
a3:10:33:15:a9:aa:c0:32:b1:83:03:50:59:d9:17:82:f8:7f:
8d:74:e0:d9:62:1c:f8:f9:1f:c2:b1:52:59:c5:42:54:9d:f3:
a3:51:4d:63:7a:7f:3f:40:e4:9a:54:2a:fe:5f:59:f3:01:6d:
bd:29:a4:ef:54:64:50:89:67:2b:6d:cf:e5:56:6e:7f:ea:49:
9b:4e:f2:22:77:cc:61:ab:5b:18:fd:a3:6e:c2:39:01:f1:ad:
aa:2e:6b:02:7b:39:71:80:70:e4:18:9f:e4:54:c1:d9:6e:30:
91:93:d0:20:00:8a:47:1b:b5:30:84:b0:0e:9e:22:2c:24:43:
83:7b:95:47:74:a1:06:ab:0a:18:29:8c:69:f7:f2:7b:86:a3:
53:8e:44:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 29 14:35:46 2023 by rpki-client on console-ams.rpki-client.org