Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/e64148-4c8c-4e84-925b-e022e3009a71/1/o7TXUZ4CJn48gGG24uuZdzL8xRA.roa
File: o7TXUZ4CJn48gGG24uuZdzL8xRA.roa (raw, json)
Hash identifier: ZmW6Gn2sqwkmNGfblhv4TmxeP1pNQ9E6stI5ZKXqBkc=
Subject key identifier: A3:B4:D7:51:9E:02:26:7E:3C:80:61:B6:E2:EB:99:77:32:FC:C5:10
Certificate issuer: /CN=8069d9ffe048a70003f16f06e24d9bf2db85eb52
Certificate serial: 01938CEBE4AACDED069122E43A63622032E9
Authority key identifier: 80:69:D9:FF:E0:48:A7:00:03:F1:6F:06:E2:4D:9B:F2:DB:85:EB:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gGnZ_-BIpwAD8W8G4k2b8tuF61I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/e64148-4c8c-4e84-925b-e022e3009a71/1/o7TXUZ4CJn48gGG24uuZdzL8xRA.roa
Signing time: Tue 03 Dec 2024 14:28:09 +0000
ROA not before: Tue 03 Dec 2024 14:28:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 201032
IP address blocks: 185.77.90.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 19 Dec 2024 13:18:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:8c:eb:e4:aa:cd:ed:06:91:22:e4:3a:63:62:20:32:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8069d9ffe048a70003f16f06e24d9bf2db85eb52
Validity
Not Before: Dec 3 14:28:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a3b4d7519e02267e3c8061b6e2eb997732fcc510
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:6e:6a:74:4b:9a:38:51:39:f3:2b:45:d8:ff:
69:6a:bf:f4:e0:1f:35:9b:a5:7d:ce:76:75:bb:a3:
40:44:e7:f8:62:1e:c2:66:6d:af:ef:34:12:7b:56:
ed:79:25:e0:5f:20:bb:76:03:79:3d:5c:4c:98:f9:
f3:3b:66:6c:79:34:7d:9e:24:6f:a4:34:e5:de:f3:
d5:f1:e0:91:d0:a3:60:ad:af:a8:8a:26:08:23:ad:
d2:99:95:27:54:06:c6:62:6a:98:00:ae:3e:c6:06:
58:45:20:b4:4a:2e:99:0e:e2:b8:4c:fb:13:f6:cd:
42:3b:6c:51:36:7a:e2:2e:60:43:f4:65:2e:dd:a2:
0f:28:0a:d0:86:fb:68:a9:5d:3f:99:e2:70:0e:a5:
4f:b2:c3:7d:8b:77:2d:46:52:f3:15:93:16:9f:fb:
46:b4:0f:20:d4:92:99:68:da:e4:67:73:cc:3c:3a:
c1:96:f7:07:aa:fe:50:70:31:b2:8d:8e:47:8b:49:
ef:9d:0a:1f:3c:fb:79:ae:9c:5a:ad:1a:02:77:a9:
3c:89:2b:42:77:bf:57:40:5d:22:52:30:26:c8:e3:
fd:17:ff:ee:b2:ae:41:68:c5:5d:be:73:57:f6:68:
4b:c6:d9:16:53:14:ee:76:5f:d0:5d:8c:af:c2:c4:
a2:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:B4:D7:51:9E:02:26:7E:3C:80:61:B6:E2:EB:99:77:32:FC:C5:10
X509v3 Authority Key Identifier:
keyid:80:69:D9:FF:E0:48:A7:00:03:F1:6F:06:E2:4D:9B:F2:DB:85:EB:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gGnZ_-BIpwAD8W8G4k2b8tuF61I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/e64148-4c8c-4e84-925b-e022e3009a71/1/o7TXUZ4CJn48gGG24uuZdzL8xRA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/e64148-4c8c-4e84-925b-e022e3009a71/1/gGnZ_-BIpwAD8W8G4k2b8tuF61I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.77.90.0/24
Signature Algorithm: sha256WithRSAEncryption
b8:bd:b1:7e:d1:b0:63:36:27:92:73:82:80:65:7d:81:8b:e4:
19:41:98:85:ef:a1:16:e0:f3:cb:e0:4c:a4:e5:c2:f0:55:53:
2c:fb:49:14:21:f9:7a:f8:97:ff:ac:32:15:2f:ae:cb:c9:a8:
25:05:f3:d3:0d:00:cc:3e:48:29:e9:f8:8d:f3:32:a2:79:80:
dc:8f:a6:7a:55:f0:58:ae:dd:f3:a9:87:9a:55:49:ad:87:d5:
13:3f:32:50:07:eb:1d:9e:29:3c:96:dc:67:3f:fd:c0:17:28:
18:29:81:18:d0:39:2f:48:8d:f5:4d:8b:69:30:57:74:7d:0f:
52:8d:3f:07:8a:68:65:66:6c:03:f9:c5:0b:3b:8f:e9:f9:8b:
a9:7a:97:04:a2:e8:b1:bf:78:51:76:17:ef:4d:3a:c7:79:e5:
30:31:46:25:b3:28:69:06:65:c2:da:95:13:bc:91:c7:97:10:
68:63:c8:53:76:35:e5:0b:5b:2a:8e:47:bb:a2:08:6c:1d:30:
8e:b3:6a:47:d6:cf:d5:06:f5:54:cd:a7:a0:e8:07:98:f2:15:
8c:72:59:56:58:ec:3e:79:03:91:89:a3:56:4b:7a:2d:c2:74:
12:e0:a8:65:e8:0e:95:fd:76:4e:4c:64:a0:64:0e:61:9b:a1:
31:c5:97:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 04:10:27 2025 by rpki-client