Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/dD7wPCEu1T8DymeEy_eeweWv6fs.roa
File: dD7wPCEu1T8DymeEy_eeweWv6fs.roa (raw, json)
Hash identifier: sgVddFQRkpR6pkOnmRpzBy1cXLHzDj5BM6Yvg95tjK4=
Subject key identifier: 74:3E:F0:3C:21:2E:D5:3F:03:CA:67:84:CB:F7:9E:C1:E5:AF:E9:FB
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 0191C05AD1558E779F8250E3FC32B24242E7
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/dD7wPCEu1T8DymeEy_eeweWv6fs.roa
Signing time: Thu 05 Sep 2024 04:04:22 +0000
ROA not before: Thu 05 Sep 2024 04:04:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43260
IP address blocks: 5.83.129.0/24 maxlen: 24
77.90.54.0/24 maxlen: 24
85.118.162.0/24 maxlen: 24
87.239.131.0/24 maxlen: 24
94.249.138.0/24 maxlen: 24
94.249.148.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 17 Sep 2024 04:09:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:c0:5a:d1:55:8e:77:9f:82:50:e3:fc:32:b2:42:42:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Sep 5 04:04:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=743ef03c212ed53f03ca6784cbf79ec1e5afe9fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:af:2c:5a:d1:07:47:60:60:a5:af:ca:5f:1c:
a8:b3:fb:59:ac:67:0a:e3:74:22:bd:95:a5:1f:20:
cb:a1:15:ea:75:5b:b0:4c:17:05:1f:38:e5:0f:8d:
f4:2a:e3:23:f4:24:8a:58:ac:29:6b:0b:89:56:78:
37:c1:59:89:73:44:7b:5c:ff:a3:f6:a2:1c:19:8b:
d3:7c:d3:72:a0:cd:93:10:30:ac:29:17:d9:1a:a3:
09:45:53:8b:49:8a:a8:81:51:14:3b:11:68:1b:8c:
04:42:59:e2:e4:a3:ff:17:d1:50:ba:51:01:fe:13:
82:cc:37:76:50:40:e8:0f:01:54:5c:6c:1f:dd:7a:
b2:df:45:e9:88:d1:d0:db:af:96:8f:2f:ec:a5:6d:
b3:8f:3f:3d:cf:fc:f2:b0:af:5b:95:b8:8f:92:97:
6d:85:2f:6e:4d:0f:2d:7f:e2:51:ae:98:dd:e2:d3:
16:8f:69:db:46:65:75:12:29:ea:ce:9b:8a:31:90:
10:ad:68:0b:9a:cf:85:d2:14:f5:db:f1:57:7b:fb:
3d:fd:d1:57:46:e7:29:5c:f2:bf:04:7d:64:0d:75:
76:9e:51:c9:d1:34:ef:e5:d5:16:a1:c3:17:aa:12:
26:a9:ea:e3:47:b1:a1:9d:b7:0f:1c:eb:11:cd:89:
33:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:3E:F0:3C:21:2E:D5:3F:03:CA:67:84:CB:F7:9E:C1:E5:AF:E9:FB
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/dD7wPCEu1T8DymeEy_eeweWv6fs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.129.0/24
77.90.54.0/24
85.118.162.0/24
87.239.131.0/24
94.249.138.0/24
94.249.148.0/24
Signature Algorithm: sha256WithRSAEncryption
35:72:cd:c1:17:b5:b3:b9:a3:81:af:2a:72:0a:f5:a9:a8:11:
ba:5e:92:18:45:ec:bb:7d:2f:07:6e:fc:01:13:76:29:f6:6d:
87:4e:9b:03:7c:f2:24:99:fd:e7:fd:7c:cb:45:55:e7:af:7f:
e6:7e:b2:38:d9:85:29:34:35:5f:8c:bf:ee:2d:5e:dc:9a:1c:
1b:90:18:e4:e7:a0:9d:da:d8:24:10:f0:f7:c4:54:62:27:cc:
82:63:fe:5b:23:3c:c3:86:49:01:af:e4:19:5c:6b:5c:8b:81:
c0:ee:6e:06:71:9f:30:eb:d1:6a:ff:59:cc:d0:52:5e:72:5c:
5b:db:9a:f3:6e:f6:87:a6:9b:d4:6a:88:7f:65:80:98:8d:cb:
6b:ce:fd:ec:20:b5:ab:8a:1a:5c:23:43:c8:2f:6f:2a:bb:21:
fe:c0:9c:64:f6:81:14:af:b4:5d:13:d0:d4:40:4c:82:6d:04:
b9:93:96:20:a9:95:06:7c:04:75:12:52:9a:20:50:c1:71:e0:
39:cc:98:9d:f7:44:c6:62:68:ad:8f:83:27:8e:fd:8c:6f:4d:
06:eb:25:a8:fd:29:0f:5a:3b:01:29:2f:f0:68:02:40:1b:36:
d0:63:fd:02:e4:d5:b1:3a:49:05:eb:1f:7c:1d:96:7d:2b:ba:
57:89:fc:ac
-----BEGIN CERTIFICATE-----
MIIFGzCCBAOgAwIBAgISAZHAWtFVjnefglDj/DKyQkLnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNlNjA5NzY5ODY4NmUxNTU1ZjUxZjZjODgzYmM1YTU4NTQ5
YjIzNjIwHhcNMjQwOTA1MDQwNDIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NDNlZjAzYzIxMmVkNTNmMDNjYTY3ODRjYmY3OWVjMWU1YWZlOWZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo68sWtEHR2Bgpa/KXxyos/tZrGcK
43QivZWlHyDLoRXqdVuwTBcFHzjlD430KuMj9CSKWKwpawuJVng3wVmJc0R7XP+j
9qIcGYvTfNNyoM2TEDCsKRfZGqMJRVOLSYqogVEUOxFoG4wEQlni5KP/F9FQulEB
/hOCzDd2UEDoDwFUXGwf3Xqy30XpiNHQ26+Wjy/spW2zjz89z/zysK9blbiPkpdt
hS9uTQ8tf+JRrpjd4tMWj2nbRmV1EinqzpuKMZAQrWgLms+F0hT12/FXe/s9/dFX
RucpXPK/BH1kDXV2nlHJ0TTv5dUWocMXqhImqerjR7GhnbcPHOsRzYkzFQIDAQAB
o4ICJzCCAiMwHQYDVR0OBBYEFHQ+8DwhLtU/A8pnhMv3nsHlr+n7MB8GA1UdIwQY
MBaAFD5gl2mGhuFVX1H2yIO8WlhUmyNiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGIt
ZTFiZDg4ZDNmZDA3LzEvZEQ3d1BDRXUxVDhEeW1lRXlfZWV3ZVd2NmZzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGItZTFiZDg4ZDNmZDA3
LzEvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMD0GCCsGAQUFBwEHAQH/BC4wLDAqBAIAATAkAwQABVOBAwQA
TVo2AwQAVXaiAwQAV++DAwQAXvmKAwQAXvmUMA0GCSqGSIb3DQEBCwUAA4IBAQA1
cs3BF7WzuaOBrypyCvWpqBG6XpIYRey7fS8HbvwBE3Yp9m2HTpsDfPIkmf3n/XzL
RVXnr3/mfrI42YUpNDVfjL/uLV7cmhwbkBjk56Cd2tgkEPD3xFRiJ8yCY/5bIzzD
hkkBr+QZXGtci4HA7m4GcZ8w69Fq/1nM0FJeclxb25rzbvaHppvUaoh/ZYCYjctr
zv3sILWrihpcI0PIL28quyH+wJxk9oEUr7RdE9DUQEyCbQS5k5YgqZUGfAR1ElKa
IFDBceA5zJid90TGYmitj4Mnjv2Mb00G6yWo/SkPWjsBKS/waAJAGzbQY/0C5NWx
OkkF6x98HZZ9K7pXifys
-----END CERTIFICATE-----
Generated at Tue Sep 17 06:37:42 2024 by rpki-client on console-ams.rpki-client.org