Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/u5BXgpmwXEDPBa2f9f2NNScjto8.roa
File: u5BXgpmwXEDPBa2f9f2NNScjto8.roa (raw, json)
Hash identifier: y+gm0mcqKek/UE7aFHLSw77qmRI4h/ljCcamKZefY3A=
Subject key identifier: BB:90:57:82:99:B0:5C:40:CF:05:AD:9F:F5:FD:8D:35:27:23:B6:8F
Certificate issuer: /CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Certificate serial: 01879863100638CFBC3049C2A52BC9312B8F
Authority key identifier: 3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/u5BXgpmwXEDPBa2f9f2NNScjto8.roa
Signing time: Wed 19 Apr 2023 07:20:41 +0000
ROA not before: Wed 19 Apr 2023 07:20:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 396356
IP address blocks: 77.90.151.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:32:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:98:63:10:06:38:cf:bc:30:49:c2:a5:2b:c9:31:2b:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Validity
Not Before: Apr 19 07:20:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bb90578299b05c40cf05ad9ff5fd8d352723b68f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:51:aa:86:c5:5e:2f:24:f5:f9:18:d5:1c:1e:
86:16:08:0e:05:c0:d4:c2:7e:b3:fb:e2:09:5e:fe:
1e:f7:d1:4b:f6:e1:24:53:56:05:fc:cd:74:b7:41:
23:3c:7d:a1:9c:ec:a9:03:e4:a2:98:c6:64:d4:2e:
a0:6a:7a:e4:95:0c:20:a9:a4:1b:5f:ba:28:6b:1d:
46:07:62:4f:89:03:e1:c4:ad:9f:77:65:48:3f:5d:
c1:63:24:35:5a:bc:fb:07:1e:99:c2:04:bd:aa:7a:
b0:39:bb:b1:d0:df:44:c9:24:a5:cf:0c:98:eb:c8:
93:16:bd:bf:02:20:e7:86:14:8b:25:ac:80:b4:f7:
c3:0c:25:51:c5:7d:8d:f2:7c:bd:f5:10:bd:93:37:
0a:d7:97:b8:11:7e:92:c0:6d:61:91:50:e9:22:05:
6c:4c:3d:0e:3a:d9:97:e1:c3:09:7b:83:80:74:a7:
4d:4c:05:9a:d2:35:f2:e5:24:84:70:6a:e6:34:8f:
5d:42:8f:a6:bb:b2:a9:54:52:59:43:0d:7c:07:29:
cf:01:ec:60:3e:8f:74:59:72:51:a0:ff:aa:7e:76:
99:2a:c4:5b:ed:c0:28:58:08:09:b0:75:2a:17:eb:
a1:f7:1a:3e:de:d4:1e:bb:e1:08:f7:2a:f6:11:e4:
78:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:90:57:82:99:B0:5C:40:CF:05:AD:9F:F5:FD:8D:35:27:23:B6:8F
X509v3 Authority Key Identifier:
keyid:3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/u5BXgpmwXEDPBa2f9f2NNScjto8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.151.0/24
Signature Algorithm: sha256WithRSAEncryption
87:1b:33:da:ad:6a:d6:d5:54:88:4b:23:96:ca:96:14:46:81:
b5:36:78:a4:67:bb:59:46:1f:ea:26:94:43:ef:a7:c2:c0:b0:
58:2f:7b:df:04:93:2a:d2:9a:eb:60:a9:f7:9a:53:5b:99:b0:
f9:ae:71:1d:9c:4a:ce:30:91:50:b1:bf:78:66:81:06:5b:03:
78:44:e8:86:45:bd:10:4f:43:34:07:0f:7c:c7:6e:2c:41:f6:
59:53:af:47:33:08:a7:d3:55:4f:f5:ac:7a:56:d2:dd:c4:6e:
b6:25:6b:46:69:11:bc:50:ff:c0:de:ee:46:5b:cd:1d:33:0f:
5c:4a:f0:9f:58:79:df:43:ec:d0:85:34:56:cd:64:04:47:5b:
8c:bd:57:f1:ab:d4:ce:b2:01:7b:67:4e:36:ff:70:8c:5a:e1:
fc:10:35:09:ce:d2:2b:5e:c4:99:05:4e:45:b7:79:14:bb:c8:
b1:47:1d:e6:6c:f8:46:b6:bd:af:a9:73:21:77:67:eb:05:af:
dd:77:04:fa:ba:87:73:f2:ce:d0:01:37:de:38:c5:fb:24:67:
b0:92:0b:3e:1d:15:ea:4d:ea:8c:d3:80:b7:0f:19:f2:75:07:
7b:bb:3f:c7:b7:f8:86:8a:f1:8c:99:4d:99:39:5a:f9:e3:a5:
0a:46:9d:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:06 2024 by rpki-client on console-fra.rpki-client.org