Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/I0LRcxfwJkQUZC57moQgBPHmUSY.roa
File: I0LRcxfwJkQUZC57moQgBPHmUSY.roa (raw, json)
Hash identifier: kXZzKRNpHrXpTV3Mjqcd/g/MAItWKd0wyjKH/SQ90gc=
Subject key identifier: 23:42:D1:73:17:F0:26:44:14:64:2E:7B:9A:84:20:04:F1:E6:51:26
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 0192292A933ED16AE1D7ED24268373C4BA04
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/I0LRcxfwJkQUZC57moQgBPHmUSY.roa
Signing time: Wed 25 Sep 2024 12:31:48 +0000
ROA not before: Wed 25 Sep 2024 12:31:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44477
IP address blocks: 5.83.148.0/24 maxlen: 24
5.175.132.0/24 maxlen: 24
5.175.137.0/24 maxlen: 24
5.230.5.0/24 maxlen: 24
5.230.9.0/24 maxlen: 24
5.231.23.0/24 maxlen: 24
5.231.32.0/24 maxlen: 24
5.231.36.0/24 maxlen: 24
5.231.41.0/24 maxlen: 24
5.231.44.0/24 maxlen: 24
5.231.60.0/24 maxlen: 24
5.231.63.0/24 maxlen: 24
5.231.69.0/24 maxlen: 24
5.231.76.0/24 maxlen: 24
5.231.80.0/24 maxlen: 24
178.18.146.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 13 Nov 2024 09:51:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:29:2a:93:3e:d1:6a:e1:d7:ed:24:26:83:73:c4:ba:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Sep 25 12:31:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2342d17317f0264414642e7b9a842004f1e65126
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:6a:75:92:88:c2:e1:61:48:50:8d:46:f3:67:
8a:46:32:e0:8d:9c:af:c7:82:6e:aa:b8:17:90:07:
25:63:97:ed:b9:b4:d7:e9:02:c7:8a:85:b8:d1:ae:
53:f8:c8:4a:92:e4:6d:1b:e7:f9:12:9a:44:4b:ac:
de:e7:45:80:b6:2d:99:cb:d7:3a:8f:70:b4:4b:71:
00:1e:95:bb:d6:94:02:4c:3e:46:80:aa:5c:bf:ff:
2f:70:98:61:d3:9e:09:1b:a6:b4:83:5c:dc:2f:2c:
bc:55:1c:aa:a2:19:d4:98:c3:ad:62:44:69:a6:a7:
94:07:ee:31:59:7d:09:17:46:b1:f1:7e:d6:e4:aa:
10:58:32:27:99:7a:58:7f:bd:d6:4e:83:fb:a5:1d:
7c:ae:ff:2a:f7:0f:d0:c5:6e:e4:fc:69:a4:b7:4d:
7d:a0:34:b7:68:4d:81:3e:e5:f8:43:6d:0e:9d:b7:
61:95:34:2b:f1:a2:1a:e2:cc:d9:46:3f:d2:7a:2b:
ae:b3:f9:d3:a8:3a:28:95:e2:40:4d:14:e7:38:4d:
d4:a5:55:5e:8e:0c:1a:a4:bd:4a:b5:79:3f:2f:99:
0a:d5:7d:c9:78:2e:5b:61:52:1e:db:de:12:89:be:
f2:c2:1b:28:2b:c0:af:74:3d:aa:98:f8:a8:84:35:
dc:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:42:D1:73:17:F0:26:44:14:64:2E:7B:9A:84:20:04:F1:E6:51:26
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/I0LRcxfwJkQUZC57moQgBPHmUSY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.148.0/24
5.175.132.0/24
5.175.137.0/24
5.230.5.0/24
5.230.9.0/24
5.231.23.0/24
5.231.32.0/24
5.231.36.0/24
5.231.41.0/24
5.231.44.0/24
5.231.60.0/24
5.231.63.0/24
5.231.69.0/24
5.231.76.0/24
5.231.80.0/24
178.18.146.0/24
Signature Algorithm: sha256WithRSAEncryption
68:d7:36:a3:51:6e:a3:f7:68:17:79:e5:80:b7:4c:fc:09:57:
c6:31:01:5e:6f:c8:63:27:fe:bc:82:9f:34:e6:57:09:50:c5:
fa:c4:50:3b:c4:49:01:4f:a7:a4:bf:98:5d:28:d7:cc:79:2d:
7e:c2:dd:b8:64:b9:54:04:01:d1:f7:33:51:06:e1:80:d3:a3:
42:66:c1:31:55:ff:99:32:a7:b3:4b:b9:aa:de:20:d4:95:d3:
70:2d:eb:ed:36:a7:ee:9c:bb:1f:5b:4c:64:88:ef:9c:de:0d:
d0:8c:1d:b8:b5:36:73:89:70:8b:5b:21:43:bc:ce:1f:43:bb:
d4:ad:c6:9f:6e:4d:46:2b:f6:62:79:cd:8c:3d:db:ed:fe:a2:
a3:2d:53:40:65:e7:ef:7e:c6:f3:29:71:ba:da:d2:0a:a5:1b:
69:62:3c:97:30:90:e2:ef:39:2f:b7:ea:22:a0:d1:a8:16:2c:
6c:1f:67:ea:09:bb:bc:38:20:08:65:fc:66:8b:e3:aa:ba:0b:
77:3e:75:d3:5c:cb:b2:ba:73:2c:89:42:bb:d5:e0:d0:b4:b1:
c7:7f:df:20:e4:22:da:46:41:41:fa:3e:cf:2a:98:ab:0b:fe:
48:ec:a7:13:b1:44:12:45:3f:43:39:f0:76:fa:8b:a7:9d:5f:
fa:df:10:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 13 14:06:16 2024 by rpki-client on console-ams.rpki-client.org