Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/Muo4QJ5ly4iYIbtQYuEVoLT_Qqg.roa
File: Muo4QJ5ly4iYIbtQYuEVoLT_Qqg.roa (raw, json)
Hash identifier: RgItxjH1riKOcR94WizpbZTXqzxLDlHavjziDbrQlwg=
Subject key identifier: 32:EA:38:40:9E:65:CB:88:98:21:BB:50:62:E1:15:A0:B4:FF:42:A8
Certificate issuer: /CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Certificate serial: 01905541435C3C3C8A83DF2684040BAD83B4
Authority key identifier: 3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/Muo4QJ5ly4iYIbtQYuEVoLT_Qqg.roa
Signing time: Wed 26 Jun 2024 15:54:18 +0000
ROA not before: Wed 26 Jun 2024 15:54:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43260
IP address blocks: 77.90.135.0/24 maxlen: 24
77.90.138.0/24 maxlen: 24
213.209.159.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 07 Jul 2024 12:47:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:55:41:43:5c:3c:3c:8a:83:df:26:84:04:0b:ad:83:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Validity
Not Before: Jun 26 15:54:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=32ea38409e65cb889821bb5062e115a0b4ff42a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:81:93:98:8b:bc:84:b8:ad:5a:e2:cb:11:e6:
71:5d:94:b6:ba:17:7b:3e:cb:3b:01:6e:e9:77:f9:
6c:04:84:4f:58:7c:57:60:6b:59:5a:21:1d:c5:3d:
c1:49:75:3c:4e:13:25:68:e2:f9:a5:a6:5d:61:ce:
68:99:fd:33:73:ba:41:cd:ac:82:4f:0a:4b:ca:f2:
1f:2b:4a:c5:4a:f0:d9:c7:91:23:4c:71:f2:03:2b:
88:b5:74:c5:b9:e1:55:a5:3f:fc:ad:9e:c4:a3:f4:
e2:00:fb:9b:bd:2e:3b:55:3a:fc:e0:6f:d0:a8:09:
0f:6c:88:d9:f8:8c:4b:29:16:d8:3a:cd:48:d6:6a:
44:95:6d:b5:f0:35:50:b3:43:6a:7a:4e:10:9a:3d:
1f:b1:e2:8e:c4:10:bd:5b:c0:9b:fa:f7:ea:e6:11:
e4:2f:24:99:21:c0:13:6a:61:f7:90:61:a5:ca:0f:
f4:ca:9d:d1:dc:ba:f6:10:6b:64:b0:46:7b:fe:5e:
ed:ef:d7:52:60:d0:86:4b:bd:71:a6:ef:6e:0e:1b:
b8:96:69:83:be:b9:32:40:6d:23:2b:72:10:82:a1:
fc:5d:78:e5:b0:39:eb:d4:69:e1:71:09:de:20:f3:
9e:56:15:16:1d:50:24:91:f5:a5:f3:d9:94:da:88:
df:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:EA:38:40:9E:65:CB:88:98:21:BB:50:62:E1:15:A0:B4:FF:42:A8
X509v3 Authority Key Identifier:
keyid:3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/Muo4QJ5ly4iYIbtQYuEVoLT_Qqg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.135.0/24
77.90.138.0/24
213.209.159.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:09:cd:d0:2d:3c:d9:98:30:6c:0e:6d:c7:78:06:a3:45:59:
7b:9e:e2:52:9f:01:9b:2e:99:02:76:2d:91:6d:c6:33:48:13:
ec:06:5e:ca:06:37:9a:5b:86:2e:03:64:f4:5d:3c:a0:94:2b:
0e:b3:4b:3e:78:54:2c:01:a1:53:1f:3b:49:b8:89:8f:b1:8e:
95:d4:c4:30:64:64:e5:20:87:70:77:e5:78:87:97:43:a2:1c:
c9:5d:9a:18:7e:ba:f1:3c:7f:58:51:e9:61:3f:0e:61:ac:61:
24:08:f5:4b:e1:94:dc:6a:5c:d1:36:68:55:1e:da:3f:bd:48:
d2:d4:35:e8:cc:4a:29:06:83:49:08:a6:0a:a2:04:01:73:68:
1f:25:28:e8:1b:b1:94:31:36:a9:a9:56:c5:8d:17:6a:32:35:
e1:8f:da:fc:30:e8:f1:f4:9b:00:b2:b6:d5:7d:b7:87:cd:3d:
32:89:7a:d7:d8:6c:09:9c:e2:63:30:62:5c:ae:f9:cc:6a:a4:
af:42:33:cb:c2:39:d5:3f:c4:48:94:fc:f0:5e:a1:f7:50:27:
46:1b:f4:a6:ec:24:15:3a:78:a1:79:22:71:3f:5c:11:ed:76:
ce:1d:81:8a:46:48:3c:1c:59:2e:2f:d2:ab:0f:1d:47:17:e9:
0d:b2:0e:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 7 15:14:27 2024 by rpki-client on console-ams.rpki-client.org