Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/kUK5zqyYcjzloQCSxsAkZhsZB74.roa
File: kUK5zqyYcjzloQCSxsAkZhsZB74.roa (raw, json)
Hash identifier: CjEu3o2JjRdV6W4ex2sQF9jTKG+UlPFbgCY1Tc+BycA=
Subject key identifier: 91:42:B9:CE:AC:98:72:3C:E5:A1:00:92:C6:C0:24:66:1B:19:07:BE
Certificate issuer: /CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Certificate serial: 0189FD1D123B08CB02E6D4802F60EE8A2EDC
Authority key identifier: 3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/kUK5zqyYcjzloQCSxsAkZhsZB74.roa
Signing time: Wed 16 Aug 2023 06:51:28 +0000
ROA not before: Wed 16 Aug 2023 06:51:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42821
IP address blocks: 77.90.129.0/24 maxlen: 24
77.90.128.0/24 maxlen: 24
77.90.130.0/24 maxlen: 24
77.90.132.0/24 maxlen: 24
185.230.13.0/24 maxlen: 24
185.230.14.0/24 maxlen: 24
77.90.188.0/24 maxlen: 24
77.90.136.0/24 maxlen: 24
77.90.137.0/24 maxlen: 24
77.90.133.0/24 maxlen: 24
77.90.134.0/24 maxlen: 24
77.90.143.0/24 maxlen: 24
77.90.142.0/24 maxlen: 24
77.90.145.0/24 maxlen: 24
77.90.144.0/24 maxlen: 24
77.90.140.0/24 maxlen: 24
77.90.147.0/24 maxlen: 24
77.90.146.0/24 maxlen: 24
77.90.148.0/24 maxlen: 24
77.90.153.0/24 maxlen: 24
77.90.154.0/24 maxlen: 24
213.209.138.0/24 maxlen: 24
213.209.151.0/24 maxlen: 24
2a04:29c2::/32 maxlen: 32
2a04:29c7:1290:24::/64 maxlen: 64
2a04:29c7:1371:6027::/64 maxlen: 64
2a04:29c7:1280:27::/64 maxlen: 64
2a04:29c7:1420::/48 maxlen: 48
2a04:29c7::/32 maxlen: 32
2a04:29c7:1280:24::/64 maxlen: 64
2a04:29c7:1300:24::/64 maxlen: 64
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:fd:1d:12:3b:08:cb:02:e6:d4:80:2f:60:ee:8a:2e:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Validity
Not Before: Aug 16 06:51:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9142b9ceac98723ce5a10092c6c024661b1907be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:7b:a6:57:e3:47:1e:4b:60:07:95:88:9c:b4:
e4:dd:00:9c:8b:08:86:2f:2c:30:8b:ff:e3:3f:ed:
17:b9:8c:ee:e8:c8:74:f8:b1:95:90:b9:71:fe:84:
f1:29:e2:16:33:b6:b8:8d:7e:a8:2c:36:d8:eb:1a:
49:16:c8:eb:fb:89:d1:72:c7:42:f9:55:eb:03:e9:
91:d6:f0:d6:e0:1d:c9:39:5d:3d:e0:87:9f:5e:9f:
d7:e0:f1:e4:8d:fd:76:97:49:f1:a7:e0:37:84:03:
01:ed:5d:5b:ee:2e:29:40:d1:21:50:35:58:49:d6:
ca:29:c6:bc:bb:59:7e:a4:4a:ee:74:fd:39:7b:1f:
05:cd:c7:20:f0:1e:cd:d8:d3:6e:eb:e8:e4:6b:24:
7d:62:8e:a2:b1:93:44:25:15:e7:9b:b6:6d:c2:f5:
6e:c3:cc:d8:be:cb:28:53:6e:47:7b:17:6f:c9:10:
a7:24:5c:2a:ae:5d:8a:b7:2a:17:d0:02:a6:2f:b1:
be:3a:a5:73:57:c8:83:3d:79:84:a8:55:46:19:f5:
98:63:dc:98:81:dc:ef:2f:83:00:fb:5f:0d:32:a7:
e7:b2:d9:2b:05:63:33:93:20:11:18:d8:15:41:cc:
0e:2a:74:08:de:58:c4:0a:02:1d:f7:26:53:db:20:
6c:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:42:B9:CE:AC:98:72:3C:E5:A1:00:92:C6:C0:24:66:1B:19:07:BE
X509v3 Authority Key Identifier:
keyid:3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/kUK5zqyYcjzloQCSxsAkZhsZB74.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.128.0-77.90.130.255
77.90.132.0-77.90.134.255
77.90.136.0/23
77.90.140.0/24
77.90.142.0-77.90.148.255
77.90.153.0-77.90.154.255
77.90.188.0/24
185.230.13.0-185.230.14.255
213.209.138.0/24
213.209.151.0/24
IPv6:
2a04:29c2::/32
2a04:29c7::/32
Signature Algorithm: sha256WithRSAEncryption
37:65:55:f5:48:f7:22:0c:44:d8:14:f7:47:82:d6:0c:7c:b7:
0d:f6:f5:74:ef:4b:cf:b9:3f:f6:cf:96:64:35:4d:0e:16:99:
73:b5:5c:4d:27:6f:4c:39:b2:e7:e1:3b:28:e5:1e:74:4e:eb:
ee:f7:00:ae:dd:e9:7b:4f:e0:28:f1:93:44:82:f9:2e:00:d6:
4e:a1:4d:55:50:f2:f6:14:88:8a:c7:9d:f8:5b:23:86:73:93:
cb:86:34:ee:9e:29:4f:c4:d9:1e:e5:f5:20:7b:3b:9f:91:31:
41:f6:b6:39:bd:f5:1e:6b:9b:cc:1c:e4:44:6f:a2:fa:1f:c9:
ea:66:75:8c:fd:c0:97:94:aa:09:41:e0:b1:97:67:48:e9:c3:
5c:9a:e2:b3:16:40:09:c0:20:08:3e:ac:7c:a6:07:6f:b1:c4:
84:ab:9e:7b:d4:bc:38:59:57:71:95:14:28:b9:49:66:db:27:
cb:37:d4:fb:6c:2a:85:81:1d:57:77:0b:0c:eb:62:20:55:13:
d5:49:6d:17:25:10:fe:60:66:1e:d3:c1:a4:e7:1a:0c:e9:81:
65:2f:87:70:fc:c6:f9:0b:42:7c:50:88:ee:9b:76:fc:8a:a4:
79:34:9b:bb:95:e8:37:f8:cd:be:f0:e4:15:c8:c8:1f:e2:9a:
ad:26:9e:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 17 13:35:58 2023 by rpki-client on console-ams.rpki-client.org