Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/1F7SgLExR0r7PEzZBgvWMa9Z4E8.roa
File: 1F7SgLExR0r7PEzZBgvWMa9Z4E8.roa (raw, json)
Hash identifier: 18h2sj0ZU13WkGwaotscY67UUfc2Kj0b+hsX9rPf/5c=
Subject key identifier: D4:5E:D2:80:B1:31:47:4A:FB:3C:4C:D9:06:0B:D6:31:AF:59:E0:4F
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 01904A67CA7B32242F022D7222907C6F8F7F
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/1F7SgLExR0r7PEzZBgvWMa9Z4E8.roa
Signing time: Mon 24 Jun 2024 13:20:34 +0000
ROA not before: Mon 24 Jun 2024 13:20:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 59592
IP address blocks: 5.230.206.0/24 maxlen: 32
5.230.220.0/24 maxlen: 32
5.231.87.0/24 maxlen: 32
5.231.200.0/24 maxlen: 32
77.90.20.0/24 maxlen: 24
185.13.158.0/24 maxlen: 32
Validation: Failed, certificate revoked on Thu 04 Jul 2024 11:40:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:4a:67:ca:7b:32:24:2f:02:2d:72:22:90:7c:6f:8f:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Jun 24 13:20:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d45ed280b131474afb3c4cd9060bd631af59e04f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:fe:af:a1:24:7c:6e:4a:02:2f:44:39:9c:24:
e1:ab:66:d5:3e:49:ec:76:86:f7:73:aa:7e:96:46:
6f:cf:b7:18:03:a8:85:6f:37:28:27:2b:24:55:bf:
2b:77:da:4c:c1:6c:a6:2d:ae:9d:97:5b:b6:11:d8:
41:06:77:8b:3e:c8:46:61:22:95:8f:84:27:53:e2:
a2:5d:95:1b:f0:b8:74:6c:a1:d7:87:50:50:c8:67:
47:7f:9b:54:61:d6:eb:db:21:fc:3d:a7:8c:12:a8:
94:96:27:12:8a:36:ed:4e:48:f5:67:8c:f6:18:80:
3c:d2:77:03:78:d6:02:8c:70:bc:67:00:7c:3c:b4:
c2:b7:62:5b:ec:0e:f8:5b:e5:e2:24:6a:95:21:ad:
f3:7b:a8:f2:ec:27:e0:88:17:c9:8e:d4:98:6a:7f:
93:67:18:a1:68:f6:b5:39:9d:10:da:25:34:be:a3:
e5:8c:f9:5c:a4:f1:2c:53:c4:d5:97:1c:26:57:3d:
e3:0f:85:6a:3a:d5:bd:ac:50:bd:79:4e:1b:61:94:
84:52:6c:a1:5c:8f:f7:90:da:42:85:98:c9:37:80:
31:a8:48:65:50:84:cc:4a:d8:b7:d0:30:40:95:50:
c5:9b:da:7f:4c:30:11:e6:93:1e:7d:73:58:51:fd:
5e:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:5E:D2:80:B1:31:47:4A:FB:3C:4C:D9:06:0B:D6:31:AF:59:E0:4F
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/1F7SgLExR0r7PEzZBgvWMa9Z4E8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.230.206.0/24
5.230.220.0/24
5.231.87.0/24
5.231.200.0/24
77.90.20.0/24
185.13.158.0/24
Signature Algorithm: sha256WithRSAEncryption
24:f4:2b:b4:db:1d:07:3b:04:08:21:8f:e3:83:9d:99:b1:05:
f8:38:99:37:c4:01:c8:2f:07:69:d9:e8:44:41:e2:3c:dd:e2:
bc:e1:eb:ab:bb:cb:18:13:ba:30:3c:cc:47:ef:f1:db:b2:d0:
25:7c:b9:d2:36:9a:02:ea:5f:57:58:d8:2f:04:20:00:6e:1c:
b1:0b:f1:85:5f:51:c7:ed:9e:d5:a8:49:b5:42:4f:fe:b4:91:
36:c4:ee:fd:c2:31:f1:78:32:5c:b3:1a:2d:96:ed:eb:8a:b6:
66:26:78:c1:3f:1c:b0:1a:5c:3f:4e:29:9e:03:c2:69:41:15:
bf:de:b2:87:b7:bf:e4:4e:e8:88:f6:56:86:37:9a:16:ba:08:
9f:72:a1:39:78:de:c5:69:3b:0a:e6:55:6b:0e:36:db:b7:63:
49:ca:d8:21:92:cc:65:93:ed:16:8f:4d:c9:f8:d7:2b:3f:b3:
f1:a4:81:1a:04:ee:c1:72:db:06:83:d9:50:8f:34:da:aa:0e:
f7:bb:30:e3:c0:be:95:5c:7b:53:48:8d:0d:5f:a1:71:e8:7c:
3c:d7:95:da:ff:c8:19:2d:c4:7b:0d:f0:ab:ca:bc:fd:85:b4:
ba:57:40:5d:9c:30:c5:45:52:ac:63:a0:32:8b:8e:68:6c:f1:
74:37:3c:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 4 13:47:28 2024 by rpki-client on console-fra.rpki-client.org