Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/X6IJS2ZdiVSb6HZa9N2HfJaeQk0.roa
File: X6IJS2ZdiVSb6HZa9N2HfJaeQk0.roa (raw, json)
Hash identifier: lmzBYQQEAA+U8fjRYLEsvh59+8qKeLBh8ZZm3y0kykI=
Subject key identifier: 5F:A2:09:4B:66:5D:89:54:9B:E8:76:5A:F4:DD:87:7C:96:9E:42:4D
Certificate issuer: /CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Certificate serial: 0191A05C82A2CD808F45DF5672F1637B03CC
Authority key identifier: 3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/X6IJS2ZdiVSb6HZa9N2HfJaeQk0.roa
Signing time: Thu 29 Aug 2024 22:58:22 +0000
ROA not before: Thu 29 Aug 2024 22:58:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212238
IP address blocks: 77.90.178.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 30 Aug 2024 12:18:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:a0:5c:82:a2:cd:80:8f:45:df:56:72:f1:63:7b:03:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Validity
Not Before: Aug 29 22:58:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5fa2094b665d89549be8765af4dd877c969e424d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:35:72:fd:b0:c3:99:46:62:38:5b:f5:26:6e:
ce:6f:f0:ab:36:b1:ad:77:44:d1:3d:9c:2a:95:22:
75:40:da:ee:f1:05:7b:36:d6:ec:5d:72:69:f7:d0:
cb:97:7c:57:9e:56:75:62:e4:a3:53:09:ff:da:1a:
f5:4c:57:65:1d:35:26:01:1d:0c:96:b0:8b:29:20:
bd:da:30:bc:33:d2:47:78:71:da:cb:97:0b:24:11:
39:18:7e:d6:7a:c5:13:cd:dd:e9:13:72:ef:64:14:
21:e2:39:5b:e9:c6:d7:f3:bf:5b:28:3d:46:30:cb:
f1:25:c9:b4:c0:fe:fb:40:4c:6d:c2:83:76:c4:a6:
45:c3:61:a7:79:ac:a4:57:a9:a8:8b:49:18:26:25:
de:04:30:95:b2:5f:4c:cb:77:ca:7b:dc:75:18:6d:
2f:6b:b4:b1:f4:a0:5f:20:a5:6f:c3:44:b1:c4:0f:
10:7b:69:47:de:f9:64:f4:ae:76:07:34:d7:59:6c:
ab:a9:e4:62:7c:db:ef:54:25:5c:fb:d1:0d:4d:5a:
cb:e0:c4:e2:d4:06:11:6e:ae:14:e1:08:c8:64:ce:
2f:83:8e:70:ce:34:d9:10:5f:48:53:0c:e3:6c:07:
06:ad:67:1c:ca:1c:62:da:83:d0:64:d6:dc:04:5f:
24:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:A2:09:4B:66:5D:89:54:9B:E8:76:5A:F4:DD:87:7C:96:9E:42:4D
X509v3 Authority Key Identifier:
keyid:3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/X6IJS2ZdiVSb6HZa9N2HfJaeQk0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.178.0/24
Signature Algorithm: sha256WithRSAEncryption
50:4f:62:0d:ad:0c:63:fe:ee:c0:cc:b5:00:9f:7f:0c:c7:6c:
ee:05:b5:05:fc:cc:da:d1:be:eb:d9:50:23:2c:1e:e4:fd:e6:
58:2e:14:e4:47:3d:22:4c:ea:9b:24:1d:14:c3:f5:13:0a:be:
6c:e0:b5:44:94:7a:ef:4b:81:83:ef:48:75:74:85:17:c8:ce:
5a:68:5f:a6:25:e0:c1:68:65:56:52:ad:e7:ad:bd:31:28:a9:
a9:39:8a:35:bc:55:1d:c8:85:a2:1a:f7:e1:f4:95:6f:e8:76:
dd:e1:21:4e:21:77:c9:5a:5f:a3:f0:5e:31:c9:4b:22:15:26:
3c:27:93:9d:30:a5:2f:46:14:b4:42:76:a5:a2:77:97:c1:af:
5f:95:3d:bb:76:6b:37:57:45:16:09:90:0e:31:9a:31:5c:fd:
d8:4e:84:9e:22:46:e7:11:8d:1d:65:3b:8e:32:bf:e2:ea:f4:
5e:35:d5:4d:d6:47:12:4b:75:7f:a4:54:05:f3:3b:39:71:ff:
e7:a0:0c:b5:c1:c0:6c:03:aa:ad:e3:ce:82:47:b8:85:1d:d5:
34:2b:1a:e8:8f:64:e4:ba:76:ae:08:53:bb:81:43:f1:84:02:
f2:64:45:e6:9d:2c:1a:53:fa:ae:db:ef:8c:42:fc:5c:d9:17:
a7:1c:18:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 30 13:52:13 2024 by rpki-client on console-fra.rpki-client.org