Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/c0mEkT-uZFAH-4VjCOaHGTNGZH8.roa
File: c0mEkT-uZFAH-4VjCOaHGTNGZH8.roa (raw, json)
Hash identifier: RExHumrLvhPjsyyVYBZiiQznBRkxi+eUZ7JrCuia8wQ=
Subject key identifier: 73:49:84:91:3F:AE:64:50:07:FB:85:63:08:E6:87:19:33:46:64:7F
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 0191BFEDDE41D92240A1E5C141090EB9642D
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/c0mEkT-uZFAH-4VjCOaHGTNGZH8.roa
Signing time: Thu 05 Sep 2024 02:05:22 +0000
ROA not before: Thu 05 Sep 2024 02:05:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43260
IP address blocks: 5.83.129.0/24 maxlen: 24
77.90.29.0/24 maxlen: 24
77.90.54.0/24 maxlen: 24
85.118.162.0/24 maxlen: 24
87.239.131.0/24 maxlen: 24
94.249.138.0/24 maxlen: 24
94.249.148.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 05 Sep 2024 04:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:bf:ed:de:41:d9:22:40:a1:e5:c1:41:09:0e:b9:64:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Sep 5 02:05:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=734984913fae645007fb856308e687193346647f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:0d:12:fc:16:57:1e:99:b2:11:4b:61:fb:b4:
c1:8f:e3:4f:e9:c6:9c:cb:de:95:8d:e0:08:ea:3c:
c6:b7:69:eb:a7:33:b4:80:ce:99:dd:a2:6d:11:31:
f8:aa:eb:18:93:00:d0:4b:fc:90:22:fb:55:ed:0f:
12:c1:cd:1a:e9:3e:38:2a:a8:8d:7f:20:9d:15:fa:
79:db:e7:d7:2d:5a:a6:60:c9:5b:0d:e3:ec:a0:ae:
08:b1:2c:37:af:38:35:6c:47:28:bc:7e:ed:8b:e7:
d6:3c:82:84:bb:7d:93:aa:97:51:15:ce:0b:98:9e:
85:65:94:ae:68:f1:0d:57:fc:0d:0a:db:10:bb:ae:
a6:5a:3c:42:fe:41:b5:94:db:60:ac:f5:ff:f0:d1:
ab:a5:25:2a:a1:9d:99:0f:84:59:d7:80:f9:53:74:
be:e1:f5:6d:ab:bd:5f:5a:68:1a:85:6b:41:4d:4a:
07:a9:fc:59:69:f0:0a:a0:b1:8d:55:63:53:ae:3d:
5b:50:8d:76:e8:96:52:06:a7:02:65:c3:50:7b:f5:
ab:ca:62:16:f8:6c:2b:2b:d2:1d:21:24:49:cb:37:
e6:09:d2:a1:82:e5:89:7d:11:34:e4:96:40:d6:d3:
a4:17:7c:a7:43:c9:fb:1a:e1:83:00:a9:0e:51:52:
db:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:49:84:91:3F:AE:64:50:07:FB:85:63:08:E6:87:19:33:46:64:7F
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/c0mEkT-uZFAH-4VjCOaHGTNGZH8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.129.0/24
77.90.29.0/24
77.90.54.0/24
85.118.162.0/24
87.239.131.0/24
94.249.138.0/24
94.249.148.0/24
Signature Algorithm: sha256WithRSAEncryption
11:3d:d5:5d:ec:1e:cc:fc:36:86:85:9f:d7:ac:ac:c0:6c:17:
0c:ba:cf:90:52:0f:4a:ce:db:54:e0:5a:24:cf:b0:d1:ae:27:
36:61:f2:29:ee:30:01:68:7d:c1:81:79:6b:ee:27:e8:54:10:
f4:8b:1c:a8:7a:56:76:c2:0b:9d:5e:c1:93:74:90:1b:1c:2d:
9c:cb:33:25:cd:41:92:2b:a3:69:01:13:67:94:75:42:47:50:
19:eb:85:63:87:9a:7e:0b:db:90:ab:69:32:2b:05:d0:24:33:
3a:2e:fc:ed:23:29:33:be:33:93:30:ce:d2:8a:93:e8:c7:ab:
41:f9:57:4f:e0:61:93:24:95:c2:ad:d1:af:a6:e1:86:79:5d:
e1:a5:f1:fa:11:45:8f:95:48:71:a2:1c:00:75:93:61:01:57:
2d:d6:3e:45:67:9e:85:72:0f:63:31:cd:ec:1a:34:cb:8b:8e:
81:e1:e2:79:4a:b8:71:c7:7d:50:4a:c8:6b:55:01:dc:f4:2b:
00:37:d3:98:0b:22:23:3a:62:29:d2:18:fc:97:8b:df:f4:6e:
86:46:7b:22:3d:d9:ab:c6:07:27:79:91:d7:13:b2:8d:65:53:
9f:dc:5b:1a:ac:90:54:53:60:65:d6:eb:21:8e:94:52:a5:48:
f7:89:f5:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 5 05:26:49 2024 by rpki-client on console-fra.rpki-client.org