Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/Bzd6hnOxNcYv-55fQDRXfnJxmNM.roa
File: Bzd6hnOxNcYv-55fQDRXfnJxmNM.roa (raw, json)
Hash identifier: QIX7aAPYRt3rDsO+M03B3VjkRHlA22HaBSbEKyCRPp4=
Subject key identifier: 07:37:7A:86:73:B1:35:C6:2F:FB:9E:5F:40:34:57:7E:72:71:98:D3
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 0192C706620F9D61DA0449C6B45C4EE84CF1
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/Bzd6hnOxNcYv-55fQDRXfnJxmNM.roa
Signing time: Sat 26 Oct 2024 04:12:17 +0000
ROA not before: Sat 26 Oct 2024 04:12:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214347
IP address blocks: 5.83.153.0/24 maxlen: 24
5.83.154.0/24 maxlen: 24
77.90.44.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 27 Oct 2024 04:05:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:c7:06:62:0f:9d:61:da:04:49:c6:b4:5c:4e:e8:4c:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Oct 26 04:12:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=07377a8673b135c62ffb9e5f4034577e727198d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:37:c1:5e:78:88:75:c4:a3:cd:83:38:e3:39:
95:ad:52:eb:f5:77:bc:1f:40:0c:9a:5f:00:18:04:
bc:15:6a:b6:ea:22:f1:2c:3e:bd:67:2b:b7:5f:e9:
50:f2:16:4f:db:0a:9f:4d:df:c8:33:91:1e:df:56:
1e:1b:a2:2a:0b:5f:48:f1:eb:81:bd:2b:27:03:3b:
c3:0c:eb:7f:f5:49:88:21:6d:2c:93:a9:8b:73:d0:
55:aa:d4:11:41:73:d3:f0:33:6e:b0:8d:8c:36:9b:
dc:66:6a:15:30:9a:d6:b1:d2:6e:9f:cf:7b:c0:a5:
0a:0f:09:55:c2:16:b1:12:cc:b2:9e:26:e5:12:d7:
5c:44:38:d0:c5:2a:73:51:60:04:18:71:a1:79:ba:
70:1a:5d:72:d9:36:e4:27:b1:0b:e9:c5:ff:2b:79:
c7:9b:48:41:73:51:31:95:e3:3e:d1:dc:e6:72:05:
09:a3:15:d1:e8:ac:d0:ca:c5:af:e4:e9:99:f1:cc:
3f:65:d6:b5:93:c2:5f:df:2e:53:76:49:10:3b:bf:
d5:0c:b2:56:24:fb:19:2c:f4:af:34:4a:86:9c:3f:
e6:34:d4:13:c8:da:e4:dd:6c:45:34:bd:8d:17:cc:
3d:5c:dc:ed:4b:26:37:1b:4c:92:da:b4:60:a7:dc:
b6:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:37:7A:86:73:B1:35:C6:2F:FB:9E:5F:40:34:57:7E:72:71:98:D3
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/Bzd6hnOxNcYv-55fQDRXfnJxmNM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.153.0-5.83.154.255
77.90.44.0/24
Signature Algorithm: sha256WithRSAEncryption
21:b2:ae:62:22:d9:76:80:72:cd:88:6a:67:24:47:fe:dd:88:
ec:85:91:9d:4a:e8:46:19:8d:8b:06:b0:9b:ae:02:e6:4d:e0:
e7:6c:01:fb:d0:8a:7e:e0:6e:c6:da:0e:bd:ea:ab:f0:36:f5:
f1:72:c6:5d:7a:24:a8:2e:df:8f:78:63:a5:4e:26:eb:56:23:
88:d1:f5:60:73:82:eb:95:83:33:57:d1:95:a0:3e:cc:1e:1e:
ad:5f:b4:08:22:31:d7:74:e3:18:6d:5a:cd:05:de:38:4d:bc:
f7:41:b3:0b:7c:db:d1:de:3f:c2:85:1d:57:02:7b:73:3f:b9:
b8:55:1d:55:7c:46:1b:7f:6f:71:65:40:c4:dc:9c:11:14:17:
53:bb:b7:5a:a1:d6:c6:75:81:48:27:cd:51:3c:5b:80:e1:98:
ea:14:a7:c4:11:3b:21:3a:4a:37:5e:05:28:38:3d:86:a3:7f:
eb:2a:19:da:5b:54:c7:4f:4b:88:88:a2:83:cb:7e:c0:c8:0c:
97:dd:2b:d6:78:c1:00:12:61:1d:2e:41:f7:fb:33:f9:bf:58:
8c:8b:07:4e:94:16:26:ef:58:e3:9c:81:06:92:79:7e:0f:d1:
f3:ff:cb:3c:87:f0:af:e2:f4:65:3a:9a:64:0d:9a:18:e5:a6:
c6:34:77:37
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sun Oct 27 06:31:41 2024 by rpki-client on console-ams.rpki-client.org