Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/Wybho2pK0er49T14Nppn1hHdJXE.roa
File: Wybho2pK0er49T14Nppn1hHdJXE.roa (raw, json)
Hash identifier: Ii/gtjCCRAyIYgTjcKUFljZ0WyjiGy8K7DEZrOpNFdQ=
Subject key identifier: 5B:26:E1:A3:6A:4A:D1:EA:F8:F5:3D:78:36:9A:67:D6:11:DD:25:71
Certificate issuer: /CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Certificate serial: 0188C5C777D5690255A1E4D3EF789EEE46B1
Authority key identifier: 3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/Wybho2pK0er49T14Nppn1hHdJXE.roa
Signing time: Fri 16 Jun 2023 19:56:03 +0000
ROA not before: Fri 16 Jun 2023 19:56:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213296
IP address blocks: 213.209.131.0/24 maxlen: 24
77.90.177.0/24 maxlen: 24
77.90.183.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:c5:c7:77:d5:69:02:55:a1:e4:d3:ef:78:9e:ee:46:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Validity
Not Before: Jun 16 19:56:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5b26e1a36a4ad1eaf8f53d78369a67d611dd2571
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:fc:b6:79:b4:ce:9a:e9:31:fd:0c:5b:a9:7d:
74:34:65:af:83:a9:d3:d7:d0:9f:04:95:3d:ca:fa:
07:77:41:de:b9:4c:e5:47:e4:a9:23:e7:cf:12:fb:
9f:3f:e9:a8:7b:5d:12:17:69:ad:67:7b:14:52:71:
58:b3:c2:48:b1:5e:c4:8b:98:96:78:bc:75:7d:6b:
90:1c:2a:ae:bc:13:e8:3b:d6:a5:0f:db:98:c9:c6:
f8:a9:80:29:7e:5a:7f:1e:00:ac:3e:79:c0:d0:73:
ec:e6:8f:73:61:06:a5:84:10:6b:f7:1a:70:5a:ce:
ed:04:57:21:61:2f:ce:cf:9a:da:b1:70:1c:26:24:
a5:d7:8e:94:1f:ea:3f:b3:06:c9:11:13:58:3d:80:
f9:2b:2a:47:d1:3f:65:d7:6a:0b:c5:a3:50:9b:e8:
ef:5a:fb:99:36:d7:e9:01:7f:ec:05:44:19:ab:49:
61:4e:c2:66:59:f3:27:28:90:3b:e0:b7:6d:c2:58:
e8:9e:e9:1f:fa:17:fb:fa:52:30:9e:f8:59:49:8d:
cf:c6:a7:5b:08:4f:58:6d:e8:96:e7:81:3d:a6:75:
90:90:29:f1:d0:4d:6a:a7:49:fc:81:68:02:5f:04:
aa:49:52:83:de:6a:8e:dc:2b:a8:8b:63:4e:10:d2:
55:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:26:E1:A3:6A:4A:D1:EA:F8:F5:3D:78:36:9A:67:D6:11:DD:25:71
X509v3 Authority Key Identifier:
keyid:3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/Wybho2pK0er49T14Nppn1hHdJXE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.177.0/24
77.90.183.0/24
213.209.131.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:b3:a8:e0:ef:e6:4f:ee:db:1a:72:7b:f5:38:1c:66:20:ef:
c1:19:6f:11:0c:17:ba:b9:bd:ee:51:4b:e8:93:c4:38:fa:81:
2f:61:34:0b:c4:ea:6a:14:f8:48:96:3d:79:b9:96:ba:54:5f:
ae:96:9e:4a:7b:a3:a7:dd:ff:6d:cd:77:6b:e8:b7:1e:9a:ff:
f1:5c:03:e0:3f:5d:df:65:41:88:e9:da:1e:10:73:8d:b5:ea:
43:ed:e8:a8:f2:44:8b:24:e3:0d:b0:7f:db:11:e7:18:e2:8c:
0f:07:9a:6c:3c:6b:1e:46:39:a2:c0:53:81:c7:6a:5d:03:2f:
9f:5f:fc:95:bb:f2:10:0a:94:b0:14:65:43:ad:30:fa:d8:03:
bd:49:aa:c7:69:d1:d2:dd:28:1b:ce:9c:4a:d0:c9:4c:3b:0e:
91:aa:21:24:e0:d3:64:d6:a9:4e:f7:3a:86:7c:1b:cc:75:9b:
e4:f4:03:58:9b:42:1c:2c:83:9b:0f:55:c0:2c:f3:16:1b:c4:
34:7d:f3:24:f4:52:5b:42:c2:e4:a4:08:26:d4:0c:7c:ec:7a:
13:d7:a8:63:95:5d:90:9b:0f:73:a0:4c:4f:61:98:b3:c2:ce:
a4:4e:7e:52:7a:24:0e:7f:21:78:0e:c2:91:4f:12:84:14:5e:
86:24:6f:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:08 2023 by rpki-client on console-ams.rpki-client.org