Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/Jv5uhzoe8Bemw7OParq6hBXeAns.roa
File: Jv5uhzoe8Bemw7OParq6hBXeAns.roa (raw, json)
Hash identifier: MPdEFuuYfwRXl7lvqFPcrFuOHc4xEXTdo3GKubHJktI=
Subject key identifier: 26:FE:6E:87:3A:1E:F0:17:A6:C3:B3:8F:6A:BA:BA:84:15:DE:02:7B
Certificate issuer: /CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Certificate serial: 01889A82A0DF0F8CC0C7A3E40F66FDE850F7
Authority key identifier: 3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/Jv5uhzoe8Bemw7OParq6hBXeAns.roa
Signing time: Thu 08 Jun 2023 10:17:12 +0000
ROA not before: Thu 08 Jun 2023 10:17:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211936
IP address blocks: 213.209.136.0/24 maxlen: 24
213.209.149.0/24 maxlen: 24
213.209.156.0/24 maxlen: 24
77.90.156.0/24 maxlen: 24
77.90.184.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:9a:82:a0:df:0f:8c:c0:c7:a3:e4:0f:66:fd:e8:50:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Validity
Not Before: Jun 8 10:17:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=26fe6e873a1ef017a6c3b38f6ababa8415de027b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:24:06:94:2d:c6:4e:6c:ec:7a:de:d0:a6:45:
65:57:8b:52:75:a1:49:00:ea:cf:e9:17:68:f0:33:
50:e0:88:63:f2:f4:bf:aa:f7:f5:ca:42:3e:a4:20:
42:5b:37:f8:b0:15:d0:ab:02:30:9d:b7:08:c1:8b:
5c:da:e8:ba:a8:0a:2e:60:54:71:aa:a1:a3:67:bf:
5f:e2:89:c9:7f:6c:8a:8e:cb:75:67:8c:57:b6:50:
06:f1:7d:76:99:f8:c7:18:9c:48:c3:96:6c:c6:67:
c0:61:15:e1:c6:c7:60:da:07:3d:cd:be:a2:5b:74:
34:db:79:25:40:92:58:18:d4:34:b6:25:60:56:16:
4d:02:73:03:9b:af:37:24:05:c6:a9:a0:61:f4:07:
7f:ed:0b:30:97:3e:a0:ee:32:8a:bc:c1:3b:23:a1:
af:55:e6:c6:c8:cf:77:cb:05:85:b1:a5:6b:39:b0:
43:e3:b0:af:06:95:3a:31:1c:2e:a1:96:04:7f:7b:
30:cf:30:c5:66:e8:59:ae:c6:8d:31:58:c2:a1:51:
e4:aa:47:bd:73:bd:77:1e:ea:08:49:25:ce:cb:5a:
1e:79:7f:61:ee:e6:b3:37:2c:f5:91:90:12:34:8e:
08:67:ad:54:29:57:21:05:13:df:9b:2e:e5:dc:9e:
0f:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:FE:6E:87:3A:1E:F0:17:A6:C3:B3:8F:6A:BA:BA:84:15:DE:02:7B
X509v3 Authority Key Identifier:
keyid:3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/Jv5uhzoe8Bemw7OParq6hBXeAns.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.156.0/24
77.90.184.0/24
213.209.136.0/24
213.209.149.0/24
213.209.156.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:57:c2:d8:02:32:eb:5b:6d:bf:ba:96:de:62:9e:6a:b8:46:
a9:ca:ab:38:6a:b9:85:14:a9:2e:9f:1d:c9:65:fb:2b:33:81:
6c:c5:4d:c1:88:af:84:b8:59:0f:0b:0a:11:ca:13:65:15:c0:
33:e7:71:12:ac:21:17:10:67:3b:d5:b3:9e:73:d5:d4:43:6b:
4c:6c:94:14:bf:b6:f7:1e:42:2e:f4:4a:a3:1a:8f:70:c5:5a:
a6:b4:83:f3:76:d0:69:87:0e:df:d5:e8:13:06:fe:91:34:44:
6a:01:88:46:73:1f:ab:41:62:f1:16:c5:05:2c:f2:13:10:8c:
af:39:32:7b:02:aa:c9:d5:38:5e:a6:8b:8f:33:9c:b4:08:09:
a0:87:b2:74:cc:c2:31:56:ca:63:11:56:f8:10:a4:ce:4f:2c:
72:67:51:12:68:36:59:08:47:b3:3c:ef:ff:ad:29:a9:d2:9c:
88:5c:a5:a9:eb:cd:c1:e6:cb:d9:3f:29:41:92:d1:b6:20:46:
d6:d3:fc:89:98:57:8e:d4:23:71:ee:da:36:a8:a9:f9:96:e9:
4e:23:7e:ea:29:fa:ee:96:2f:93:a7:2f:69:ad:8a:6f:47:e7:
0b:07:65:28:b0:76:43:40:f5:4f:e9:b2:af:f9:53:8e:ea:67:
a8:88:af:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 09:19:10 2024 by rpki-client on console-fra.rpki-client.org