Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/3KV2a4SYnPvIEcZxJBWaSjYuy3s.roa
File: 3KV2a4SYnPvIEcZxJBWaSjYuy3s.roa (raw, json)
Hash identifier: zcVquFOWjupopDz8e1AP8R6yBlqNYW1xeLgjPAqUhSs=
Subject key identifier: DC:A5:76:6B:84:98:9C:FB:C8:11:C6:71:24:15:9A:4A:36:2E:CB:7B
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 0192D649DA309133DE731FED8B0EDE77211D
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/3KV2a4SYnPvIEcZxJBWaSjYuy3s.roa
Signing time: Tue 29 Oct 2024 03:20:17 +0000
ROA not before: Tue 29 Oct 2024 03:20:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 58212
IP address blocks: 5.83.150.0/24 maxlen: 24
77.90.7.0/24 maxlen: 24
77.90.29.0/24 maxlen: 24
77.90.39.0/24 maxlen: 24
77.90.41.0/24 maxlen: 24
77.90.52.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 06 Nov 2024 14:31:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:d6:49:da:30:91:33:de:73:1f:ed:8b:0e:de:77:21:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Oct 29 03:20:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=dca5766b84989cfbc811c67124159a4a362ecb7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:aa:f2:b1:32:31:e3:2e:8b:57:87:23:16:cf:
1d:68:98:0f:8a:f4:e1:8e:86:6a:82:29:0d:dd:88:
15:a1:ea:8f:22:a0:1c:67:3c:a9:f4:c6:ae:e4:17:
66:7c:c1:21:9b:63:6e:4a:ff:ba:c6:6d:5d:68:cb:
12:63:d9:bb:49:e3:67:6a:da:0b:26:43:02:22:35:
4d:36:a7:76:51:af:89:55:fa:cf:5d:a5:3d:57:e2:
ba:78:a1:9b:30:b9:cb:d1:42:b4:06:e4:9b:13:2a:
fe:ef:f0:b2:b1:68:e5:d9:ee:4e:0f:0b:67:80:5a:
f0:db:05:2a:63:64:1a:d0:77:ee:48:72:e5:c4:08:
1a:ff:bb:ad:25:1b:d7:36:ea:61:80:8f:00:7d:45:
fb:dc:e6:9f:7f:a6:5b:f1:68:de:05:7b:ff:a9:be:
0d:bd:ae:8f:ec:9e:c7:e1:1d:0c:b3:f2:e4:b0:e9:
f0:7d:3f:8e:89:92:6d:63:1c:b6:30:ec:c3:81:c3:
a8:eb:5f:b2:0d:09:a0:b6:e6:18:68:7b:f5:b3:3e:
9c:a8:63:90:1c:33:1b:b3:d6:d6:e6:2c:ab:2a:d9:
2b:1b:74:72:f3:bc:28:f7:30:ac:82:d8:2e:a9:3f:
d4:e2:32:c5:06:69:30:0d:04:f7:4e:44:5b:2d:c4:
fd:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:A5:76:6B:84:98:9C:FB:C8:11:C6:71:24:15:9A:4A:36:2E:CB:7B
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/3KV2a4SYnPvIEcZxJBWaSjYuy3s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.150.0/24
77.90.7.0/24
77.90.29.0/24
77.90.39.0/24
77.90.41.0/24
77.90.52.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:5c:58:c1:65:1d:ec:64:ba:78:91:3d:0d:c0:95:7f:67:75:
e3:34:0c:d4:e3:03:6d:30:0d:86:d8:97:2e:f8:b8:f5:f1:bf:
03:ad:c2:33:cb:ba:34:95:83:67:46:48:ed:ea:60:e3:55:e8:
4d:e6:39:fc:62:bc:95:11:a7:92:bc:25:e1:ec:06:c6:fd:11:
47:80:ec:44:22:ee:b5:6b:8b:f7:33:ba:01:82:31:d5:ec:83:
48:75:b2:9d:4b:a6:a0:ee:a8:51:70:74:58:07:b8:09:46:c8:
ce:dc:1c:bd:e7:2e:6f:3b:5d:e1:ea:01:0b:65:54:41:ac:bf:
48:df:a2:1e:e7:ec:8d:c1:6a:b0:46:a0:56:cc:6b:9c:df:f7:
d5:77:a4:59:04:83:c9:48:b2:1a:7d:87:af:61:f8:d5:0d:6b:
76:a9:27:21:ed:95:7f:5e:51:84:c9:21:23:f9:7d:35:93:6d:
7d:0c:91:3e:4d:98:b2:92:7f:fd:ff:ce:6c:4f:77:e6:de:e2:
e1:09:62:86:b0:34:fc:51:ab:89:9c:22:76:6b:fe:6f:78:7a:
8b:1f:09:96:55:fe:34:48:41:7f:37:97:5f:55:90:9e:ce:7d:
6d:c0:73:13:ee:b8:13:f0:9e:46:7d:56:1d:32:16:ae:0a:31:
b4:1d:74:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 6 18:35:51 2024 by rpki-client on console-fra.rpki-client.org