Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/MQDahPbY0O_qdeZWrICoRht9U-M.roa
File: MQDahPbY0O_qdeZWrICoRht9U-M.roa (raw, json)
Hash identifier: aBrKp3TlHu4miFEywTYrs7gpBm/N4eV208av7+JbHGQ=
Subject key identifier: 31:00:DA:84:F6:D8:D0:EF:EA:75:E6:56:AC:80:A8:46:1B:7D:53:E3
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 01935C95A108441E84776E8C1F77B6F51B8D
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/MQDahPbY0O_qdeZWrICoRht9U-M.roa
Signing time: Sun 24 Nov 2024 05:12:10 +0000
ROA not before: Sun 24 Nov 2024 05:12:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214347
IP address blocks: 5.83.138.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 26 Nov 2024 05:11:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:5c:95:a1:08:44:1e:84:77:6e:8c:1f:77:b6:f5:1b:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Nov 24 05:12:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3100da84f6d8d0efea75e656ac80a8461b7d53e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:cf:25:c7:b7:a3:96:d2:7b:1a:34:0b:b7:90:
a0:19:f9:d7:57:bc:92:92:89:47:6f:55:95:1c:bd:
f5:76:e2:73:27:06:a6:e5:9d:dc:b2:95:38:4a:07:
5b:14:01:fd:a6:62:9c:83:96:3a:b5:c9:ab:fa:a9:
89:fa:f4:8a:9a:60:21:5f:16:80:33:d2:11:33:fb:
42:c0:e0:6e:b5:98:bb:10:44:95:1e:cc:9f:97:21:
c0:f6:d4:f9:6e:60:f7:4d:f0:1c:e2:9a:e7:dc:3f:
58:7e:71:1c:3e:2e:e1:92:7a:c6:15:ed:97:6b:66:
b2:e2:e9:42:ca:45:29:96:df:f1:5f:33:6d:56:9a:
cc:0d:03:3f:01:b4:9b:8f:d8:c0:d8:fd:b1:9e:36:
3d:da:9c:1e:e1:4f:f9:c1:a8:9c:31:77:bf:f8:e7:
37:eb:ef:d2:fb:6b:40:39:5a:49:b9:a8:1a:cb:e8:
50:a2:4d:ff:e2:c9:93:9a:82:09:9d:5a:b7:ad:4e:
68:f5:10:aa:ff:14:f5:79:98:b8:2a:91:b4:35:42:
42:74:a9:20:9a:cf:82:7a:83:3d:d8:e2:0c:23:a3:
88:4e:61:9c:10:82:0c:1b:49:c6:ad:88:cf:24:b2:
74:4f:cc:04:08:60:4f:f6:54:06:e1:ec:bb:e5:08:
48:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:00:DA:84:F6:D8:D0:EF:EA:75:E6:56:AC:80:A8:46:1B:7D:53:E3
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/MQDahPbY0O_qdeZWrICoRht9U-M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.138.0/24
Signature Algorithm: sha256WithRSAEncryption
17:57:f3:96:95:5f:68:2c:ed:9d:d9:e2:62:f4:58:0a:e3:cf:
53:a5:f6:18:bb:18:81:30:6f:db:5d:79:3b:a3:92:26:47:7b:
e8:39:b8:c4:33:87:f3:92:73:85:a8:a2:37:73:93:17:24:37:
e8:82:02:b6:6e:64:d9:49:23:04:3c:29:3e:5c:0d:46:ce:ae:
75:bc:c0:60:0e:0c:e6:83:63:86:3a:21:39:6c:4b:b4:39:d1:
8e:4c:e3:56:31:03:08:23:f5:48:a1:35:92:cf:c4:80:86:fb:
59:ed:3f:19:a9:2d:27:af:e5:32:fd:95:6b:0a:26:8d:6f:3d:
ac:04:16:e8:44:47:56:cd:a9:64:dc:41:e5:20:9a:7e:d3:5d:
73:d1:d5:05:53:28:39:0d:98:18:47:ef:6e:c3:29:6e:75:a7:
ec:2e:91:f8:23:c7:4a:bf:2f:fd:9e:80:3a:31:01:bc:86:7c:
df:91:b1:39:bf:53:96:f7:53:f0:4d:9f:e6:87:84:21:d2:cc:
d8:a2:dd:79:73:ef:1b:d2:ea:63:e5:db:9d:4a:79:8b:f2:8f:
32:6a:d8:86:76:a3:db:71:de:a7:e5:4e:cc:6f:c2:0a:15:0e:
4d:28:c2:dd:42:0f:0e:98:f9:1f:56:4b:81:ec:12:b5:be:4b:
c8:43:a4:38
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZNclaEIRB6Ed26MH3e29RuNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNlNjA5NzY5ODY4NmUxNTU1ZjUxZjZjODgzYmM1YTU4NTQ5
YjIzNjIwHhcNMjQxMTI0MDUxMjEwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzMTAwZGE4NGY2ZDhkMGVmZWE3NWU2NTZhYzgwYTg0NjFiN2Q1M2UzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5c8lx7ejltJ7GjQLt5CgGfnXV7yS
kolHb1WVHL31duJzJwam5Z3cspU4SgdbFAH9pmKcg5Y6tcmr+qmJ+vSKmmAhXxaA
M9IRM/tCwOButZi7EESVHsyflyHA9tT5bmD3TfAc4prn3D9YfnEcPi7hknrGFe2X
a2ay4ulCykUplt/xXzNtVprMDQM/AbSbj9jA2P2xnjY92pwe4U/5waicMXe/+Oc3
6+/S+2tAOVpJuagay+hQok3/4smTmoIJnVq3rU5o9RCq/xT1eZi4KpG0NUJCdKkg
ms+CeoM92OIMI6OITmGcEIIMG0nGrYjPJLJ0T8wECGBP9lQG4ey75QhIpQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDEA2oT22NDv6nXmVqyAqEYbfVPjMB8GA1UdIwQY
MBaAFD5gl2mGhuFVX1H2yIO8WlhUmyNiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGIt
ZTFiZDg4ZDNmZDA3LzEvTVFEYWhQYlkwT19xZGVaV3JJQ29SaHQ5VS1NLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGItZTFiZDg4ZDNmZDA3
LzEvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQABVOKMA0G
CSqGSIb3DQEBCwUAA4IBAQAXV/OWlV9oLO2d2eJi9FgK489TpfYYuxiBMG/bXXk7
o5ImR3voObjEM4fzknOFqKI3c5MXJDfoggK2bmTZSSMEPCk+XA1Gzq51vMBgDgzm
g2OGOiE5bEu0OdGOTONWMQMII/VIoTWSz8SAhvtZ7T8ZqS0nr+Uy/ZVrCiaNbz2s
BBboREdWzalk3EHlIJp+011z0dUFUyg5DZgYR+9uwyludafsLpH4I8dKvy/9noA6
MQG8hnzfkbE5v1OW91PwTZ/mh4Qh0szYot15c+8b0upj5dudSnmL8o8yatiGdqPb
cd6n5U7Mb8IKFQ5NKMLdQg8OmPkfVkuB7BK1vkvIQ6Q4
-----END CERTIFICATE-----
Generated at Sat Apr 12 03:18:22 2025 by rpki-client