Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/UoT3pbC52_ygfK-ZbBxPYQqfOHc.roa
File: UoT3pbC52_ygfK-ZbBxPYQqfOHc.roa (raw, json)
Hash identifier: WDKFainXsIPf9P90ghQDQKFzkIVs60aalv9ip33GIOE=
Subject key identifier: 52:84:F7:A5:B0:B9:DB:FC:A0:7C:AF:99:6C:1C:4F:61:0A:9F:38:77
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 019301CA16D8F0CD25EC2E6216F33B44E5B1
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/UoT3pbC52_ygfK-ZbBxPYQqfOHc.roa
Signing time: Wed 06 Nov 2024 14:04:01 +0000
ROA not before: Wed 06 Nov 2024 14:04:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214902
IP address blocks: 5.83.147.0/24 maxlen: 24
77.90.6.0/24 maxlen: 24
77.90.19.0/24 maxlen: 24
77.90.43.0/24 maxlen: 24
77.90.45.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 09 Nov 2024 00:49:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:01:ca:16:d8:f0:cd:25:ec:2e:62:16:f3:3b:44:e5:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Nov 6 14:04:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5284f7a5b0b9dbfca07caf996c1c4f610a9f3877
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:ce:76:22:f6:42:2b:94:23:04:af:f0:aa:eb:
ca:63:31:40:c4:e0:f8:ef:41:83:17:60:1b:26:bd:
9a:87:6b:1e:1c:05:d8:45:76:4a:75:30:18:86:f7:
9b:b7:38:d4:28:59:55:8f:41:c2:9b:cc:b8:13:45:
d9:18:c4:72:24:ad:3b:3d:15:b2:38:98:72:f2:81:
14:b0:6f:bb:2f:a0:4e:a6:29:c3:72:cf:42:26:ad:
5f:18:86:72:17:06:50:e4:a4:9c:db:bf:70:fb:dd:
9e:4b:6f:1a:7f:c8:ed:3a:d5:30:0a:af:38:03:08:
e4:35:4d:21:66:62:6e:04:cc:93:33:82:23:57:c8:
2a:23:19:97:03:59:a1:bb:cc:83:b7:e1:d7:98:68:
df:c3:6c:d6:b6:b9:8f:f6:e9:39:0c:b1:66:e9:87:
c3:dc:28:cc:dc:54:b7:34:02:c6:2e:04:68:22:6c:
20:a1:c2:46:70:65:71:6a:ab:e8:3d:36:e2:e1:a9:
52:d0:b5:51:fd:d0:82:49:4f:89:41:01:f0:3e:bb:
1e:55:be:44:9f:94:ca:78:3f:7d:09:f7:c4:8b:98:
52:84:6d:50:98:0c:54:1f:0f:d0:a5:e9:0f:36:1e:
1b:47:3d:cb:79:ce:a9:eb:38:de:3b:f1:ca:24:da:
fb:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:84:F7:A5:B0:B9:DB:FC:A0:7C:AF:99:6C:1C:4F:61:0A:9F:38:77
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/UoT3pbC52_ygfK-ZbBxPYQqfOHc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.147.0/24
77.90.6.0/24
77.90.19.0/24
77.90.43.0/24
77.90.45.0/24
Signature Algorithm: sha256WithRSAEncryption
c0:35:34:23:f7:52:ed:ce:c1:a6:21:05:55:7a:35:cf:6c:d7:
da:f1:cb:67:f2:11:9a:2f:bd:db:93:bd:f3:ee:c0:fd:94:6a:
a2:eb:4e:84:13:5c:3b:db:aa:22:85:71:ce:54:fd:20:1e:3f:
c2:8b:06:9f:e0:58:62:0d:ec:1d:7a:56:71:73:48:d7:f0:6c:
86:b1:2b:78:00:0f:02:45:e5:49:3f:71:a5:0e:dd:3c:c0:db:
d4:3d:ee:f9:1f:c5:3c:65:ed:78:67:9f:62:6b:b2:7a:a5:56:
e5:9f:94:60:37:49:11:5f:e6:b3:e0:9a:c4:c3:5d:15:59:3f:
74:50:9b:e9:15:1a:7b:4a:d9:0c:65:c3:a4:2f:fe:a3:b1:35:
9a:41:b9:18:cf:8b:90:51:df:d4:57:31:1b:73:6c:7a:62:ba:
48:04:5f:d8:d2:54:65:7e:00:7c:67:5b:11:95:9e:7a:a5:df:
a3:35:90:7c:21:bf:8e:ca:c6:0e:99:9b:1b:3a:ed:99:f9:64:
49:c1:24:1a:5a:d8:ac:08:4c:f2:0d:f9:47:75:c0:02:0a:b7:
45:aa:e1:f1:ba:0b:b7:cf:cc:15:19:b5:a7:54:ec:8b:1a:31:
5a:0d:64:8d:a7:e8:26:97:e3:04:a2:ce:cc:73:d4:20:96:47:
1a:76:f3:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 9 05:49:57 2024 by rpki-client on console-fra.rpki-client.org