Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/g5ARRRNAnOrLXUR0QpY775zNWrQ.roa
File: g5ARRRNAnOrLXUR0QpY775zNWrQ.roa (raw, json)
Hash identifier: nTaBv4q0Cw/QGjwzBpcBd4DDFMkacqZMtCFujVQvL/c=
Subject key identifier: 83:90:11:45:13:40:9C:EA:CB:5D:44:74:42:96:3B:EF:9C:CD:5A:B4
Certificate issuer: /CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Certificate serial: 0187909AE0EF3ED4141CDAA9DD4246D6EE3A
Authority key identifier: 3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/g5ARRRNAnOrLXUR0QpY775zNWrQ.roa
Signing time: Mon 17 Apr 2023 19:04:41 +0000
ROA not before: Mon 17 Apr 2023 19:04:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209372
IP address blocks: 77.90.159.0/24 maxlen: 24
77.90.158.0/24 maxlen: 24
77.90.165.0/24 maxlen: 24
77.90.160.0/24 maxlen: 24
77.90.163.0/24 maxlen: 24
77.90.161.0/24 maxlen: 24
77.90.162.0/24 maxlen: 24
77.90.171.0/24 maxlen: 24
77.90.172.0/24 maxlen: 24
77.90.167.0/24 maxlen: 24
77.90.170.0/24 maxlen: 24
77.90.168.0/24 maxlen: 24
77.90.169.0/24 maxlen: 24
77.90.177.0/24 maxlen: 24
77.90.175.0/24 maxlen: 24
77.90.182.0/24 maxlen: 24
77.90.186.0/24 maxlen: 24
213.209.131.0/24 maxlen: 24
213.209.139.0/24 maxlen: 24
213.209.137.0/24 maxlen: 24
213.209.135.0/24 maxlen: 24
213.209.152.0/24 maxlen: 24
213.209.154.0/24 maxlen: 24
213.209.155.0/24 maxlen: 24
213.209.153.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:90:9a:e0:ef:3e:d4:14:1c:da:a9:dd:42:46:d6:ee:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Validity
Not Before: Apr 17 19:04:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8390114513409ceacb5d447442963bef9ccd5ab4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:b9:33:24:19:8e:10:72:6d:2a:c4:eb:c6:12:
0c:2e:ec:a5:36:59:e2:67:93:fa:4b:e6:7b:db:e9:
ed:57:76:fc:ca:df:fd:51:37:17:e0:db:37:c7:cf:
6b:39:a0:72:16:13:53:bf:6f:e9:cd:89:6e:d5:b7:
a4:16:52:69:09:10:7c:00:12:00:d4:63:98:7e:eb:
fc:c8:af:52:e9:d0:e5:18:b8:42:a7:4c:81:cc:fe:
b7:bb:7e:dd:20:65:ca:9f:43:c4:e7:3d:ac:0d:2a:
c4:ab:f4:63:ce:c4:e2:22:94:85:b8:fc:24:03:8a:
f6:4c:43:2d:62:4c:89:f0:fd:62:6a:cb:74:21:34:
c9:28:02:3a:cb:9f:f0:a9:c0:79:f4:2b:00:6d:fd:
51:8d:a4:8b:c4:c9:86:9f:b3:51:13:ad:c9:59:19:
54:10:31:90:97:24:eb:5c:54:55:72:7a:0a:ed:03:
c7:88:74:a5:dd:6b:bb:31:98:d6:aa:1d:81:2e:26:
86:60:b2:77:e9:d9:b6:8b:3d:4b:a9:2f:bf:4c:ba:
bd:7f:e7:57:74:da:92:e6:e0:74:b5:66:6b:ca:86:
99:28:ec:05:65:77:73:de:e8:89:3a:e0:cb:d5:1f:
6f:2e:63:1d:76:87:cf:46:1e:26:25:ff:89:22:a7:
e0:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:90:11:45:13:40:9C:EA:CB:5D:44:74:42:96:3B:EF:9C:CD:5A:B4
X509v3 Authority Key Identifier:
keyid:3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/g5ARRRNAnOrLXUR0QpY775zNWrQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.158.0-77.90.163.255
77.90.165.0/24
77.90.167.0-77.90.172.255
77.90.175.0/24
77.90.177.0/24
77.90.182.0/24
77.90.186.0/24
213.209.131.0/24
213.209.135.0/24
213.209.137.0/24
213.209.139.0/24
213.209.152.0/22
Signature Algorithm: sha256WithRSAEncryption
a3:8f:e8:68:66:08:fa:d8:d9:d1:5b:31:eb:54:16:92:77:2e:
a3:82:0e:70:c4:d2:ce:60:09:68:05:a5:f7:62:21:94:34:04:
c0:7d:bd:82:c7:c6:db:f4:3e:c7:e6:12:da:6e:4a:f5:4b:65:
91:6c:32:92:5e:25:de:c3:5a:c1:38:09:f5:bb:6e:f4:f2:2d:
20:08:ee:42:2f:ee:ce:17:df:9c:89:85:47:81:02:b4:30:dd:
0f:71:ce:ac:ef:ce:68:2d:dc:d0:5f:52:31:6f:86:cb:0c:5d:
05:09:2e:bd:32:9a:6d:6b:58:a4:98:44:eb:80:58:b5:da:1a:
e9:6b:b4:b7:84:a6:b3:01:b6:8e:84:94:f9:f3:9a:7c:1a:33:
74:c2:46:2a:1d:84:18:85:2a:57:bf:4c:86:53:93:a1:b3:54:
f1:f3:be:8b:c3:04:c1:3f:2b:fe:0b:cf:a0:36:2a:f9:6a:a7:
5e:4a:2d:66:1d:1d:6c:4c:07:f5:3f:f4:98:47:71:8a:48:35:
95:40:ec:0a:3f:aa:fc:5f:1a:b0:c5:e8:bd:0b:e6:0a:83:c5:
48:15:8c:0d:d2:ee:59:1b:94:b1:b4:a9:dd:8c:14:24:c0:e9:
33:a6:46:bc:82:63:be:49:1b:e4:e8:4b:42:78:36:6a:c6:51:
59:77:ab:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:23 2023 by rpki-client on console-fra.rpki-client.org