Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/QwfPgsn93IOsFL6zn4S8sW2zCwI.roa
File: QwfPgsn93IOsFL6zn4S8sW2zCwI.roa (raw, json)
Hash identifier: 5OKDlHP4Hc2NGTm39JLZk2hxJ356pKcgFz3SAqoZ6fo=
Subject key identifier: 43:07:CF:82:C9:FD:DC:83:AC:14:BE:B3:9F:84:BC:B1:6D:B3:0B:02
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 019049E888BDDDCE362AD25FCCBB0D29BFB8
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/QwfPgsn93IOsFL6zn4S8sW2zCwI.roa
Signing time: Mon 24 Jun 2024 11:01:34 +0000
ROA not before: Mon 24 Jun 2024 11:01:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57433
IP address blocks: 5.83.157.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 24 Jun 2024 13:18:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:49:e8:88:bd:dd:ce:36:2a:d2:5f:cc:bb:0d:29:bf:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Jun 24 11:01:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4307cf82c9fddc83ac14beb39f84bcb16db30b02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:38:37:bf:f1:e9:51:43:d1:90:29:a6:2e:f7:
29:ac:de:a4:42:0e:22:7d:e7:cc:cc:36:77:a6:ca:
7c:c8:6b:6a:ba:6d:aa:d3:26:34:27:51:53:64:74:
9b:2d:84:ad:8a:23:f7:75:63:0c:e0:f7:9e:b9:39:
8b:10:d6:73:98:95:14:c5:e4:3f:b5:6d:3f:fe:88:
09:20:63:93:2f:82:eb:3d:8b:93:e3:51:21:a6:68:
11:72:9d:d8:93:73:31:ee:a7:e8:f3:7e:ea:fb:c6:
42:01:46:44:a3:95:19:de:dc:98:e6:7e:4f:47:5b:
8b:0b:66:db:cd:11:ce:92:80:24:69:bf:cf:73:2e:
46:e1:f5:6f:3d:61:d8:9a:20:3a:d3:02:50:2b:ee:
b2:8d:33:30:83:76:10:36:8c:2e:57:da:3f:6b:60:
36:7a:96:81:f3:d9:a1:af:42:87:80:92:9a:b7:29:
25:60:28:50:95:4a:7e:c8:19:d0:be:6e:64:fd:8a:
f2:26:6d:47:ae:50:d6:f9:f6:0a:73:06:8a:99:73:
9b:65:a3:8c:f2:26:fe:1c:9c:d0:5b:85:0f:9b:24:
75:20:06:b1:b4:23:7c:5a:4a:9a:2d:4b:5e:a5:91:
99:28:e1:df:3c:3d:58:87:7d:d1:86:01:40:58:b3:
ac:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:07:CF:82:C9:FD:DC:83:AC:14:BE:B3:9F:84:BC:B1:6D:B3:0B:02
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/QwfPgsn93IOsFL6zn4S8sW2zCwI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.157.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:7a:4b:92:3a:a0:22:0d:77:14:bf:b2:49:1b:06:98:de:61:
aa:df:8e:1c:57:c0:7b:47:8a:c8:07:6a:e8:15:95:15:e9:78:
98:8c:05:bb:13:8a:c2:81:da:21:bc:01:11:d4:19:37:9f:3c:
d9:81:97:1e:06:da:28:61:15:9f:37:86:5b:05:16:91:cd:b7:
85:ef:ef:c3:17:d4:47:7b:5c:a3:83:55:71:0b:f3:74:e5:7a:
9a:3f:49:6f:cb:9b:02:51:86:d7:f3:ed:39:ed:f8:6d:ee:50:
24:5e:14:61:bd:f5:db:1d:0a:56:8a:47:85:82:b3:c4:9e:dc:
08:5a:bf:65:ff:72:e9:8e:66:4f:b2:6b:31:65:74:ec:8c:08:
ec:53:52:96:14:3f:f6:65:50:70:97:4d:34:0d:22:ec:1d:86:
ef:2c:75:f9:3c:bf:26:54:5f:e1:26:b1:93:cb:5e:06:58:84:
26:c4:7c:07:5b:ae:bf:93:bb:b7:e1:1b:7d:16:d0:4f:a2:19:
62:1d:1d:b7:50:ac:a7:84:7c:ca:4d:b9:13:41:b9:57:70:61:
21:13:4b:c1:96:41:31:9c:76:6a:58:f1:4d:86:7e:32:26:36:
cd:6a:db:c5:6a:e6:c4:b0:4c:16:85:a2:8a:13:a2:74:7f:bf:
50:ac:8a:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 24 17:46:38 2024 by rpki-client on console-fra.rpki-client.org