Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/2uSYS7VsLtTA35v3jUeIUo1QSME.roa
File: 2uSYS7VsLtTA35v3jUeIUo1QSME.roa (raw, json)
Hash identifier: uTMKZrOrAfZlAhUD3V4QmMt9wwzGCxgyQP4O46LIZaQ=
Subject key identifier: DA:E4:98:4B:B5:6C:2E:D4:C0:DF:9B:F7:8D:47:88:52:8D:50:48:C1
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 0194222001F85524D43CF81D4C28F2DA0498
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/2uSYS7VsLtTA35v3jUeIUo1QSME.roa
Signing time: Wed 01 Jan 2025 13:48:30 +0000
ROA not before: Wed 01 Jan 2025 13:48:30 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 49581
IP address blocks: 5.83.134.0/24 maxlen: 24
5.231.25.0/24 maxlen: 24
5.231.70.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 08 Jan 2025 05:15:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:20:01:f8:55:24:d4:3c:f8:1d:4c:28:f2:da:04:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Jan 1 13:48:30 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=dae4984bb56c2ed4c0df9bf78d4788528d5048c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:3d:1e:6e:d7:3b:33:01:15:55:5a:0e:ab:65:
a2:c3:7c:3a:b8:8f:ca:d4:32:b3:f0:e7:18:17:c5:
ed:86:5c:9f:ad:27:35:99:c1:db:fb:7a:0a:a2:4f:
2b:cc:e2:8a:ad:ec:02:1c:73:92:b1:00:ff:73:63:
ae:37:8c:24:66:33:7b:3f:56:c0:9a:e5:ab:2d:e5:
a5:97:74:96:3a:02:f1:4b:10:07:e6:28:ce:50:ef:
f4:39:65:cc:8d:c1:b8:2d:92:6a:98:6b:e0:03:1c:
c1:8f:58:29:64:3c:f6:84:d5:ee:26:d5:cd:cd:0a:
e0:ba:a1:3f:bc:d2:69:15:6e:80:c1:d7:a7:d7:7f:
c5:32:a5:22:c9:c4:62:03:a9:91:09:24:43:77:f6:
d8:20:e1:e7:f1:25:08:7e:d5:d0:ff:ff:e5:b0:27:
4b:cc:ec:ce:63:66:e0:bc:9c:6c:4c:1d:76:b7:60:
6a:ec:d2:27:5f:e9:20:82:d4:48:94:e6:fc:03:e6:
44:93:c8:9f:fe:25:e2:f5:f7:b1:ab:fb:ef:ae:fc:
e8:4b:0d:3b:c8:ef:a0:36:33:f3:16:44:92:9e:77:
42:89:7f:b9:97:77:2a:7c:26:a4:62:31:74:d1:1c:
71:01:8d:83:2d:6e:bc:a4:16:e8:5b:0a:80:88:43:
d2:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:E4:98:4B:B5:6C:2E:D4:C0:DF:9B:F7:8D:47:88:52:8D:50:48:C1
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/2uSYS7VsLtTA35v3jUeIUo1QSME.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.134.0/24
5.231.25.0/24
5.231.70.0/24
Signature Algorithm: sha256WithRSAEncryption
74:48:92:ba:0d:ba:35:26:92:f8:d7:2b:1e:8d:31:40:c3:24:
51:3f:a0:f2:e0:24:b6:6e:90:f0:9d:ae:7f:2f:0e:93:ad:0f:
d9:4e:0e:7f:97:34:f4:d9:6e:08:de:99:0d:8e:92:04:57:19:
0d:88:e1:15:ca:b3:85:66:1f:3b:8c:61:ea:d4:3e:6f:46:36:
2c:07:be:93:89:ed:0a:ff:db:69:24:4a:30:34:97:71:32:2b:
73:c6:11:ef:b6:50:0b:3f:01:ad:8c:47:da:fb:78:15:4c:ac:
62:01:30:75:d5:5b:1d:4d:c6:5d:93:b2:13:0d:68:5f:d0:15:
1a:12:95:aa:46:e6:33:8b:99:3f:25:54:35:80:a4:b3:b0:39:
7f:f2:02:6d:85:ef:2a:93:69:cf:b5:84:9c:3e:fd:f9:73:f8:
f7:87:0f:ba:7c:11:d9:56:8e:ac:d8:3e:6b:33:26:20:53:18:
c2:40:1b:cf:f9:79:3d:e4:73:b3:4e:10:c2:0c:7a:8b:78:8d:
c9:c3:29:3c:27:63:63:c8:44:41:46:a7:4c:fb:91:fb:ec:e2:
d5:20:ea:74:49:d0:5b:23:38:00:ea:ec:9d:44:f5:18:c7:07:
f3:a1:88:79:85:0e:26:4f:6a:ca:f1:12:75:c2:41:25:c6:64:
72:26:a2:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 02:30:18 2025 by rpki-client