Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/Z-1mGgSaea4PEa6-imK9HbBCTpo.roa
File: Z-1mGgSaea4PEa6-imK9HbBCTpo.roa (raw, json)
Hash identifier: iGAAqtO9jw2sOAGoTopi8G56CTW5VcfnDVrDMupjt64=
Subject key identifier: 67:ED:66:1A:04:9A:79:AE:0F:11:AE:BE:8A:62:BD:1D:B0:42:4E:9A
Certificate issuer: /CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Certificate serial: 0188C5C5A4B215C5D46235D5E49CA158F582
Authority key identifier: 3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/Z-1mGgSaea4PEa6-imK9HbBCTpo.roa
Signing time: Fri 16 Jun 2023 19:54:04 +0000
ROA not before: Fri 16 Jun 2023 19:54:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62240
IP address blocks: 213.209.131.0/24 maxlen: 24
213.209.137.0/24 maxlen: 24
213.209.139.0/24 maxlen: 24
213.209.141.0/24 maxlen: 24
213.209.152.0/24 maxlen: 24
213.209.155.0/24 maxlen: 24
213.209.154.0/24 maxlen: 24
213.209.153.0/24 maxlen: 24
77.90.159.0/24 maxlen: 24
77.90.158.0/24 maxlen: 24
77.90.163.0/24 maxlen: 24
77.90.162.0/24 maxlen: 24
77.90.161.0/24 maxlen: 24
77.90.160.0/24 maxlen: 24
77.90.165.0/24 maxlen: 24
77.90.170.0/24 maxlen: 24
77.90.169.0/24 maxlen: 24
77.90.172.0/24 maxlen: 24
77.90.171.0/24 maxlen: 24
77.90.175.0/24 maxlen: 24
77.90.182.0/24 maxlen: 24
77.90.186.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 23 Jul 2023 13:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:c5:c5:a4:b2:15:c5:d4:62:35:d5:e4:9c:a1:58:f5:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Validity
Not Before: Jun 16 19:54:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=67ed661a049a79ae0f11aebe8a62bd1db0424e9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:a7:41:ac:10:c8:71:61:29:74:45:71:33:5d:
69:ff:ec:71:91:74:fd:73:ac:7f:23:96:6a:92:ed:
36:95:55:ad:39:ac:da:d5:db:b7:27:bb:aa:39:42:
26:53:a1:96:39:cf:21:24:b6:48:de:c9:14:98:21:
06:f1:8a:86:95:68:9c:68:3a:b3:a1:f2:1a:4d:97:
d2:0e:09:35:d8:00:5c:5a:35:5b:88:05:a1:28:f2:
df:43:48:db:a3:30:97:b8:18:07:cc:17:55:eb:43:
3f:f7:34:9f:e4:0f:e9:7e:d7:69:1e:b6:63:86:a7:
99:e1:1f:b9:34:33:84:c4:76:26:81:04:49:38:b7:
69:96:19:3a:86:24:86:9d:46:f7:91:9c:f0:9a:85:
a8:20:88:47:5f:4f:0c:be:ef:4b:6f:51:62:6e:44:
b5:b5:27:88:53:46:23:6d:cf:c0:16:3f:cb:30:df:
db:8b:af:5b:83:12:bf:7f:5f:1c:8a:1e:b0:e2:59:
97:48:4d:ec:07:1f:fc:bf:a4:d6:92:70:b4:4a:13:
b2:6b:92:db:e9:71:e7:59:7b:c4:48:ad:b7:87:87:
9e:07:19:b2:eb:c8:bc:7d:0a:0e:f5:f9:9a:70:45:
a8:6a:42:8d:92:ad:7e:cd:22:ee:0b:06:e3:3b:e4:
da:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:ED:66:1A:04:9A:79:AE:0F:11:AE:BE:8A:62:BD:1D:B0:42:4E:9A
X509v3 Authority Key Identifier:
keyid:3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/Z-1mGgSaea4PEa6-imK9HbBCTpo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.158.0-77.90.163.255
77.90.165.0/24
77.90.169.0-77.90.172.255
77.90.175.0/24
77.90.182.0/24
77.90.186.0/24
213.209.131.0/24
213.209.137.0/24
213.209.139.0/24
213.209.141.0/24
213.209.152.0/22
Signature Algorithm: sha256WithRSAEncryption
36:c9:02:c0:a0:0a:b8:b4:97:bd:f8:f0:61:15:f6:40:ca:f6:
52:d2:ba:7f:0c:3d:a2:22:5b:9c:d8:fb:7a:f6:f8:d9:c3:75:
c2:15:3e:e4:29:68:d9:07:cd:f7:a6:21:55:98:61:54:ee:0f:
55:72:a2:24:45:41:a2:12:92:1e:d3:59:94:64:72:9b:9c:7c:
04:07:11:e1:8b:5c:55:a9:ea:7c:ee:c6:85:50:49:a2:9c:18:
4e:ee:e8:aa:fd:1f:21:3d:64:e6:e9:d5:a9:4e:ca:7f:a0:33:
ad:7d:05:8f:0a:27:4a:ca:cb:d1:a0:fa:87:58:3f:eb:bf:26:
fb:78:65:69:28:79:63:d5:6d:ef:b8:34:82:37:52:39:c2:03:
63:1b:86:d6:cd:25:1b:22:ea:4c:15:cc:c6:59:82:88:10:49:
ec:2f:f6:3b:7b:25:b2:01:dd:da:c3:08:c0:ba:f5:d4:0e:53:
44:38:12:22:e0:17:f4:f9:3f:0a:68:db:ed:cd:49:74:bd:7f:
db:60:29:1a:a7:c9:77:00:3a:f4:8e:6b:f4:d6:28:ac:58:9a:
e1:e8:b3:3b:c1:38:8e:28:54:ed:b5:e2:32:b7:53:d6:a9:75:
4a:21:5a:bb:46:02:6d:fa:6e:9f:e4:ea:77:f6:72:80:77:42:
41:9b:17:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:03 2024 by rpki-client on console-fra.rpki-client.org