Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/GL0ry2t441_accxZnACqq8GjXYk.roa
File: GL0ry2t441_accxZnACqq8GjXYk.roa (raw, json)
Hash identifier: itFpzojncFQ+QR3Ncoov/03/DRuymujZJQ1BYlEfvqk=
Subject key identifier: 18:BD:2B:CB:6B:78:E3:5F:DA:71:CC:59:9C:00:AA:AB:C1:A3:5D:89
Certificate issuer: /CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Certificate serial: 018D6A1A2B15CF81ED9DB9129AB20875040F
Authority key identifier: 3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/GL0ry2t441_accxZnACqq8GjXYk.roa
Signing time: Fri 02 Feb 2024 13:55:16 +0000
ROA not before: Fri 02 Feb 2024 13:55:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42821
IP address blocks: 77.90.128.0/24 maxlen: 24
77.90.129.0/24 maxlen: 24
77.90.130.0/24 maxlen: 24
77.90.132.0/24 maxlen: 24
77.90.133.0/24 maxlen: 24
77.90.134.0/24 maxlen: 24
77.90.136.0/24 maxlen: 24
77.90.137.0/24 maxlen: 24
77.90.140.0/24 maxlen: 24
77.90.142.0/24 maxlen: 24
77.90.143.0/24 maxlen: 24
77.90.144.0/24 maxlen: 24
77.90.146.0/24 maxlen: 24
77.90.147.0/24 maxlen: 24
77.90.148.0/24 maxlen: 24
213.209.138.0/24 maxlen: 24
213.209.143.0/24 maxlen: 24
213.209.145.0/24 maxlen: 24
2a04:29c2::/32 maxlen: 32
2a04:29c7::/32 maxlen: 32
2a04:29c7:1280:24::/64 maxlen: 64
2a04:29c7:1280:27::/64 maxlen: 64
2a04:29c7:1290:24::/64 maxlen: 64
2a04:29c7:1300:24::/64 maxlen: 64
2a04:29c7:1371:6027::/64 maxlen: 64
2a04:29c7:1420::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 10 Feb 2024 14:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:6a:1a:2b:15:cf:81:ed:9d:b9:12:9a:b2:08:75:04:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Validity
Not Before: Feb 2 13:55:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=18bd2bcb6b78e35fda71cc599c00aaabc1a35d89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:6e:0a:40:0b:a8:20:60:ae:39:da:a1:e0:36:
20:f7:ba:31:65:6a:08:f6:45:8d:71:72:2d:9e:09:
87:43:22:b1:ef:64:f5:4b:15:33:85:b3:a6:16:5f:
53:73:7a:2c:3f:23:fc:f0:4c:0b:65:49:70:98:83:
7b:3b:a0:50:b9:bd:c5:9e:70:3d:7c:c3:54:2e:e4:
ce:34:ca:0f:fa:be:f5:ad:41:d1:f6:2e:fa:5c:9e:
89:e6:1c:ab:cf:7f:d7:59:c7:32:8f:dd:bf:cc:ed:
bd:73:17:e5:a9:87:c3:be:96:fc:ed:9b:af:30:06:
75:dc:5e:0b:1c:c3:ab:d9:3e:1d:10:8a:84:84:49:
0f:c9:7b:15:c6:46:c2:de:38:bc:83:45:9e:73:f2:
c0:24:50:1b:3a:de:da:7f:71:85:38:86:bd:87:2b:
e5:95:2f:44:5e:49:4d:1c:66:41:7c:db:a7:dc:a3:
cc:a1:fc:91:dd:72:08:17:29:b9:e1:2f:81:d0:6b:
7a:dc:a4:8f:ed:a0:ee:86:4a:fe:73:93:ed:fb:5f:
c4:bf:21:1c:06:14:44:0e:8e:70:50:fd:b6:4c:c3:
23:2f:53:70:c9:ee:67:42:90:04:c2:f4:c5:86:64:
5e:a9:8d:ae:ad:af:45:d7:ad:dc:08:f7:d6:6f:66:
be:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:BD:2B:CB:6B:78:E3:5F:DA:71:CC:59:9C:00:AA:AB:C1:A3:5D:89
X509v3 Authority Key Identifier:
keyid:3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/GL0ry2t441_accxZnACqq8GjXYk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.128.0-77.90.130.255
77.90.132.0-77.90.134.255
77.90.136.0/23
77.90.140.0/24
77.90.142.0-77.90.144.255
77.90.146.0-77.90.148.255
213.209.138.0/24
213.209.143.0/24
213.209.145.0/24
IPv6:
2a04:29c2::/32
2a04:29c7::/32
Signature Algorithm: sha256WithRSAEncryption
78:43:69:08:bb:4a:84:c5:ea:af:ef:e2:0f:81:fb:a9:d4:25:
1f:1a:a8:fc:02:9d:a1:49:a1:a0:87:43:be:cb:bb:c0:ac:eb:
d0:62:32:e9:0e:e8:74:4d:89:1d:da:82:4c:32:9f:b6:ba:99:
69:76:62:4c:0b:66:1b:3d:f3:51:d1:19:70:c4:f6:44:7d:c5:
bb:3c:31:26:7f:cb:5e:35:9e:53:79:60:a6:ab:ac:91:e7:35:
80:48:5a:fd:a4:72:4f:53:4b:da:c3:43:1e:15:ab:e4:0b:b4:
78:49:d3:8f:f4:67:a2:df:01:7e:67:a1:1e:12:2d:fe:b9:b4:
6f:d4:30:e8:fa:c8:e8:43:9b:e9:2d:85:72:39:99:a9:4d:03:
f5:5b:80:8b:31:e3:70:bd:e5:ca:58:e4:26:0b:0e:62:22:91:
ee:1d:02:56:50:43:5b:35:8b:7e:43:91:a2:4b:98:85:85:31:
4f:a3:e0:ea:06:c6:47:66:22:3a:26:57:ea:86:b1:fb:c9:a1:
38:f4:8a:7b:cf:9c:e8:7f:3d:04:ff:5c:f0:c2:6f:67:47:d8:
dc:c7:6e:2c:9c:c6:30:50:6c:a2:ea:1a:59:90:7e:a8:02:44:
11:0e:39:45:93:99:d0:7e:06:1b:f4:12:5a:be:08:1e:e3:12:
30:d5:9b:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Feb 10 16:55:40 2024 by rpki-client on console-ams.rpki-client.org