Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/WtHeDmxiz0zZxOrig03j_Gb4SKY.roa
File: WtHeDmxiz0zZxOrig03j_Gb4SKY.roa (raw, json)
Hash identifier: 2gLauI8WKRWzO4TjpoNjTneHTh19HtW1KUZPgwveerk=
Subject key identifier: 5A:D1:DE:0E:6C:62:CF:4C:D9:C4:EA:E2:83:4D:E3:FC:66:F8:48:A6
Certificate issuer: /CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Certificate serial: 0187EC22534A2CB2C50D3DC3E02A149F848E
Authority key identifier: 3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/WtHeDmxiz0zZxOrig03j_Gb4SKY.roa
Signing time: Fri 05 May 2023 13:38:05 +0000
ROA not before: Fri 05 May 2023 13:38:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57043
IP address blocks: 213.209.130.0/24 maxlen: 24
77.90.178.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:ec:22:53:4a:2c:b2:c5:0d:3d:c3:e0:2a:14:9f:84:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Validity
Not Before: May 5 13:38:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5ad1de0e6c62cf4cd9c4eae2834de3fc66f848a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:17:2e:23:ed:85:4b:fc:f9:70:bf:09:77:5e:
c6:e1:3d:f8:34:fc:67:d3:71:5d:aa:55:33:5b:00:
d5:e6:9d:28:16:0e:5b:7f:2c:7e:fd:3d:a7:40:9d:
8a:44:b8:87:37:5f:0b:03:65:7d:c0:1e:7a:d5:30:
96:a5:7b:66:a2:55:70:08:d2:d0:9a:31:d9:db:45:
49:b1:1c:fb:47:eb:06:e5:37:9f:08:7b:37:4d:22:
bd:03:1f:b0:75:e0:7d:46:ba:00:31:5f:2a:d4:8c:
26:f2:f5:28:72:6c:47:6e:40:4b:4a:cd:54:df:b1:
0b:a9:67:ab:95:37:f7:3c:27:a8:a7:6b:f2:20:65:
6f:3f:75:14:2b:4d:fd:5a:79:b4:ae:97:07:d3:74:
52:69:8f:9e:dc:ae:d5:c3:47:6a:62:9d:99:15:a9:
67:db:a9:78:87:a6:29:e9:a0:6d:58:a9:ab:5e:57:
55:62:12:12:66:3f:e9:b3:7a:5c:75:1f:31:64:20:
c7:6b:2b:e4:d7:8a:fb:ce:63:57:49:68:2a:64:c8:
b1:4c:3a:da:8f:83:21:a4:64:d4:26:0c:c1:94:92:
d1:14:2e:17:28:cf:2e:c3:eb:d6:75:d8:c0:e9:2a:
78:e3:fd:ca:3f:5b:c8:d6:eb:44:0f:36:a6:55:97:
c3:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:D1:DE:0E:6C:62:CF:4C:D9:C4:EA:E2:83:4D:E3:FC:66:F8:48:A6
X509v3 Authority Key Identifier:
keyid:3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/WtHeDmxiz0zZxOrig03j_Gb4SKY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.178.0/24
213.209.130.0/24
Signature Algorithm: sha256WithRSAEncryption
34:36:ba:0b:47:5f:e3:cf:a1:b3:34:14:8f:78:7f:8f:39:ee:
b2:3e:7c:bb:3a:91:b0:b8:60:02:ce:2a:04:c4:69:b2:0a:56:
22:b4:6f:70:eb:f6:63:07:63:b0:0d:2e:ea:fb:bd:0d:c9:7e:
49:2b:d2:95:6d:a7:90:4f:de:fc:36:8a:fc:68:ea:56:1e:e5:
3b:62:69:de:34:03:63:65:02:35:2b:a3:0b:1b:32:ee:45:60:
60:cc:a6:7c:3f:7c:6b:6f:d9:b6:15:6c:69:75:aa:b5:35:14:
cd:50:3d:8d:ef:8e:08:64:27:03:ad:ba:28:35:fe:d1:9b:52:
4b:c8:67:a9:c4:ea:51:5b:c4:84:d7:f3:b7:55:a8:bf:97:ef:
44:e8:4a:4e:34:2b:cf:1d:fb:14:ec:10:72:d5:bb:ca:e2:d0:
6b:89:55:8e:7b:3f:da:20:8f:db:c7:2b:d1:df:be:c1:84:b8:
04:9b:c7:1f:38:71:9f:c5:5b:45:c5:dd:53:ca:89:06:d4:d7:
2a:09:45:54:3f:ed:a6:aa:db:f4:c4:9c:5a:55:5d:f9:f4:56:
7e:d0:53:6f:ae:b0:54:91:5a:34:ec:65:3a:f2:1e:13:5d:17:
5e:56:db:15:02:eb:0b:b6:f1:1e:04:6f:28:2c:b4:d0:52:52:
19:26:e1:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 09:19:10 2024 by rpki-client on console-fra.rpki-client.org