Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/_ZUFI3Ki024EvVIhFz_Ee7gZt-E.roa
File: _ZUFI3Ki024EvVIhFz_Ee7gZt-E.roa (raw, json)
Hash identifier: tAZ7GqGKhiXFqRw69zRPGLW0XGJQDIkBdaZK/OJAKgA=
Subject key identifier: FD:95:05:23:72:A2:D3:6E:04:BD:52:21:17:3F:C4:7B:B8:19:B7:E1
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 019273D80DC8C6AF87538725C78A2814E039
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/_ZUFI3Ki024EvVIhFz_Ee7gZt-E.roa
Signing time: Thu 10 Oct 2024 00:33:11 +0000
ROA not before: Thu 10 Oct 2024 00:33:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214347
IP address blocks: 5.83.138.0/24 maxlen: 24
5.83.153.0/24 maxlen: 24
5.83.154.0/24 maxlen: 24
77.90.29.0/24 maxlen: 24
77.90.44.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 14 Oct 2024 04:09:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:73:d8:0d:c8:c6:af:87:53:87:25:c7:8a:28:14:e0:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Oct 10 00:33:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fd95052372a2d36e04bd5221173fc47bb819b7e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:b0:ff:88:f5:ba:da:1e:15:8e:c1:39:c2:32:
58:5f:6c:a5:33:8b:6b:98:f3:72:18:ce:a0:93:55:
07:c9:68:b5:a8:ed:02:ba:ee:76:d4:bf:5b:4e:c4:
d7:30:73:97:8e:eb:50:1a:7f:48:63:b8:3f:32:bf:
86:6a:be:68:68:40:4b:bf:7a:9f:06:49:58:76:cd:
c7:b3:77:e5:78:56:b6:5d:0b:86:79:91:f8:b8:8a:
69:2b:dc:3f:a4:38:6e:72:b4:49:06:96:bd:5b:c0:
de:d8:fd:9f:a1:ee:16:70:a4:d3:dd:4e:ab:e1:69:
5f:b6:13:c0:06:a7:f8:3c:26:5f:e8:a8:4e:dc:85:
d4:29:a1:30:c1:d5:71:f0:7f:b8:d9:a2:18:b3:13:
5a:37:b5:70:c2:0d:93:c9:8e:2e:45:cd:c1:f8:dd:
5b:c2:b5:76:02:12:56:e3:4b:42:50:02:ee:6e:81:
de:ce:1a:bc:a8:c3:9e:78:88:9f:e5:99:0d:79:27:
fd:1b:7d:6b:02:a1:1b:3d:90:f0:d3:68:e5:37:24:
65:4b:0c:40:12:46:54:0b:83:5f:33:1b:9b:7c:30:
4d:66:dd:5e:34:d6:47:49:6c:89:bf:0a:41:e8:c1:
f1:ef:b8:00:90:3e:e0:59:4a:10:2d:ab:4a:b6:11:
29:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:95:05:23:72:A2:D3:6E:04:BD:52:21:17:3F:C4:7B:B8:19:B7:E1
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/_ZUFI3Ki024EvVIhFz_Ee7gZt-E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.138.0/24
5.83.153.0-5.83.154.255
77.90.29.0/24
77.90.44.0/24
Signature Algorithm: sha256WithRSAEncryption
86:b2:80:4d:f0:e1:78:fa:18:ee:80:2a:76:29:fe:ec:ea:3c:
6f:1c:c6:60:12:56:83:db:ed:2d:af:14:b6:19:dd:5f:b7:b2:
ef:4f:dc:2d:16:2a:bd:80:eb:7b:ef:78:12:1b:30:4e:85:08:
4c:13:d5:c5:7b:11:a4:a6:01:16:6c:59:e7:23:f6:02:31:cf:
e1:43:af:cf:0d:88:4b:98:dd:12:f0:07:4a:b1:67:b3:d5:7f:
e6:af:78:a5:b3:06:ba:60:83:64:dd:83:26:f7:a6:4a:cc:10:
6c:81:de:c3:2a:fe:7b:da:8c:a5:3c:a9:e8:15:dd:25:b8:eb:
72:9c:13:f1:a7:00:54:a7:1b:80:f6:e7:56:26:cf:d1:c1:5a:
9c:83:d0:4b:5a:19:d0:43:d3:1e:c9:4e:34:91:50:f7:48:ab:
2d:1e:cc:74:da:20:6e:00:ac:f7:3d:d2:3c:66:15:ef:ae:88:
94:68:1a:3b:ba:65:33:69:80:c3:4d:26:6d:50:22:53:7a:ce:
8e:8c:7e:25:69:b4:fc:47:92:39:1c:4e:82:95:82:db:80:b0:
8d:44:40:7b:84:3f:6d:c9:15:be:99:60:d3:3f:63:54:43:05:
c1:7e:34:6b:c1:75:ae:11:e8:23:eb:a8:83:ba:55:b3:1c:b7:
f4:7f:eb:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 14 05:49:48 2024 by rpki-client on console-ams.rpki-client.org