Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/KBk5USeTZ4tn589wg6ofzYGw-gY.roa
File: KBk5USeTZ4tn589wg6ofzYGw-gY.roa (raw, json)
Hash identifier: NQBeRKj484z4883pUQwx6SjWaYCwer/g0Dri7W/ayRI=
Subject key identifier: 28:19:39:51:27:93:67:8B:67:E7:CF:70:83:AA:1F:CD:81:B0:FA:06
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 0192D31F9D1F167542F037CA49F3A74929A9
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/KBk5USeTZ4tn589wg6ofzYGw-gY.roa
Signing time: Mon 28 Oct 2024 12:35:17 +0000
ROA not before: Mon 28 Oct 2024 12:35:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207252
IP address blocks: 5.83.152.0/24 maxlen: 24
77.90.12.0/24 maxlen: 24
77.90.22.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 07 Nov 2024 05:14:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:d3:1f:9d:1f:16:75:42:f0:37:ca:49:f3:a7:49:29:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Oct 28 12:35:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=281939512793678b67e7cf7083aa1fcd81b0fa06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:ea:c5:9d:f9:ce:dc:9f:ab:62:0c:81:4c:13:
60:c5:42:7e:95:05:ce:32:f9:58:a8:da:8d:53:39:
e5:d4:48:bd:29:fa:fd:ef:78:d3:c6:17:4c:63:83:
39:e3:23:56:09:a1:eb:c5:c9:12:41:f0:d0:b3:dd:
11:35:7c:86:a6:27:6c:bd:e3:69:08:fc:27:1e:9e:
00:a4:a8:a5:18:6e:22:63:fa:60:de:c5:53:a1:c7:
7b:33:27:ee:8f:a2:d6:6f:dd:13:ea:37:e8:1b:9d:
69:c7:27:d5:9a:14:66:e7:de:fd:b6:91:c6:19:c1:
c9:d3:bd:82:6e:0a:fd:fe:b7:6f:85:e2:e9:02:8f:
e3:5f:52:d0:49:35:b9:ea:01:7b:11:ae:13:4e:48:
16:98:d7:e2:06:e9:c4:5e:cf:60:89:0a:70:8a:66:
f3:0d:e2:45:b4:c6:25:6a:94:6f:58:88:69:58:c7:
d3:95:08:8e:ab:c9:75:6a:45:62:33:4a:aa:87:5e:
df:cf:74:2b:14:0d:ed:82:5b:3b:65:69:6e:6a:07:
d2:79:7f:fa:bc:13:a8:f5:3c:5b:79:1e:1d:8c:44:
d2:58:61:94:76:88:80:a0:20:dc:6c:18:90:75:93:
6e:78:8e:ab:ce:71:03:f8:f0:d1:31:b5:b0:16:5d:
de:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:19:39:51:27:93:67:8B:67:E7:CF:70:83:AA:1F:CD:81:B0:FA:06
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/KBk5USeTZ4tn589wg6ofzYGw-gY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.152.0/24
77.90.12.0/24
77.90.22.0/24
Signature Algorithm: sha256WithRSAEncryption
cd:55:14:98:b2:6a:3f:7b:57:b1:16:87:42:11:ec:4c:67:e6:
b8:28:3b:c8:38:1b:28:7e:38:c1:8c:94:b2:f1:b0:82:2b:79:
bd:b1:3b:4f:29:3f:0e:7b:1f:ec:c8:0c:d2:81:d1:d8:96:f2:
1e:fa:1a:7d:b9:be:32:c1:9b:ce:cd:a6:b5:46:3a:85:35:3c:
7b:66:10:73:21:7f:8f:2b:9e:78:66:87:a3:26:99:2e:1e:cb:
97:ae:86:96:fa:39:67:33:ed:36:1a:bc:ff:fe:47:c9:bf:7a:
cb:c2:43:e6:d9:a8:74:50:8e:27:6e:fe:e9:f0:73:85:59:c3:
73:35:53:7f:ba:9f:be:86:67:91:2a:9e:93:a2:3f:ec:b9:b8:
f5:8d:55:44:5a:fa:7a:d1:72:62:e7:5f:02:cc:db:9a:58:ec:
fa:61:64:63:7e:c7:5b:9f:8f:78:64:f8:d8:31:25:bb:38:f5:
f3:2e:28:a0:cb:55:92:59:09:7a:42:fb:e4:06:d1:ed:a7:08:
a3:d3:a3:b5:b1:ee:1f:a4:b3:2c:4f:f1:14:80:95:42:bb:e9:
a9:b6:5f:4c:85:06:d0:65:89:a2:5e:c2:58:7e:f4:b3:98:0d:
c1:d3:8b:95:0f:02:23:2d:fd:60:1b:62:88:3b:44:96:89:b9:
ba:a6:ab:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 7 08:46:55 2024 by rpki-client on console-ams.rpki-client.org