Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/QAl4nOphMSGctEtcWGfFRMnjR7w.roa
File: QAl4nOphMSGctEtcWGfFRMnjR7w.roa (raw, json)
Hash identifier: Qj5hjDFoh9724x7fIOoGAGV0/J5Rl6SlulyYrCHFhko=
Subject key identifier: 40:09:78:9C:EA:61:31:21:9C:B4:4B:5C:58:67:C5:44:C9:E3:47:BC
Certificate issuer: /CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Certificate serial: 01856F825F958552A2324B78EFC74C1D6C50
Authority key identifier: 3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/QAl4nOphMSGctEtcWGfFRMnjR7w.roa
Signing time: Sun 01 Jan 2023 22:44:53 +0000
ROA not before: Sun 01 Jan 2023 22:44:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 399587
IP address blocks: 77.90.183.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:82:5f:95:85:52:a2:32:4b:78:ef:c7:4c:1d:6c:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Validity
Not Before: Jan 1 22:44:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4009789cea6131219cb44b5c5867c544c9e347bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:58:fb:a8:f8:f7:9a:d4:8b:67:c2:1c:f9:f1:
db:26:22:72:46:d4:60:0e:45:17:51:5c:b5:33:33:
b0:30:9a:d1:f2:e2:9d:49:12:d8:02:c8:65:fd:db:
f1:6a:f1:82:08:0d:5c:ac:a6:3a:59:78:03:97:74:
4d:a2:49:98:ff:06:3f:7e:13:23:64:46:18:2d:e8:
b8:57:20:ee:53:52:fa:72:ef:63:92:7e:93:7b:68:
cf:32:4b:df:db:9e:5b:c2:91:d6:5e:df:ef:b5:16:
8c:e1:98:9e:02:92:30:35:10:9e:f4:62:85:27:79:
6d:bf:17:bb:58:e8:c8:67:8f:de:f8:0a:f2:77:41:
3d:bc:f8:41:4b:6c:27:e0:49:71:52:37:18:b1:46:
7d:08:88:bb:61:c7:7c:19:c6:27:81:fc:12:f4:99:
d6:4b:cc:24:97:f9:19:6c:6a:6a:b2:b9:b8:a9:35:
b3:46:4a:49:f6:59:62:c7:82:60:55:cd:0b:3e:35:
52:ca:50:da:70:e4:ed:72:73:d2:b4:e8:8d:59:30:
6e:9e:6c:74:ea:4f:47:e5:a4:97:b4:a8:ff:ef:53:
4c:be:98:82:c4:67:78:6c:6f:7c:89:20:f1:cd:00:
4d:63:35:d3:95:d8:07:cd:7c:93:d8:75:5c:f5:b6:
0f:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:09:78:9C:EA:61:31:21:9C:B4:4B:5C:58:67:C5:44:C9:E3:47:BC
X509v3 Authority Key Identifier:
keyid:3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/QAl4nOphMSGctEtcWGfFRMnjR7w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.183.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:90:96:8e:ac:5f:fb:de:07:1f:1d:a6:d8:ef:db:46:06:35:
f6:d6:6d:b1:17:25:81:88:1f:8a:03:00:3f:25:e5:22:df:61:
b5:c3:96:20:cd:e0:6d:a3:46:e4:e3:af:78:dc:23:9c:7e:8a:
66:49:19:64:65:e7:46:f9:2f:de:e0:b0:6a:ae:b5:4d:93:24:
21:b5:6f:05:c5:61:7b:4b:c5:cb:8a:76:73:50:bc:95:a4:be:
ea:7d:08:f5:c1:a2:37:d8:3b:91:80:15:2c:2d:04:55:72:22:
b2:1f:da:51:d5:be:e5:24:c9:14:6e:ee:c4:6d:2c:94:9a:61:
89:1e:89:1e:02:eb:b9:3e:d6:f7:be:92:fc:a1:67:7f:eb:70:
02:32:d1:55:0b:c0:4e:a2:45:82:94:5d:16:3a:aa:5e:33:c1:
54:39:76:5b:45:6a:56:a8:4d:96:af:b5:49:7d:32:86:77:5e:
5b:c2:8e:0b:28:ab:f2:5d:c8:00:86:01:18:f4:96:8c:9c:44:
ea:7e:a5:61:9e:0b:e3:3e:9d:02:b5:55:00:be:2d:fa:b7:c9:
ea:fa:4c:96:37:39:92:42:c6:cd:64:80:a3:b7:b7:2c:41:8a:
c0:5e:67:57:08:b7:9f:b6:11:5c:e3:0d:2f:4a:6a:75:9d:2d:
67:f1:88:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:08 2023 by rpki-client on console-ams.rpki-client.org