Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/ImQSopLn2Qxgg12Gsi9GxmKMY70.roa
File: ImQSopLn2Qxgg12Gsi9GxmKMY70.roa (raw, json)
Hash identifier: caY2gMt66Twnjrvt8f/WIqwA9vYSSxqZ9iOBKUmTcik=
Subject key identifier: 22:64:12:A2:92:E7:D9:0C:60:83:5D:86:B2:2F:46:C6:62:8C:63:BD
Certificate issuer: /CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Certificate serial: 0188E8E5EB3AC0201B0A4EF6F3FC0FAF5A80
Authority key identifier: 3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/ImQSopLn2Qxgg12Gsi9GxmKMY70.roa
Signing time: Fri 23 Jun 2023 15:36:02 +0000
ROA not before: Fri 23 Jun 2023 15:36:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42821
IP address blocks: 77.90.129.0/24 maxlen: 24
77.90.128.0/24 maxlen: 24
77.90.130.0/24 maxlen: 24
77.90.132.0/24 maxlen: 24
77.90.136.0/24 maxlen: 24
77.90.135.0/24 maxlen: 24
77.90.137.0/24 maxlen: 24
77.90.133.0/24 maxlen: 24
77.90.134.0/24 maxlen: 24
77.90.143.0/24 maxlen: 24
77.90.142.0/24 maxlen: 24
77.90.144.0/24 maxlen: 24
77.90.140.0/24 maxlen: 24
77.90.147.0/24 maxlen: 24
77.90.146.0/24 maxlen: 24
77.90.148.0/24 maxlen: 24
77.90.153.0/24 maxlen: 24
77.90.185.0/24 maxlen: 24
213.209.138.0/24 maxlen: 24
213.209.151.0/24 maxlen: 24
213.209.159.0/24 maxlen: 24
2a04:29c2::/32 maxlen: 32
2a04:29c7:1290:24::/64 maxlen: 64
2a04:29c7:1371:6027::/64 maxlen: 64
2a04:29c7:1280:27::/64 maxlen: 64
2a04:29c7:1420::/48 maxlen: 48
2a04:29c7::/32 maxlen: 32
2a04:29c7:1300:24::/64 maxlen: 64
2a04:29c7:1280:24::/64 maxlen: 64
Validation: Failed, certificate revoked on Tue 27 Jun 2023 15:54:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:e8:e5:eb:3a:c0:20:1b:0a:4e:f6:f3:fc:0f:af:5a:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Validity
Not Before: Jun 23 15:36:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=226412a292e7d90c60835d86b22f46c6628c63bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:c8:1c:39:c5:a7:9d:c0:08:13:b6:a0:06:71:
47:45:6a:5b:8e:4d:25:79:b0:69:0c:61:7f:2d:03:
a2:cc:35:83:da:59:5d:34:1b:40:5b:d4:47:64:2e:
d9:09:fc:7b:ef:d9:e1:6e:a7:bf:15:71:b3:ef:7c:
31:c9:2e:d3:18:7c:69:68:84:6c:e7:3b:87:eb:e9:
46:7a:f7:15:ac:c2:b8:80:f9:c4:78:c1:b4:fd:06:
27:d9:0d:e9:35:2e:0c:e8:44:74:e1:59:c8:8f:58:
5a:95:dc:d4:0f:d9:e3:be:8a:bc:d9:51:90:6e:66:
aa:05:c8:00:45:6e:ce:06:ff:b1:6a:6e:1f:21:39:
52:fc:57:54:81:6c:6d:29:70:d1:16:d8:96:ab:e2:
10:4f:8f:c6:ec:ef:87:15:09:f9:38:34:5f:60:2e:
db:64:38:8f:87:c1:5a:f4:a9:7a:35:59:33:c0:da:
1c:ec:02:22:66:eb:05:88:55:85:76:9c:41:5e:b2:
3a:b1:a3:ca:a9:5d:8a:5f:82:0d:70:d2:e5:f2:4a:
a9:e1:09:eb:cf:07:39:06:e3:5d:3f:ca:87:2d:24:
78:3c:a4:64:e4:bb:f7:c5:f8:dd:c3:14:ef:15:fb:
c2:17:01:9c:90:70:f6:e1:00:8f:ac:9f:b2:43:41:
22:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:64:12:A2:92:E7:D9:0C:60:83:5D:86:B2:2F:46:C6:62:8C:63:BD
X509v3 Authority Key Identifier:
keyid:3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/ImQSopLn2Qxgg12Gsi9GxmKMY70.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.128.0-77.90.130.255
77.90.132.0-77.90.137.255
77.90.140.0/24
77.90.142.0-77.90.144.255
77.90.146.0-77.90.148.255
77.90.153.0/24
77.90.185.0/24
213.209.138.0/24
213.209.151.0/24
213.209.159.0/24
IPv6:
2a04:29c2::/32
2a04:29c7::/32
Signature Algorithm: sha256WithRSAEncryption
59:8f:b1:cf:08:84:6a:2f:25:bf:17:36:6b:74:73:07:63:95:
96:d5:ef:55:ac:54:87:2f:8f:12:c9:36:1a:11:10:64:46:1f:
f2:94:96:2c:16:d4:7f:0d:ed:35:39:61:b5:8e:c1:5b:35:54:
66:ec:2b:b3:dc:13:d1:72:0d:b0:bd:14:6f:0a:b9:84:e7:b8:
63:9c:68:c3:92:95:df:a4:cd:a6:ea:a7:ae:66:88:60:44:90:
1e:08:e7:53:87:5c:a3:58:75:d3:9f:dc:67:f9:11:4a:2d:75:
70:f9:cd:78:0e:0b:f2:d1:1f:98:42:a0:6b:f5:fb:3b:8d:72:
b6:55:28:59:60:de:c1:56:07:b2:c2:14:2a:39:29:a6:41:5b:
95:ab:7c:1f:63:34:0b:7a:e1:2e:bb:1f:1b:08:4d:47:63:92:
a5:3e:11:32:fd:54:a6:37:90:92:0e:9e:02:6a:54:da:c7:9d:
ea:71:6e:e9:1d:53:67:e9:ad:74:15:75:e7:08:3c:cd:0c:48:
6d:b4:51:29:0a:d3:f7:37:8f:01:a0:b4:4b:6f:cd:fc:ef:05:
21:b6:12:45:98:50:f4:b7:ce:37:b8:26:0e:34:74:5a:62:3a:
1a:6b:8b:90:b7:c8:07:81:5e:8b:c2:62:94:2b:06:ab:76:69:
39:96:d5:b5
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:25 2024 by rpki-client on console-ams.rpki-client.org