Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/ggThIUgNgD9WG3A-DvZWHBZLD9g.roa
File: ggThIUgNgD9WG3A-DvZWHBZLD9g.roa (raw, json)
Hash identifier: 6hLGtkrjtk+NK0I1g51kFJO2eaiihAanyuyATqs3DOY=
Subject key identifier: 82:04:E1:21:48:0D:80:3F:56:1B:70:3E:0E:F6:56:1C:16:4B:0F:D8
Certificate issuer: /CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Certificate serial: 01911262B6AE674A64BB6E68600827AEFCF9
Authority key identifier: 3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/ggThIUgNgD9WG3A-DvZWHBZLD9g.roa
Signing time: Fri 02 Aug 2024 09:19:04 +0000
ROA not before: Fri 02 Aug 2024 09:19:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 208485
IP address blocks: 77.90.135.0/24 maxlen: 24
77.90.145.0/24 maxlen: 24
77.90.188.0/24 maxlen: 24
185.230.15.0/24 maxlen: 24
213.209.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 09 Aug 2024 18:39:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:12:62:b6:ae:67:4a:64:bb:6e:68:60:08:27:ae:fc:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Validity
Not Before: Aug 2 09:19:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8204e121480d803f561b703e0ef6561c164b0fd8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:01:35:57:33:93:be:13:27:17:84:09:da:cc:
c1:41:24:6a:1d:32:e0:2d:d2:a7:45:64:b4:4c:52:
9d:90:b1:2b:de:bb:a6:98:bb:2a:e9:04:9c:ee:ad:
22:1e:6a:35:0b:df:8e:88:56:ca:36:45:4a:6f:52:
80:e7:8f:ba:86:2b:be:b3:5d:e4:9f:f9:b9:ca:fe:
4a:99:f9:f4:42:b8:8a:63:03:c0:c8:24:d7:08:56:
06:60:6d:ff:fa:b7:f4:15:dd:10:12:87:94:92:07:
06:81:8e:c0:4d:39:42:9b:aa:53:94:a8:26:51:9a:
b6:20:07:82:36:a2:9b:ec:f5:97:eb:01:12:32:3c:
9a:0d:0a:cb:31:9b:1b:f3:b6:8d:62:41:ed:5b:a2:
0a:51:85:88:96:43:79:eb:3a:f2:d6:2b:e5:d7:9e:
00:6a:43:2c:ff:01:29:97:70:03:2a:c5:87:04:42:
47:88:c9:d3:c4:51:f0:69:3f:52:69:60:17:31:b7:
8e:da:a3:04:10:d1:64:9c:1c:6b:64:ab:1b:56:38:
5d:7f:8b:26:8d:36:21:57:35:37:85:23:33:eb:0d:
1d:36:64:11:09:54:35:c6:74:d6:16:5f:bf:1a:e0:
e7:86:3a:c1:fe:86:e7:86:26:4c:25:d2:63:49:f4:
ac:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:04:E1:21:48:0D:80:3F:56:1B:70:3E:0E:F6:56:1C:16:4B:0F:D8
X509v3 Authority Key Identifier:
keyid:3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/ggThIUgNgD9WG3A-DvZWHBZLD9g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.135.0/24
77.90.145.0/24
77.90.188.0/24
185.230.15.0/24
213.209.129.0/24
Signature Algorithm: sha256WithRSAEncryption
75:0c:9f:b9:b6:ee:f4:4f:aa:31:fd:c7:ee:2e:e5:c5:91:85:
47:82:52:9e:33:6d:95:ac:49:b9:fe:d2:b9:b6:81:cd:92:f8:
54:4b:60:d3:97:78:81:90:5f:79:64:6c:a4:54:1e:2b:b7:e2:
ba:b7:84:bf:5d:9c:69:23:22:ad:6f:59:37:c2:ba:48:79:f3:
03:a1:ec:0d:37:c9:f6:00:dd:93:26:76:f9:df:cf:39:22:18:
20:ba:83:1c:cb:8c:36:11:e3:90:58:29:19:b7:76:8e:0b:2b:
18:2d:a8:0a:97:f4:fa:3c:a2:c8:2c:d9:67:9e:82:b4:0e:23:
52:69:4d:99:f7:90:f3:16:8f:0f:70:67:7e:12:d0:42:06:9b:
40:00:1f:80:47:de:93:8b:3c:16:5d:db:df:e4:66:6f:9c:f6:
28:9c:45:ca:56:3a:de:64:a1:62:2d:bb:3f:b5:8d:a3:04:91:
11:b5:f8:87:5c:fc:50:a9:a4:37:6d:c2:ce:18:0f:34:73:69:
1a:09:62:94:3d:a6:5f:24:04:95:60:8d:2a:58:d7:47:69:4d:
1a:ad:34:eb:6e:3c:10:ac:9e:5b:2e:f0:ed:94:48:a8:2a:fc:
49:7f:5c:bc:a1:9f:ec:d3:52:75:ae:42:39:7f:ca:8a:73:b2:
f6:dd:26:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 9 20:50:42 2024 by rpki-client on console-fra.rpki-client.org