Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/U2zbKaCFWyjK83BGSd7M_uNB2Ls.roa
File: U2zbKaCFWyjK83BGSd7M_uNB2Ls.roa (raw, json)
Hash identifier: zoSiNRReEwo1lVj7dcVhf5ZEwXwlLzwoL6I6thw071c=
Subject key identifier: 53:6C:DB:29:A0:85:5B:28:CA:F3:70:46:49:DE:CC:FE:E3:41:D8:BB
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 01920167BE35910BAC289CDEAA3ABF4C301D
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/U2zbKaCFWyjK83BGSd7M_uNB2Ls.roa
Signing time: Tue 17 Sep 2024 19:13:48 +0000
ROA not before: Tue 17 Sep 2024 19:13:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43260
IP address blocks: 5.83.129.0/24 maxlen: 24
77.90.54.0/24 maxlen: 24
85.118.162.0/24 maxlen: 24
87.239.131.0/24 maxlen: 24
94.249.138.0/24 maxlen: 24
94.249.148.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 24 Sep 2024 04:08:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:01:67:be:35:91:0b:ac:28:9c:de:aa:3a:bf:4c:30:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Sep 17 19:13:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=536cdb29a0855b28caf3704649deccfee341d8bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:2f:44:5a:47:0c:db:ca:bb:cc:a2:18:8a:9b:
22:f0:83:d4:80:5e:a4:4e:7f:06:f0:dd:e7:6e:60:
54:3b:f4:9e:44:7b:f6:01:8a:58:9f:a7:d6:ec:63:
d8:c5:20:a5:eb:ec:b6:c8:f2:05:9b:e3:b3:4c:9e:
21:a7:64:a8:39:e6:22:cb:8f:e1:e9:9b:79:fc:76:
c4:05:02:0b:08:04:fb:49:40:82:a2:1f:fa:b3:5c:
19:4b:c9:49:f3:42:5c:1d:a7:d8:e9:1e:6f:e0:5f:
9b:83:d7:09:83:59:1a:57:3e:43:b4:18:fb:2c:9a:
56:a2:83:14:a7:10:bd:b8:1e:81:7c:06:b9:58:92:
89:43:6c:b6:e4:26:75:ac:8a:a1:35:0a:99:cc:b3:
26:64:c8:ee:9b:e9:1b:19:c5:3b:a8:3b:2a:bd:cf:
07:13:27:85:39:eb:6e:97:a7:21:4e:ba:3e:58:6d:
b7:8a:0b:bd:2f:77:1b:46:aa:09:f8:ee:23:5f:25:
e9:d6:83:f2:c4:69:3d:5a:a0:b4:b6:28:63:ac:68:
36:cd:df:3d:64:22:9b:52:47:08:eb:d2:48:c5:55:
a7:7e:52:88:24:62:4f:a5:68:83:67:99:fb:07:05:
2f:f3:c7:d8:cc:b6:6b:1f:7a:0c:98:19:d2:79:b3:
80:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:6C:DB:29:A0:85:5B:28:CA:F3:70:46:49:DE:CC:FE:E3:41:D8:BB
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/U2zbKaCFWyjK83BGSd7M_uNB2Ls.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.129.0/24
77.90.54.0/24
85.118.162.0/24
87.239.131.0/24
94.249.138.0/24
94.249.148.0/24
Signature Algorithm: sha256WithRSAEncryption
51:5b:2b:d6:13:5d:3c:7d:d9:dc:9c:12:53:d8:ef:a8:23:35:
a1:6c:b4:9a:81:fc:94:cf:0c:4c:7b:f8:e3:d1:ab:d4:e8:85:
70:ae:36:02:80:60:7d:3c:41:5e:94:d8:33:99:7a:be:fa:a6:
fc:9b:53:78:5b:7a:74:c6:28:4e:b0:1d:b1:fb:cf:d9:d1:c6:
a7:aa:a0:eb:13:d6:17:fc:97:43:1f:d5:9a:e7:f3:ee:c4:77:
11:1f:99:4a:2f:f4:5e:9b:d1:a7:6c:eb:6b:cc:99:ca:c0:38:
79:e7:6a:5c:20:aa:df:d2:62:b7:07:8d:b0:b6:e8:78:ae:4d:
03:25:e3:32:04:6d:8d:d8:41:4a:72:71:38:16:55:98:45:e5:
5f:6c:11:08:9f:c8:2b:eb:32:cc:5e:b0:bb:b3:1f:2f:e0:df:
fb:ab:e8:45:6c:da:ff:1e:56:d2:7c:3d:d7:00:23:f8:a7:2b:
08:45:7d:a2:a3:c9:95:26:28:30:b2:e4:39:6a:c8:3a:89:da:
e1:50:a1:26:cf:c5:54:35:ea:a4:68:e8:25:03:92:f9:b3:57:
04:f8:35:c7:8e:00:64:73:a6:11:dc:88:b7:aa:e4:34:a2:8b:
3d:12:d7:2c:1a:82:f6:f3:11:eb:28:ec:40:4e:8c:21:f3:d4:
0b:63:19:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 24 06:07:45 2024 by rpki-client on console-fra.rpki-client.org