Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/_aoRVUxQ31FT_FxI6jUMG92ZZI8.roa
File: _aoRVUxQ31FT_FxI6jUMG92ZZI8.roa (raw, json)
Hash identifier: Zq8UVyR3g2T2fDS5AtYCSxsOn6Kso9EXjXmxCgjWs6U=
Subject key identifier: FD:AA:11:55:4C:50:DF:51:53:FC:5C:48:EA:35:0C:1B:DD:99:64:8F
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 0191DD60B95E57193B24EA068A00441C8D9D
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/_aoRVUxQ31FT_FxI6jUMG92ZZI8.roa
Signing time: Tue 10 Sep 2024 19:19:49 +0000
ROA not before: Tue 10 Sep 2024 19:19:49 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207252
IP address blocks: 5.83.152.0/24 maxlen: 24
77.90.12.0/24 maxlen: 24
77.90.22.0/24 maxlen: 24
77.90.23.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 29 Sep 2024 18:17:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:dd:60:b9:5e:57:19:3b:24:ea:06:8a:00:44:1c:8d:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Sep 10 19:19:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fdaa11554c50df5153fc5c48ea350c1bdd99648f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:06:31:7b:45:9b:9f:0e:9a:13:45:0f:b7:bb:
85:bb:d7:80:b6:e5:2f:c2:ec:98:05:d5:ed:e9:81:
2c:0d:48:db:75:69:c5:ce:0d:ea:07:8f:ba:8c:df:
eb:8f:2d:31:bd:d1:7b:f5:84:2e:3a:eb:90:17:aa:
aa:af:3c:33:79:cf:3a:ed:6f:10:0c:6e:ed:76:47:
43:8a:9e:b7:6e:0b:6b:65:26:71:7a:ab:4c:e1:fd:
c3:e5:0e:bf:4e:ba:7f:2d:c3:b2:1f:c1:6e:26:34:
4b:04:98:1c:cf:81:53:4a:fc:21:a0:5d:37:ee:33:
c5:5d:2c:73:3b:86:a9:cf:ce:cc:33:62:d7:e4:02:
0f:4f:54:da:4c:32:a3:c1:d1:c5:f9:73:5a:db:7b:
55:0e:19:ca:75:5a:3e:d9:af:4c:a6:20:52:24:41:
da:5a:77:38:cc:fb:e0:65:80:7b:80:20:03:7d:74:
26:fc:90:87:84:d2:3a:e8:a4:96:4f:4c:1e:d1:9b:
cb:a7:f2:4a:95:4c:36:cb:f3:57:2e:5d:cf:ec:c8:
ab:5f:ce:13:2d:08:0c:2d:32:e1:a0:94:bf:cf:2a:
a2:77:c4:8a:4d:a5:08:74:4e:f1:ae:3e:21:83:10:
86:42:f8:a6:63:d7:69:9a:98:57:55:94:8d:a9:95:
85:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:AA:11:55:4C:50:DF:51:53:FC:5C:48:EA:35:0C:1B:DD:99:64:8F
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/_aoRVUxQ31FT_FxI6jUMG92ZZI8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.152.0/24
77.90.12.0/24
77.90.22.0/23
Signature Algorithm: sha256WithRSAEncryption
b6:aa:52:91:d7:e2:45:b9:9e:de:7d:c6:10:a6:c1:71:ba:be:
09:60:f4:43:b2:f5:f0:4d:a0:a4:0e:af:e2:56:94:da:7c:c6:
0f:41:aa:13:de:45:86:6e:d3:ee:0f:0f:2e:4b:9b:0b:ae:62:
bc:77:99:2b:c3:e2:4d:44:1d:76:49:6c:b3:44:81:a2:e4:1d:
4e:e1:55:33:d7:e4:4f:8e:51:b3:6a:c4:0d:ea:8d:e1:fc:4a:
7e:de:ed:3f:9d:21:ba:87:b2:36:ce:f3:2a:3f:b6:35:e7:49:
3a:a1:1d:36:8d:d3:f5:ff:61:06:99:6b:44:4c:f0:ad:9a:63:
54:65:01:24:80:15:22:da:9c:64:49:5e:d8:02:99:1e:2a:17:
9c:e2:77:ae:b5:d1:22:f1:06:0c:6c:92:b7:bf:c7:42:d8:e2:
17:60:87:a5:e2:4e:21:88:8a:59:fa:ec:df:59:d9:da:f4:af:
26:ba:b5:1f:32:9e:34:bf:a8:47:55:a2:a2:df:da:8c:44:53:
23:d1:5c:eb:f4:00:e9:c8:69:06:86:48:be:8f:54:f3:53:c9:
a7:c3:1b:33:21:47:c4:c3:46:50:4b:ae:df:16:b4:e5:65:80:
ca:66:5b:56:9a:df:df:c0:2b:08:14:04:4d:82:24:f0:50:17:
62:4f:aa:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 29 19:45:41 2024 by rpki-client on console-fra.rpki-client.org