Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/E01la518_6rhU5tI0vHWhmXBlFY.roa
File: E01la518_6rhU5tI0vHWhmXBlFY.roa (raw, json)
Hash identifier: p/7BQWZ3TK1YmNmPSLcyjEPcn9sJzK0acPvMkf/kOzs=
Subject key identifier: 13:4D:65:6B:9D:7C:FF:AA:E1:53:9B:48:D2:F1:D6:86:65:C1:94:56
Certificate issuer: /CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Certificate serial: 0190554142F1587DA590BB2EF2914B664274
Authority key identifier: 3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/E01la518_6rhU5tI0vHWhmXBlFY.roa
Signing time: Wed 26 Jun 2024 15:54:18 +0000
ROA not before: Wed 26 Jun 2024 15:54:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42821
IP address blocks: 77.90.128.0/24 maxlen: 24
77.90.129.0/24 maxlen: 24
77.90.130.0/24 maxlen: 24
77.90.132.0/24 maxlen: 24
77.90.133.0/24 maxlen: 24
77.90.134.0/24 maxlen: 24
77.90.136.0/24 maxlen: 24
77.90.137.0/24 maxlen: 24
77.90.140.0/24 maxlen: 24
77.90.142.0/24 maxlen: 24
77.90.143.0/24 maxlen: 24
77.90.144.0/24 maxlen: 24
77.90.146.0/24 maxlen: 24
77.90.147.0/24 maxlen: 24
77.90.148.0/24 maxlen: 24
77.90.153.0/24 maxlen: 24
185.230.14.0/24 maxlen: 24
213.209.138.0/24 maxlen: 24
213.209.143.0/24 maxlen: 24
213.209.150.0/24 maxlen: 24
2a04:29c2::/32 maxlen: 32
2a04:29c7::/32 maxlen: 32
2a04:29c7:1280:24::/64 maxlen: 64
2a04:29c7:1280:27::/64 maxlen: 64
2a04:29c7:1290:24::/64 maxlen: 64
2a04:29c7:1300:24::/64 maxlen: 64
2a04:29c7:1371:6027::/64 maxlen: 64
2a04:29c7:1420::/48 maxlen: 48
Validation: Failed, certificate revoked on Sun 07 Jul 2024 12:47:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:55:41:42:f1:58:7d:a5:90:bb:2e:f2:91:4b:66:42:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Validity
Not Before: Jun 26 15:54:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=134d656b9d7cffaae1539b48d2f1d68665c19456
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:f3:21:45:eb:c3:70:55:9a:3a:68:41:10:2e:
f6:94:89:ee:0d:b4:b7:1e:18:46:c9:2c:86:04:f3:
1f:fd:c1:25:4a:a1:c5:bb:37:22:c0:23:65:e7:79:
43:0e:9e:cd:90:d1:77:75:a7:0f:1e:ee:c0:2b:16:
46:02:01:f1:89:ef:3c:84:4d:9b:6a:94:87:8e:07:
9a:0c:cd:b4:9e:d3:95:79:ad:d1:53:8c:7a:9d:eb:
6f:56:51:55:e9:92:1f:82:a9:6b:f6:5d:03:63:96:
24:9c:59:fe:ac:ff:49:31:0f:96:2c:dc:27:0e:be:
1a:05:33:a2:db:a7:0c:72:51:41:e9:d2:05:9c:5a:
da:46:7b:c5:89:54:52:58:fd:55:e7:49:fb:7d:93:
54:32:1c:3e:84:35:d1:da:37:75:3d:e7:7b:da:9a:
10:cb:6a:0d:c7:81:07:9e:c6:1b:9d:94:1a:84:b7:
54:3a:a7:be:53:6e:6e:bd:22:d7:cc:aa:af:12:05:
72:4c:35:d7:2a:eb:0f:b8:d5:97:96:00:68:f3:67:
9f:83:74:8b:a4:fb:cd:56:9c:e5:73:5d:cc:b5:5e:
17:c8:af:78:79:9b:a9:a7:a9:37:03:f9:1d:a8:f4:
be:e9:8e:05:b6:30:08:14:31:96:a4:35:73:98:b0:
94:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:4D:65:6B:9D:7C:FF:AA:E1:53:9B:48:D2:F1:D6:86:65:C1:94:56
X509v3 Authority Key Identifier:
keyid:3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/E01la518_6rhU5tI0vHWhmXBlFY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.128.0-77.90.130.255
77.90.132.0-77.90.134.255
77.90.136.0/23
77.90.140.0/24
77.90.142.0-77.90.144.255
77.90.146.0-77.90.148.255
77.90.153.0/24
185.230.14.0/24
213.209.138.0/24
213.209.143.0/24
213.209.150.0/24
IPv6:
2a04:29c2::/32
2a04:29c7::/32
Signature Algorithm: sha256WithRSAEncryption
72:90:04:d3:01:4d:4a:ea:2b:c2:7a:ea:fb:c0:84:80:ca:bb:
07:4b:cd:35:8f:2a:02:6c:5f:b8:25:db:73:aa:b8:c2:c3:0a:
70:d4:04:13:5f:63:2f:ac:3a:c1:d5:94:62:62:18:41:30:ee:
c2:16:43:60:ea:55:6b:58:08:83:e6:93:5e:bb:f6:62:a3:7a:
35:7f:f1:65:08:21:57:cc:17:0c:e8:40:ff:88:df:d7:d1:01:
e1:e7:b4:3f:02:a3:54:25:9c:86:3e:35:10:4c:59:3c:2f:6e:
02:56:ca:08:93:cb:cc:3f:dc:99:21:75:f3:0e:1b:f1:fc:9a:
7d:bb:d0:36:43:34:04:9d:18:c3:ee:e8:f4:d2:47:68:f3:c9:
df:b4:3f:5f:b7:01:e5:f0:ae:b7:c6:3c:59:72:05:a7:26:fd:
03:f3:f2:57:45:1c:12:38:2a:13:d0:61:1f:13:be:ec:74:d7:
e1:26:d8:20:7b:61:e3:76:1a:38:fb:8e:66:f7:d3:01:99:1f:
ac:76:bc:42:0a:d2:49:f6:c8:42:f4:00:08:00:5e:10:c1:45:
70:5d:d9:76:24:53:59:6f:e8:f0:87:41:9a:0d:00:ea:8e:9a:
a5:16:12:01:dd:aa:d9:67:f7:5e:b9:44:89:8c:39:9b:bf:ee:
59:e5:ea:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 7 15:14:27 2024 by rpki-client on console-ams.rpki-client.org