Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/0cHQG9HLwD1ken4f8m6ifk1qdok.roa
File: 0cHQG9HLwD1ken4f8m6ifk1qdok.roa (raw, json)
Hash identifier: Jwp6+srd/BfrdFrvpBinE5UA5XgK6TIYG3hKp6n/v+Y=
Subject key identifier: D1:C1:D0:1B:D1:CB:C0:3D:64:7A:7E:1F:F2:6E:A2:7E:4D:6A:76:89
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 019085A283705DAB0C12359B2DFFC7790642
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/0cHQG9HLwD1ken4f8m6ifk1qdok.roa
Signing time: Sat 06 Jul 2024 01:22:18 +0000
ROA not before: Sat 06 Jul 2024 01:22:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216084
IP address blocks: 5.83.155.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 06 Jul 2024 12:19:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:85:a2:83:70:5d:ab:0c:12:35:9b:2d:ff:c7:79:06:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Jul 6 01:22:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d1c1d01bd1cbc03d647a7e1ff26ea27e4d6a7689
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:f7:5f:d0:1f:b4:11:12:fb:35:a0:78:46:3a:
df:af:47:a0:d0:2c:51:7d:5a:88:1f:ad:30:2d:25:
37:0b:51:0b:f6:0b:fe:6e:a6:42:5c:b9:d0:d4:c4:
85:44:ed:66:c1:ce:20:f0:80:9f:43:7b:d4:64:75:
99:c6:8e:86:12:2a:2c:3f:38:e9:a4:2c:e9:f4:c4:
aa:87:23:94:8b:45:99:6a:43:e0:34:22:a0:7e:39:
df:f5:e6:a0:ba:8d:47:63:f3:db:25:85:e1:f4:bb:
fd:37:9d:45:10:79:90:5a:8c:e1:7f:6a:32:24:3c:
bb:85:f3:f8:d6:c9:15:bf:d0:76:c3:46:ad:36:fe:
b4:70:23:a7:89:e4:73:e8:ce:28:d4:2e:1c:c4:04:
f4:99:f9:7e:28:4d:08:c2:35:b2:5f:10:da:62:8d:
8a:c5:57:98:61:09:5c:20:5f:a7:12:a8:a5:48:25:
13:b1:23:c1:1c:c8:2d:91:fe:80:5a:3b:ce:2c:e6:
75:e1:8f:a9:b7:43:2c:9d:5c:f2:f7:d6:93:76:0b:
a1:f8:10:05:5e:c9:fc:e2:82:e9:f8:dd:10:2a:69:
1a:21:2c:59:92:84:54:01:13:16:dc:ea:59:67:fc:
5b:65:4a:ed:17:48:e9:ad:1e:8b:9f:e7:e6:f5:b7:
f0:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:C1:D0:1B:D1:CB:C0:3D:64:7A:7E:1F:F2:6E:A2:7E:4D:6A:76:89
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/0cHQG9HLwD1ken4f8m6ifk1qdok.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.155.0/24
Signature Algorithm: sha256WithRSAEncryption
87:c0:07:ab:f1:da:ea:06:6f:3a:f4:e8:d9:ac:9f:0b:4f:60:
0c:ed:73:15:7a:3f:2d:39:ce:82:71:c9:7c:8a:99:50:7a:fe:
d1:42:12:1a:4f:2a:a6:4c:7b:92:f9:12:4e:19:aa:37:05:fe:
8e:92:ee:0f:7e:7a:24:4e:8c:ba:8a:09:6a:d0:38:08:0c:4a:
09:b0:52:e1:84:1a:83:e5:bf:c6:c5:17:f6:a7:04:bc:2e:2e:
97:24:bf:f8:2a:2a:7e:f0:34:22:99:ae:f4:b8:53:61:08:93:
5c:2b:c0:ed:fe:ee:61:5b:ab:78:87:a3:0f:8b:ca:7e:b1:58:
20:7b:51:e6:51:8a:f6:fc:fb:45:03:fc:25:50:ad:be:f9:5e:
d1:7b:c9:79:5e:f0:a6:89:b6:70:d7:c0:2c:24:c7:f8:f4:25:
95:b0:c0:6d:d8:a6:f7:5f:7d:9a:e7:68:de:e3:e0:8a:dd:11:
83:d0:8b:0f:70:ca:e9:6c:25:f9:48:37:41:c1:97:b5:12:b8:
e3:ed:44:40:28:0f:d8:c8:e6:52:53:8d:40:d7:0b:55:d5:b3:
4c:d3:1a:3c:9d:02:28:6c:18:66:0c:1b:7b:a8:95:73:6d:50:
a0:42:46:3a:a1:86:3a:a9:1d:e9:9a:99:29:75:ee:1b:c5:d6:
b7:5b:5b:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 6 13:14:49 2024 by rpki-client on console-ams.rpki-client.org