Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/PkrRZcEHdU6Rxni8j-zT2N-I51M.roa
File: PkrRZcEHdU6Rxni8j-zT2N-I51M.roa (raw, json)
Hash identifier: ABuA+6uKFn0UJjONqFt9j+M6Gdv9vRhgETmO5Fc34lI=
Subject key identifier: 3E:4A:D1:65:C1:07:75:4E:91:C6:78:BC:8F:EC:D3:D8:DF:88:E7:53
Certificate issuer: /CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Certificate serial: 0186D5CBE335D37846F9CC764EEF81105DE8
Authority key identifier: 3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/PkrRZcEHdU6Rxni8j-zT2N-I51M.roa
Signing time: Sun 12 Mar 2023 12:29:14 +0000
ROA not before: Sun 12 Mar 2023 12:29:14 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62240
IP address blocks: 213.209.131.0/24 maxlen: 24
213.209.137.0/24 maxlen: 24
213.209.139.0/24 maxlen: 24
213.209.141.0/24 maxlen: 24
213.209.152.0/24 maxlen: 24
213.209.155.0/24 maxlen: 24
213.209.154.0/24 maxlen: 24
213.209.153.0/24 maxlen: 24
77.90.158.0/24 maxlen: 24
77.90.163.0/24 maxlen: 24
77.90.162.0/24 maxlen: 24
77.90.161.0/24 maxlen: 24
77.90.160.0/24 maxlen: 24
77.90.165.0/24 maxlen: 24
77.90.170.0/24 maxlen: 24
77.90.169.0/24 maxlen: 24
77.90.172.0/24 maxlen: 24
77.90.171.0/24 maxlen: 24
77.90.175.0/24 maxlen: 24
77.90.182.0/24 maxlen: 24
77.90.186.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 16 Jun 2023 19:54:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:d5:cb:e3:35:d3:78:46:f9:cc:76:4e:ef:81:10:5d:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Validity
Not Before: Mar 12 12:29:14 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3e4ad165c107754e91c678bc8fecd3d8df88e753
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:10:70:9f:8c:b2:87:23:2e:5b:58:bc:24:fd:
9b:ce:44:6d:08:eb:d4:3d:25:ae:14:e0:4a:4b:f4:
52:60:00:9a:04:e3:b3:84:a3:29:52:d1:d0:95:43:
2e:7b:6d:c6:19:06:db:a9:e5:2a:69:dc:5c:1b:2a:
c7:86:68:e7:f3:a1:03:2f:15:48:90:b7:14:79:ba:
a7:a6:db:ae:f0:bb:eb:3f:60:fb:b8:04:34:bb:4d:
89:eb:ce:e2:bb:11:09:9e:47:57:13:f6:50:1e:c4:
74:57:00:68:18:84:6b:5d:d1:16:c3:90:1b:2c:0d:
20:3f:ec:44:74:6d:33:c7:c3:a5:b3:3b:46:6a:fa:
be:d6:6d:60:ff:2f:4d:4b:1a:db:85:45:70:2d:e0:
e6:18:a2:6b:3f:1a:54:74:be:33:6e:bf:90:60:e8:
1c:7f:7e:46:6b:1d:ca:f8:9b:17:ed:54:4f:23:1c:
71:cf:d4:ba:cd:cb:0f:57:1a:f9:41:f6:4e:f2:39:
b7:d9:ff:e9:de:65:56:15:cc:61:49:46:0f:10:9b:
87:5f:dc:9b:db:e1:20:72:42:cf:a1:17:19:1c:8b:
93:13:86:a7:1d:26:a9:d3:9a:38:51:20:a0:ea:06:
e0:b6:62:05:c1:41:06:11:a1:11:74:38:7e:71:6a:
16:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:4A:D1:65:C1:07:75:4E:91:C6:78:BC:8F:EC:D3:D8:DF:88:E7:53
X509v3 Authority Key Identifier:
keyid:3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/PkrRZcEHdU6Rxni8j-zT2N-I51M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.158.0/24
77.90.160.0/22
77.90.165.0/24
77.90.169.0-77.90.172.255
77.90.175.0/24
77.90.182.0/24
77.90.186.0/24
213.209.131.0/24
213.209.137.0/24
213.209.139.0/24
213.209.141.0/24
213.209.152.0/22
Signature Algorithm: sha256WithRSAEncryption
4a:af:38:c2:20:3e:dc:b8:df:34:95:c7:4f:49:3c:f3:c6:ca:
0e:88:0a:56:7d:74:93:6f:85:cf:56:a2:78:79:58:71:70:80:
7c:fa:65:ab:00:cb:5e:9e:8f:75:80:71:56:3c:10:1c:c3:c0:
ab:1f:23:dd:4f:fb:97:a5:b4:93:e7:48:47:43:31:99:da:cb:
37:38:ba:f9:76:1c:69:dc:e3:e7:55:9d:20:39:de:4e:3d:58:
d5:f9:2d:be:1b:3a:ae:02:8c:9b:c4:a5:b1:16:b1:f2:a1:d2:
5f:52:51:39:1a:89:2e:31:82:36:5a:b6:45:0b:0a:10:be:6c:
0c:79:52:35:1d:41:0c:31:2b:4d:37:22:99:20:3b:b6:9f:7a:
26:78:c6:5f:a6:ce:43:a8:a5:03:30:4c:ca:a3:05:b8:bd:bf:
ae:8f:56:9e:65:56:b8:62:fb:22:bc:76:c5:d1:2d:29:e5:26:
fc:00:5d:c4:cc:12:83:73:4b:2a:c6:69:f5:61:59:ef:07:a8:
dc:0b:27:f9:36:81:90:da:c4:f4:89:07:bd:86:d9:06:f2:01:
6b:87:4f:1d:0a:78:8e:75:b0:b2:7b:ee:0e:12:db:67:5a:bf:
26:b4:eb:ce:1c:f0:c5:aa:0e:35:51:76:62:55:54:b3:85:d9:
cf:6c:30:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:03 2024 by rpki-client on console-fra.rpki-client.org