Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/Oq547RGxi4dzf06Bn_oTQz0O7FU.roa
File: Oq547RGxi4dzf06Bn_oTQz0O7FU.roa (raw, json)
Hash identifier: CL9uomnx5CxnidhGwvfLGawcII74PaVKxkXKyDO2efU=
Subject key identifier: 3A:AE:78:ED:11:B1:8B:87:73:7F:4E:81:9F:FA:13:43:3D:0E:EC:55
Certificate issuer: /CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Certificate serial: 01856F8255D0E7D04F1EE39CA9968274FF97
Authority key identifier: 3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/Oq547RGxi4dzf06Bn_oTQz0O7FU.roa
Signing time: Sun 01 Jan 2023 22:44:50 +0000
ROA not before: Sun 01 Jan 2023 22:44:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8100
IP address blocks: 77.90.139.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:32:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:82:55:d0:e7:d0:4f:1e:e3:9c:a9:96:82:74:ff:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Validity
Not Before: Jan 1 22:44:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3aae78ed11b18b87737f4e819ffa13433d0eec55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:99:32:93:37:f6:5f:e0:48:92:25:ae:8e:1c:
73:a4:62:58:78:6b:bd:66:90:85:88:75:ee:e7:80:
f0:31:61:96:f7:70:fb:1e:bf:29:26:0d:bc:a2:b7:
4f:96:52:e1:fd:4e:a4:ce:ad:4d:7c:8a:35:2c:0c:
ac:8a:01:8d:38:bd:33:16:b5:be:4b:7d:8c:1b:24:
5a:21:11:ec:6d:87:02:3a:d6:e2:6a:97:1d:f7:8d:
70:22:3d:93:40:3c:23:4b:b5:1a:56:6c:20:8a:88:
06:96:4b:61:d8:7b:1e:2c:87:4f:76:e6:71:20:d1:
c3:3f:2f:83:5f:ed:cf:79:6d:b3:ef:22:77:5f:2d:
6b:d7:5a:5f:ab:03:e0:37:d7:7b:78:34:5e:c2:c0:
cd:5b:ba:41:1d:a5:39:22:39:bd:d6:2e:12:cd:00:
d8:90:f2:6b:ba:3c:3a:29:d1:3e:4b:07:4e:97:03:
60:16:41:42:63:1c:f2:fd:5f:3f:6b:6d:25:60:08:
d2:02:48:3b:79:14:b0:9c:67:75:ba:03:e6:87:f9:
79:55:63:6c:96:f6:cc:0f:8d:91:ae:e8:72:84:7e:
de:d7:6b:ab:d0:0d:c7:ae:d4:ed:b9:55:b6:21:ff:
6f:40:5d:e8:98:64:da:e2:34:0e:bf:fc:64:1b:6d:
dc:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:AE:78:ED:11:B1:8B:87:73:7F:4E:81:9F:FA:13:43:3D:0E:EC:55
X509v3 Authority Key Identifier:
keyid:3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/Oq547RGxi4dzf06Bn_oTQz0O7FU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.139.0/24
Signature Algorithm: sha256WithRSAEncryption
b2:13:d1:ac:e2:e8:47:ce:87:82:88:2f:9e:26:b4:a3:b3:e4:
15:8b:3f:ab:0e:ad:e7:05:f4:e3:4a:9c:7f:68:d7:e7:b3:46:
3a:60:35:30:e9:a5:56:be:20:ea:86:a3:bc:4f:b7:2a:48:34:
d9:89:72:b6:e1:37:3d:bf:e0:d9:da:0c:21:ff:84:21:d0:65:
39:29:5a:28:c9:01:31:5f:76:2b:c4:93:cd:49:92:3c:8d:8d:
eb:f8:2d:fd:b1:c8:8f:7a:7e:92:d5:99:a3:24:d7:7f:bf:a2:
ca:ff:55:85:83:25:5d:af:cb:d5:af:80:47:c8:78:d1:27:fe:
92:55:99:c0:66:98:e6:26:9c:35:c8:60:7d:36:81:0b:d0:c6:
0f:59:17:83:9a:9f:f3:9a:88:0c:15:6b:8c:8c:8e:8f:18:f9:
b7:ed:19:91:0a:9d:75:a9:d0:98:cf:9a:03:74:b5:a8:86:dd:
6e:ee:97:39:68:18:3e:de:54:5b:7d:a5:1b:24:40:36:69:61:
ba:9c:82:ef:f0:05:a2:bd:e6:3e:b4:33:b4:09:f2:07:28:30:
7d:57:15:43:31:32:dd:d9:21:9a:7a:c6:52:6d:bd:af:47:bf:
4b:14:6f:88:6a:00:5c:80:96:5e:11:31:3c:23:4e:23:e5:bf:
fa:4e:9f:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:03 2024 by rpki-client on console-fra.rpki-client.org