Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/6KN5_PNVkpfkDisffcc66-1CRnU.roa
File: 6KN5_PNVkpfkDisffcc66-1CRnU.roa (raw, json)
Hash identifier: QpumfQRtpC84835FYUwRO3M3Lb3CvFsHvPbrmN03mRw=
Subject key identifier: E8:A3:79:FC:F3:55:92:97:E4:0E:2B:1F:7D:C7:3A:EB:ED:42:46:75
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 01943D92823A46084846870DB6D384255E12
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/6KN5_PNVkpfkDisffcc66-1CRnU.roa
Signing time: Mon 06 Jan 2025 21:43:19 +0000
ROA not before: Mon 06 Jan 2025 21:43:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 215365
IP address blocks: 5.231.253.0/24 maxlen: 24
77.90.60.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 09 Feb 2025 14:19:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:3d:92:82:3a:46:08:48:46:87:0d:b6:d3:84:25:5e:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Jan 6 21:43:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e8a379fcf3559297e40e2b1f7dc73aebed424675
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:81:cd:31:64:43:55:7c:3d:73:60:0d:dd:c6:
0d:37:34:6f:ce:de:91:ba:6b:dc:be:c5:b7:44:41:
15:0f:51:81:a0:80:6e:f8:63:e9:ad:14:d4:5a:6c:
92:af:ae:0d:3b:1a:16:c5:77:ff:c5:6c:55:08:8b:
28:0d:dd:9a:ca:26:1b:c0:48:8b:6b:0d:b5:8c:2d:
9a:82:55:1b:e4:c3:69:3f:5b:bb:95:33:34:5e:7e:
f5:c4:71:f2:8f:5f:7a:7e:db:ce:0a:7f:34:0c:5d:
a2:ed:76:a3:65:54:df:ca:d6:d0:95:32:c9:f8:fc:
25:7a:28:00:cd:d6:0f:20:25:9e:12:b5:8b:22:32:
1c:34:d4:0f:57:53:8c:62:9c:c9:f6:3b:8f:a9:fc:
14:00:1f:c8:9c:50:0f:46:4e:37:b3:69:f7:07:5c:
6c:ff:27:b9:1f:29:89:c0:8a:ac:1e:a5:ed:ae:b1:
d3:bb:06:2e:86:e3:f1:f9:b8:8c:23:06:bf:68:c2:
3a:0e:d7:c5:f4:c7:28:cd:82:84:ad:c8:22:4b:8b:
cb:f9:49:e6:c8:c7:80:06:8e:bd:0e:45:21:41:c3:
43:c5:3d:85:99:15:71:a1:40:b8:ff:b3:03:ca:73:
04:cf:d9:d1:d8:05:f0:f8:49:68:19:67:f0:03:55:
dc:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:A3:79:FC:F3:55:92:97:E4:0E:2B:1F:7D:C7:3A:EB:ED:42:46:75
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/6KN5_PNVkpfkDisffcc66-1CRnU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.231.253.0/24
77.90.60.0/24
Signature Algorithm: sha256WithRSAEncryption
44:77:40:5e:d4:6e:83:33:f9:e0:02:91:02:94:7f:80:6a:6d:
48:69:ca:e5:e4:b9:fc:f8:11:b0:8c:39:87:c4:cb:64:06:d8:
6e:61:84:8c:96:0d:5d:79:6f:81:8b:ed:c6:2a:34:32:e4:e4:
60:72:cc:33:4d:23:be:37:80:db:56:10:00:84:20:d1:14:de:
d9:32:5c:53:05:88:10:e2:7f:07:12:c4:cc:c5:e0:1a:16:0e:
80:ad:da:2a:a7:2e:08:9d:4a:af:42:f6:33:17:65:da:e3:70:
e1:4c:87:75:56:69:b7:fb:93:63:03:2a:1b:f9:a5:d2:17:bb:
d0:30:ca:3a:df:8c:5b:f1:48:61:02:eb:e3:f8:26:59:63:c8:
d7:44:6e:6c:fb:6b:8b:ff:a2:c4:1b:ce:a2:b3:fa:25:b2:29:
5f:2f:b6:9d:08:f9:a4:01:5e:91:cc:e8:e7:64:55:5c:a2:85:
37:85:c3:3d:83:08:b3:05:38:51:0e:96:27:d1:3b:b2:0b:92:
e6:f5:9d:36:50:a7:a3:ee:e7:1c:e5:a2:57:53:a3:89:77:f3:
26:c3:7f:76:fa:35:57:63:7e:68:a5:38:07:6d:1a:e1:7e:41:
fb:25:e9:d6:37:b7:18:7d:e1:3c:cc:dd:c0:10:c2:ac:93:0b:
a9:45:80:ee
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAZQ9koI6RghIRocNttOEJV4SMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNlNjA5NzY5ODY4NmUxNTU1ZjUxZjZjODgzYmM1YTU4NTQ5
YjIzNjIwHhcNMjUwMTA2MjE0MzE5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlOGEzNzlmY2YzNTU5Mjk3ZTQwZTJiMWY3ZGM3M2FlYmVkNDI0Njc1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4IHNMWRDVXw9c2AN3cYNNzRvzt6R
umvcvsW3REEVD1GBoIBu+GPprRTUWmySr64NOxoWxXf/xWxVCIsoDd2ayiYbwEiL
aw21jC2aglUb5MNpP1u7lTM0Xn71xHHyj196ftvOCn80DF2i7XajZVTfytbQlTLJ
+PwleigAzdYPICWeErWLIjIcNNQPV1OMYpzJ9juPqfwUAB/InFAPRk43s2n3B1xs
/ye5HymJwIqsHqXtrrHTuwYuhuPx+biMIwa/aMI6DtfF9McozYKErcgiS4vL+Unm
yMeABo69DkUhQcNDxT2FmRVxoUC4/7MDynMEz9nR2AXw+EloGWfwA1XcgwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFOijefzzVZKX5A4rH33HOuvtQkZ1MB8GA1UdIwQY
MBaAFD5gl2mGhuFVX1H2yIO8WlhUmyNiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGIt
ZTFiZDg4ZDNmZDA3LzEvNktONV9QTlZrcGZrRGlzZmZjYzY2LTFDUm5VLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGItZTFiZDg4ZDNmZDA3
LzEvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQABef9AwQA
TVo8MA0GCSqGSIb3DQEBCwUAA4IBAQBEd0Be1G6DM/ngApEClH+Aam1Iacrl5Ln8
+BGwjDmHxMtkBthuYYSMlg1deW+Bi+3GKjQy5ORgcswzTSO+N4DbVhAAhCDRFN7Z
MlxTBYgQ4n8HEsTMxeAaFg6Ardoqpy4InUqvQvYzF2Xa43DhTId1Vmm3+5NjAyob
+aXSF7vQMMo634xb8UhhAuvj+CZZY8jXRG5s+2uL/6LEG86is/olsilfL7adCPmk
AV6RzOjnZFVcooU3hcM9gwizBThRDpYn0TuyC5Lm9Z02UKej7ucc5aJXU6OJd/Mm
w392+jVXY35opTgHbRrhfkH7JenWN7cYfeE8zN3AEMKskwupRYDu
-----END CERTIFICATE-----
Generated at Sat Apr 12 02:32:12 2025 by rpki-client