Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/pBwjVLSglmzpruuw1yWBuCIb_Wc.roa
File: pBwjVLSglmzpruuw1yWBuCIb_Wc.roa (raw, json)
Hash identifier: BBjCYrqZTWijOSuUnYl2nGOHoo+2WQwtB5rO24e6rYA=
Subject key identifier: A4:1C:23:54:B4:A0:96:6C:E9:AE:EB:B0:D7:25:81:B8:22:1B:FD:67
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 0191D5A6C822BBCC452779ECA85B2ECC83A1
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/pBwjVLSglmzpruuw1yWBuCIb_Wc.roa
Signing time: Mon 09 Sep 2024 07:19:22 +0000
ROA not before: Mon 09 Sep 2024 07:19:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 12586
IP address blocks: 5.83.128.0/19 maxlen: 32
5.83.128.0/20 maxlen: 32
5.83.151.0/24 maxlen: 32
5.83.156.0/24 maxlen: 24
5.175.128.0/17 maxlen: 32
5.175.255.0/24 maxlen: 32
5.230.0.0/15 maxlen: 32
5.230.6.0/24 maxlen: 32
5.230.11.0/24 maxlen: 32
5.230.102.0/24 maxlen: 32
5.230.224.0/24 maxlen: 32
5.231.233.0/24 maxlen: 32
77.90.0.0/18 maxlen: 32
77.90.29.0/24 maxlen: 24
77.90.30.0/24 maxlen: 24
77.90.31.0/24 maxlen: 24
77.90.35.0/24 maxlen: 24
77.90.36.0/24 maxlen: 24
77.90.37.0/24 maxlen: 24
77.90.38.0/24 maxlen: 24
77.90.40.0/24 maxlen: 24
77.90.41.0/24 maxlen: 24
77.90.42.0/24 maxlen: 24
77.90.44.0/24 maxlen: 24
77.90.45.0/24 maxlen: 24
77.90.46.0/24 maxlen: 24
77.90.47.0/24 maxlen: 24
83.243.80.0/21 maxlen: 32
85.93.0.0/19 maxlen: 32
85.93.20.0/24 maxlen: 32
85.118.160.0/21 maxlen: 32
87.239.128.0/21 maxlen: 32
87.239.131.0/24 maxlen: 24
89.106.64.0/19 maxlen: 32
89.144.0.0/18 maxlen: 32
94.103.160.0/20 maxlen: 32
94.249.128.0/17 maxlen: 32
94.249.138.0/24 maxlen: 24
95.215.32.0/22 maxlen: 32
178.18.144.0/20 maxlen: 32
178.18.151.0/24 maxlen: 32
185.13.156.0/22 maxlen: 32
185.47.140.0/24 maxlen: 32
185.47.141.0/24 maxlen: 32
185.121.71.0/24 maxlen: 32
193.28.251.0/24 maxlen: 32
195.110.14.0/23 maxlen: 32
217.69.160.0/20 maxlen: 32
2a00:12d8::/29 maxlen: 128
2a00:19d0::/29 maxlen: 128
2a00:cdc0::/32 maxlen: 128
2a01:bd40::/29 maxlen: 128
2a02:7a0::/29 maxlen: 128
2a02:2fc0::/29 maxlen: 128
Validation: Failed, certificate revoked on Tue 10 Sep 2024 04:14:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:d5:a6:c8:22:bb:cc:45:27:79:ec:a8:5b:2e:cc:83:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Sep 9 07:19:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a41c2354b4a0966ce9aeebb0d72581b8221bfd67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:bc:d3:ff:7b:68:f5:f2:d2:15:53:d8:a6:52:
93:11:19:77:49:02:06:4b:51:b6:e3:74:cb:02:09:
e0:f5:a7:83:34:0e:9c:c2:e3:9d:d9:c4:97:9d:2b:
2b:2c:53:aa:fa:73:09:3c:38:c9:94:bf:96:c1:0d:
c5:32:57:97:c7:14:79:d7:ba:a9:ac:2e:bb:e8:4e:
f8:1f:68:c4:e9:10:43:d5:a4:ee:80:25:88:5a:7e:
5d:91:66:b6:fd:8d:45:fe:93:69:56:69:07:9f:75:
e7:fc:11:99:ba:34:13:a1:fd:4d:80:63:1b:6a:20:
bd:c4:56:fb:32:32:27:68:15:30:f3:21:f6:17:3b:
d8:92:59:51:fd:55:40:e0:e9:75:59:e8:64:fa:1a:
42:fa:b8:74:24:65:be:57:8a:17:29:fd:48:d0:3b:
21:7c:06:36:29:a5:27:ae:cb:72:cb:22:63:a9:e2:
87:cf:eb:cb:73:9d:8f:bd:d0:9c:5c:ef:dd:cc:1e:
a6:7b:85:90:92:cf:c2:ab:7a:08:32:52:ee:48:b6:
d1:ae:40:d3:d2:f6:be:41:ce:6f:4b:e5:0c:40:f9:
f6:b8:f9:67:e6:12:66:48:b9:2b:03:a4:3c:2e:9c:
4c:ea:2d:20:c0:f9:cd:ca:80:8a:65:ea:58:b8:e2:
e0:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:1C:23:54:B4:A0:96:6C:E9:AE:EB:B0:D7:25:81:B8:22:1B:FD:67
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/pBwjVLSglmzpruuw1yWBuCIb_Wc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.128.0/19
5.175.128.0/17
5.230.0.0/15
77.90.0.0/18
83.243.80.0/21
85.93.0.0/19
85.118.160.0/21
87.239.128.0/21
89.106.64.0/19
89.144.0.0/18
94.103.160.0/20
94.249.128.0/17
95.215.32.0/22
178.18.144.0/20
185.13.156.0/22
185.47.140.0/23
185.121.71.0/24
193.28.251.0/24
195.110.14.0/23
217.69.160.0/20
IPv6:
2a00:12d8::/29
2a00:19d0::/29
2a00:cdc0::/32
2a01:bd40::/29
2a02:7a0::/29
2a02:2fc0::/29
Signature Algorithm: sha256WithRSAEncryption
d7:b1:ec:a0:62:aa:e8:15:de:4f:9f:90:87:bf:eb:5e:0a:02:
6c:af:2c:3c:51:01:a1:1c:75:62:88:b6:b9:c4:62:67:f9:6a:
dc:ea:be:b0:55:52:7e:c0:ba:7a:d2:e5:f3:eb:02:3b:f7:62:
13:4d:f3:f5:fb:74:58:be:0f:40:7b:f8:cd:9a:61:4b:64:d7:
70:e6:51:ac:4a:4f:89:df:d6:bf:a3:46:46:e9:a6:18:fb:5c:
a7:45:6d:30:21:b2:ff:e8:6f:2b:98:18:d6:75:99:28:a6:53:
0a:92:b9:36:b6:f0:b4:70:a4:35:23:61:8f:7c:1d:0a:f8:70:
42:06:d4:26:60:f5:24:2c:79:59:f4:d7:83:ff:81:16:25:e2:
b2:dc:d9:f7:b5:38:ef:ed:f9:d2:2b:31:8f:b1:6c:dc:6f:16:
b7:c7:a9:a4:5d:9a:8d:5c:2e:d7:59:6e:95:a7:f8:fc:7e:c3:
32:ff:74:b8:78:fa:e5:55:21:78:46:ca:24:27:ea:39:99:b3:
45:4b:d4:85:6c:fe:41:2c:08:24:75:95:a4:d0:37:57:02:20:
fc:96:33:b9:61:e3:73:1a:ab:74:86:55:5a:49:ea:d3:45:40:
a5:01:03:12:9f:63:30:44:a7:74:54:f9:e9:84:e4:ff:21:16:
48:be:77:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 10 05:37:11 2024 by rpki-client on console-ams.rpki-client.org