Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/OgLT4pnP-syK7wMxk8LFFDKD3SE.roa
File: OgLT4pnP-syK7wMxk8LFFDKD3SE.roa (raw, json)
Hash identifier: BH/LcQxY/Drrsz4KfyKucqRBlBbz+0NgFSCGItMzhLY=
Subject key identifier: 3A:02:D3:E2:99:CF:FA:CC:8A:EF:03:31:93:C2:C5:14:32:83:DD:21
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 0191DD60B8748D00D84EFE91CD3189887AD8
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/OgLT4pnP-syK7wMxk8LFFDKD3SE.roa
Signing time: Tue 10 Sep 2024 19:19:48 +0000
ROA not before: Tue 10 Sep 2024 19:19:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 58212
IP address blocks: 5.83.150.0/24 maxlen: 24
77.90.7.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 12 Sep 2024 04:07:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:dd:60:b8:74:8d:00:d8:4e:fe:91:cd:31:89:88:7a:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Sep 10 19:19:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3a02d3e299cffacc8aef033193c2c5143283dd21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:8f:15:41:14:8c:8c:88:45:20:d9:97:54:2a:
97:02:58:b6:92:5a:ae:36:5e:c7:ac:6d:fc:75:f4:
a3:97:6f:e8:6b:45:24:c0:4e:6a:9b:13:7f:49:82:
78:be:c0:ab:ac:cb:c6:87:a3:3c:f8:ea:27:2f:2f:
93:ac:4c:3d:1f:1c:55:8c:8a:95:97:1b:71:90:5f:
67:b7:83:dc:1d:1e:5d:99:69:97:cf:3f:07:d6:ab:
61:d3:37:d0:c5:c9:86:9b:61:a6:80:27:db:a8:4d:
5a:da:0b:59:71:1f:bc:ae:3b:b0:cc:35:f4:ff:52:
6d:11:51:1c:b0:06:56:c2:7f:ff:cc:d8:eb:19:0d:
47:0e:55:b8:d9:6d:ba:3a:91:2c:7e:aa:07:c1:a8:
9d:57:9d:c8:71:bc:5c:ec:6c:40:fb:4c:d3:f3:2c:
51:11:9b:a5:18:70:63:30:f8:e7:b2:aa:61:d1:18:
39:b5:5a:84:72:2f:d3:b4:df:22:25:40:54:fb:d9:
ad:ee:49:64:c8:c5:db:96:f8:a2:dc:8b:e1:ec:94:
be:9d:8b:b4:88:ca:5a:fb:eb:24:67:ff:5e:0e:7b:
9e:6e:6b:b2:11:4a:56:f2:4c:0f:d1:ce:6a:68:02:
f7:40:04:ac:12:62:ec:e5:da:4b:71:ce:4f:5b:af:
a6:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:02:D3:E2:99:CF:FA:CC:8A:EF:03:31:93:C2:C5:14:32:83:DD:21
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/OgLT4pnP-syK7wMxk8LFFDKD3SE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.150.0/24
77.90.7.0/24
Signature Algorithm: sha256WithRSAEncryption
e9:13:01:41:4b:91:57:1f:23:03:cc:31:26:ee:d4:99:50:98:
8f:8c:e8:96:9f:3c:94:e5:4c:4c:4c:df:7b:a4:46:20:b3:fd:
20:63:4c:7d:0d:76:39:7e:53:33:a2:a4:d3:91:30:6a:93:85:
90:11:47:5a:4b:93:ff:60:9b:f2:a5:11:ff:1d:bb:88:f6:d7:
9a:90:10:b4:3f:4e:96:ae:d0:99:d8:b6:d9:2f:3c:27:30:c7:
0f:e6:96:91:89:c6:04:75:37:21:56:f9:51:94:17:36:72:f9:
31:4f:0a:ed:6a:0e:4d:22:aa:24:fa:23:b5:7c:a4:67:ec:fe:
e1:93:0c:24:db:cd:0a:a2:6d:c9:05:a4:68:6c:57:73:a0:19:
de:38:43:d1:57:bd:6e:d5:7a:eb:38:71:eb:18:42:a5:4e:24:
06:b4:9d:42:ae:04:08:99:c7:82:29:98:03:ba:9a:12:04:d8:
61:ac:bb:ca:31:86:62:b6:9f:eb:b6:d4:83:bf:f5:ad:fc:42:
c4:b0:b1:2a:f0:a2:aa:e7:a0:c9:a5:0d:27:e3:a5:c2:86:df:
a2:2f:96:4a:db:cc:42:8e:f0:90:bd:ba:4d:21:1d:29:8e:b7:
f4:ea:9e:09:cc:11:00:c1:04:c0:ca:58:b9:3f:c0:6a:87:a7:
59:38:62:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 12 07:27:13 2024 by rpki-client on console-ams.rpki-client.org