Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/WR1qv9RUSFrEWJA7Gy7m2BWtWj0.roa
File: WR1qv9RUSFrEWJA7Gy7m2BWtWj0.roa (raw, json)
Hash identifier: wy5gn32JLkCKXLjpuOSAaTizgki9Y0nQjZ0E8Gig2D4=
Subject key identifier: 59:1D:6A:BF:D4:54:48:5A:C4:58:90:3B:1B:2E:E6:D8:15:AD:5A:3D
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 0192BCB8C0656485FA9A44C7E1E5E74B4AC1
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/WR1qv9RUSFrEWJA7Gy7m2BWtWj0.roa
Signing time: Thu 24 Oct 2024 04:11:17 +0000
ROA not before: Thu 24 Oct 2024 04:11:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43260
IP address blocks: 5.175.138.0/24 maxlen: 24
5.231.70.0/24 maxlen: 24
77.90.42.0/24 maxlen: 24
77.90.54.0/24 maxlen: 24
77.90.55.0/24 maxlen: 24
85.118.162.0/24 maxlen: 24
94.249.148.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 24 Oct 2024 19:14:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:bc:b8:c0:65:64:85:fa:9a:44:c7:e1:e5:e7:4b:4a:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Oct 24 04:11:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=591d6abfd454485ac458903b1b2ee6d815ad5a3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:6c:bf:16:3e:10:2b:d3:19:b9:2f:06:73:20:
99:8b:b8:b4:7f:05:d8:72:3a:7a:0c:9c:d6:02:05:
77:7c:2c:36:75:f6:55:c3:ac:e2:b9:cc:da:e5:93:
92:7e:22:2f:52:e2:32:76:83:4e:ac:86:3f:b9:16:
cb:51:a3:db:c3:8b:36:24:ac:04:ab:9b:4b:f2:b3:
2f:cb:48:db:25:20:9e:0f:9a:b5:06:08:bc:97:4e:
42:63:fd:49:f6:2b:fc:83:39:e6:ed:ca:aa:a9:f2:
c3:38:f1:6c:cf:ee:ea:d0:15:37:bb:33:bd:77:6b:
ec:09:d7:4a:21:02:7c:81:15:dc:59:4d:dc:a4:8e:
c6:50:00:ec:83:98:c7:52:ae:e4:01:77:f7:de:c4:
2c:dd:81:d9:c3:fc:68:25:05:8f:32:52:04:d7:c3:
a1:84:d1:f8:87:a9:04:b9:27:91:a0:fe:da:b1:b0:
45:2d:ea:c0:c7:77:6a:fd:a6:6c:aa:22:dc:44:02:
c8:a0:89:28:27:da:02:76:2b:c7:45:63:02:06:e9:
f7:aa:1e:47:e1:5f:d4:53:cd:92:aa:37:ba:f0:df:
01:ae:d2:92:e3:62:aa:c1:33:c8:d4:fe:b4:f6:5c:
e4:4d:84:8d:89:c1:d0:25:8e:2f:6b:fe:87:4d:76:
7f:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:1D:6A:BF:D4:54:48:5A:C4:58:90:3B:1B:2E:E6:D8:15:AD:5A:3D
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/WR1qv9RUSFrEWJA7Gy7m2BWtWj0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.175.138.0/24
5.231.70.0/24
77.90.42.0/24
77.90.54.0/23
85.118.162.0/24
94.249.148.0/24
Signature Algorithm: sha256WithRSAEncryption
56:6f:a3:fd:f6:43:ef:a8:98:f5:40:90:33:90:92:4e:61:7a:
67:89:d7:1c:2b:9f:a3:90:d1:a8:52:8f:66:54:16:5e:14:9c:
9e:0c:80:64:1a:0e:27:6e:56:d7:23:6a:33:a1:69:f3:13:d2:
96:97:f0:d0:36:60:d9:6b:be:20:00:99:28:ba:0c:4a:85:d2:
73:74:0a:e8:8d:ea:66:37:39:6c:82:a4:18:97:27:38:7b:af:
3f:c9:ed:ec:e8:f3:b6:64:c4:98:de:14:c5:ec:fd:db:b5:30:
d3:c1:97:35:80:0e:37:92:2a:31:94:ad:cd:ce:ef:41:6f:11:
d9:13:cf:1e:55:0e:f1:79:da:cd:d0:af:b3:67:5e:d4:76:e2:
f7:90:9d:3f:2d:05:7d:41:3e:6a:ef:ae:a7:a0:82:35:31:b8:
e6:6f:74:0c:d4:38:1c:fa:c2:c1:c7:84:18:fc:f5:85:88:8b:
ba:c6:85:07:bc:5e:a3:3e:0d:26:34:3f:6c:a8:63:76:40:17:
85:d6:9a:05:52:5b:1b:e2:e8:13:79:bd:a7:4a:fa:43:b1:97:
04:c3:67:64:4a:16:35:08:3c:38:1d:ae:c0:80:40:50:fe:38:
ff:85:cf:a3:84:bd:62:7e:e3:b4:c8:64:db:5a:37:49:61:27:
ec:0c:18:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 24 20:58:23 2024 by rpki-client on console-fra.rpki-client.org