Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/1-MzjoW006G_9epbji7jSoTJtM8.roa
File: 1-MzjoW006G_9epbji7jSoTJtM8.roa (raw, json)
Hash identifier: LcZuIDyWMjrxicRG6uf7hVJDpqVqqKnqF04N0+OC6dI=
Subject key identifier: D7:E3:33:8E:85:B4:D3:A1:BF:F5:EA:5B:8E:2E:E3:4A:84:C9:B4:CF
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 0192600089AEA1C4872F4A9034C4F9E7487B
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/1-MzjoW006G_9epbji7jSoTJtM8.roa
Signing time: Sun 06 Oct 2024 04:05:00 +0000
ROA not before: Sun 06 Oct 2024 04:05:00 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207252
IP address blocks: 5.83.152.0/24 maxlen: 24
77.90.12.0/24 maxlen: 24
77.90.22.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 28 Oct 2024 12:17:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:60:00:89:ae:a1:c4:87:2f:4a:90:34:c4:f9:e7:48:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Oct 6 04:05:00 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d7e3338e85b4d3a1bff5ea5b8e2ee34a84c9b4cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:c7:14:bd:90:86:d2:49:58:ac:a0:bb:e3:ab:
5e:f2:bb:08:f7:6f:f7:a6:45:ef:ab:f4:23:48:dc:
a5:c9:eb:34:8b:67:43:8a:ec:48:89:23:38:47:1f:
24:58:ea:d5:c2:37:31:e3:48:55:58:6b:45:3f:96:
d6:f9:2c:af:65:7e:fa:ee:53:8b:fa:00:35:20:3f:
93:0c:49:8c:44:a9:53:22:38:72:f5:0f:16:3d:f6:
af:0c:6d:d4:27:54:34:27:73:11:2a:fc:f1:78:f8:
8a:b5:29:d0:db:96:8c:a9:20:b5:9d:1b:d8:bf:7f:
a2:03:00:e2:e7:da:09:f2:34:59:2f:3b:8a:12:b3:
34:ba:e3:1a:1c:a6:7f:98:2e:e3:3a:02:e2:77:40:
92:38:91:2b:a9:bb:ab:fc:f4:fa:4e:b0:7c:e0:59:
00:c6:fd:09:85:ca:08:fd:6b:57:3c:eb:ca:d7:9d:
02:08:8c:50:be:e2:81:05:73:c4:af:7b:cb:1e:38:
f2:3d:49:bb:e2:ce:ff:69:ff:90:12:5e:07:87:81:
65:11:d8:e2:29:fd:ad:9c:e7:d9:f5:80:61:b2:2f:
02:d4:5b:80:28:ed:24:f0:b6:cc:be:73:3c:2b:12:
90:45:df:2d:a2:4f:4b:23:83:bd:8d:29:7f:ca:5c:
60:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:E3:33:8E:85:B4:D3:A1:BF:F5:EA:5B:8E:2E:E3:4A:84:C9:B4:CF
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/1-MzjoW006G_9epbji7jSoTJtM8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.152.0/24
77.90.12.0/24
77.90.22.0/24
Signature Algorithm: sha256WithRSAEncryption
56:e9:56:41:f9:1c:5b:4f:f3:81:ed:05:f9:9f:41:fb:55:35:
c4:1d:88:97:3c:aa:f5:b8:f0:72:eb:fe:e7:bf:e2:dc:97:15:
26:bf:80:d6:a4:2c:af:da:07:d9:03:67:47:07:af:e6:5a:cc:
84:9a:96:f0:ee:af:2e:98:45:c3:2c:de:9e:13:64:35:15:ab:
19:67:8f:a6:25:a4:ef:ed:5d:fe:20:ff:a5:eb:5c:cc:1a:df:
ac:bd:06:ec:58:5d:bf:24:52:d6:f4:f4:01:29:c3:33:46:57:
b8:89:0a:ea:46:26:ed:02:b2:f5:51:09:a7:d6:ee:ba:59:f5:
64:e4:07:c4:66:8c:80:3c:95:a6:d5:be:db:93:17:90:b1:b9:
11:de:03:68:af:b3:f8:19:73:f0:27:6a:65:31:37:5c:85:48:
8e:96:a2:3c:f6:18:c8:6a:94:d3:14:81:af:e0:bf:9f:2f:65:
29:70:ff:4d:75:48:a0:74:f3:2c:a9:47:e3:1b:dc:b6:4d:24:
a2:c2:fe:1f:8f:26:4c:2d:56:14:54:48:15:03:75:0d:4a:44:
25:ff:54:9c:d6:a2:48:03:71:91:d8:4a:bd:80:07:ff:9a:c4:
44:11:af:54:91:04:46:4b:81:22:d6:44:b4:9a:3b:11:5b:cf:
5b:71:d2:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 28 14:24:43 2024 by rpki-client on console-ams.rpki-client.org