Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/v6qd9OlcjJGqO2CVU99NSLU-v14.roa
File: v6qd9OlcjJGqO2CVU99NSLU-v14.roa (raw, json)
Hash identifier: t8G6vWiYMZBrfTlN9aI6Syx9qKoshAsPmimoiwFNK7k=
Subject key identifier: BF:AA:9D:F4:E9:5C:8C:91:AA:3B:60:95:53:DF:4D:48:B5:3E:BF:5E
Certificate issuer: /CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Certificate serial: 018AD0B350AD4CA149E0A4F7B256EDA7FF96
Authority key identifier: 3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/v6qd9OlcjJGqO2CVU99NSLU-v14.roa
Signing time: Tue 26 Sep 2023 08:55:27 +0000
ROA not before: Tue 26 Sep 2023 08:55:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42821
IP address blocks: 77.90.129.0/24 maxlen: 24
77.90.128.0/24 maxlen: 24
77.90.130.0/24 maxlen: 24
77.90.132.0/24 maxlen: 24
185.230.13.0/24 maxlen: 24
185.230.14.0/24 maxlen: 24
185.230.15.0/24 maxlen: 24
77.90.136.0/24 maxlen: 24
77.90.137.0/24 maxlen: 24
77.90.133.0/24 maxlen: 24
77.90.134.0/24 maxlen: 24
77.90.143.0/24 maxlen: 24
77.90.142.0/24 maxlen: 24
77.90.144.0/24 maxlen: 24
77.90.140.0/24 maxlen: 24
77.90.147.0/24 maxlen: 24
77.90.146.0/24 maxlen: 24
77.90.148.0/24 maxlen: 24
213.209.138.0/24 maxlen: 24
213.209.150.0/24 maxlen: 24
213.209.159.0/24 maxlen: 24
2a04:29c2::/32 maxlen: 32
2a04:29c7:1290:24::/64 maxlen: 64
2a04:29c7:1371:6027::/64 maxlen: 64
2a04:29c7:1280:27::/64 maxlen: 64
2a04:29c7:1420::/48 maxlen: 48
2a04:29c7::/32 maxlen: 32
2a04:29c7:1300:24::/64 maxlen: 64
2a04:29c7:1280:24::/64 maxlen: 64
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:d0:b3:50:ad:4c:a1:49:e0:a4:f7:b2:56:ed:a7:ff:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Validity
Not Before: Sep 26 08:55:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bfaa9df4e95c8c91aa3b609553df4d48b53ebf5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:46:ef:35:5a:39:5a:1c:cb:57:08:3b:ee:06:
47:50:fa:6c:2d:8e:5f:d9:22:68:d7:7c:db:4b:81:
24:bc:0f:50:78:87:7f:65:1d:e0:dd:3f:ee:15:83:
e5:bb:54:87:d0:54:ed:f7:18:35:a7:01:10:cc:30:
6d:aa:08:1e:76:af:0e:47:52:b4:20:20:c1:07:08:
0f:b2:58:9c:fd:5e:68:3a:09:39:b8:82:a9:6b:0d:
0b:85:47:be:ea:7c:2b:ab:56:12:6c:c5:ff:bc:c3:
04:55:26:4e:bd:b5:fd:0c:5c:72:b1:3f:14:ac:b0:
d5:ed:1f:e9:f7:14:fb:c7:05:87:90:09:ff:eb:aa:
fc:23:01:26:0d:0b:f7:96:12:8c:42:a8:b5:8c:5b:
fc:ff:c0:0d:db:07:7a:93:d7:8e:3c:7b:37:9b:b9:
87:a1:30:15:67:6c:43:80:f4:da:0b:cb:8d:bc:bd:
7b:ae:45:36:1a:47:30:09:52:a4:ee:a5:a1:52:35:
22:95:29:98:5d:a5:e6:72:e4:48:ee:cd:6c:1c:43:
77:27:e4:97:b7:2d:05:86:0e:79:32:cf:25:8a:08:
e6:7c:5b:d3:f9:e2:f6:2a:69:16:43:7c:1a:f7:4a:
f6:34:b3:5d:86:46:74:25:44:17:58:5e:ee:cc:11:
ae:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:AA:9D:F4:E9:5C:8C:91:AA:3B:60:95:53:DF:4D:48:B5:3E:BF:5E
X509v3 Authority Key Identifier:
keyid:3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/v6qd9OlcjJGqO2CVU99NSLU-v14.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.128.0-77.90.130.255
77.90.132.0-77.90.134.255
77.90.136.0/23
77.90.140.0/24
77.90.142.0-77.90.144.255
77.90.146.0-77.90.148.255
185.230.13.0-185.230.15.255
213.209.138.0/24
213.209.150.0/24
213.209.159.0/24
IPv6:
2a04:29c2::/32
2a04:29c7::/32
Signature Algorithm: sha256WithRSAEncryption
1c:53:ba:68:61:3b:ab:36:13:5c:e6:09:06:27:76:57:bb:b8:
ea:44:95:7d:43:b1:ce:34:84:83:b2:3e:1b:73:00:83:9b:2a:
11:9b:e8:fa:98:75:02:5c:89:e5:d4:b5:43:43:ad:99:7e:ad:
84:7e:60:a8:43:f8:71:0d:61:9f:f1:ec:e4:96:99:c5:b1:53:
b7:49:39:f4:fd:88:25:9e:da:70:ec:ce:4b:19:25:8f:01:97:
0a:e8:fd:9e:5b:7c:16:5a:ff:5c:f2:8d:8a:cf:4d:f6:5a:ea:
74:79:7a:6d:ac:29:49:1f:41:a6:ab:96:5c:a8:e6:56:aa:f8:
dc:cd:c7:da:09:1e:0e:0b:b0:9d:ed:0f:18:ab:34:be:0d:ac:
2a:47:8e:07:58:7d:d0:10:8c:0c:ab:40:db:d0:b8:7b:b2:ae:
f4:75:ba:34:a2:7f:c6:ec:3a:33:d5:8a:fd:d5:24:fb:2f:00:
fc:be:a7:35:13:4b:0b:92:f9:f8:90:37:c2:75:95:2c:d3:bc:
6c:0d:a6:93:6c:2a:38:3c:9f:69:76:9e:b5:11:30:21:26:d6:
34:74:84:4f:b3:9a:d6:28:36:80:51:9b:11:d5:99:5d:69:e2:
10:63:62:84:76:96:46:c3:c1:fc:2b:4b:ff:96:64:19:6b:d8:
79:af:54:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 27 15:47:18 2023 by rpki-client on console-fra.rpki-client.org