Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/pWePGuX9zYKz5ut92DnTgwJlWLc.roa
File: pWePGuX9zYKz5ut92DnTgwJlWLc.roa (raw, json)
Hash identifier: mzjAFNihTGHRlGU55RoTjqFQ/28iA8ayDYCLFSwzj7Y=
Subject key identifier: A5:67:8F:1A:E5:FD:CD:82:B3:E6:EB:7D:D8:39:D3:83:02:65:58:B7
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 01936CE46EB46D30BEECFCBB2E06A87F4ED9
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/pWePGuX9zYKz5ut92DnTgwJlWLc.roa
Signing time: Wed 27 Nov 2024 09:12:10 +0000
ROA not before: Wed 27 Nov 2024 09:12:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 62880
IP address blocks: 5.175.236.0/24 maxlen: 24
5.175.237.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 29 Nov 2024 12:47:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:6c:e4:6e:b4:6d:30:be:ec:fc:bb:2e:06:a8:7f:4e:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Nov 27 09:12:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a5678f1ae5fdcd82b3e6eb7dd839d383026558b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:98:5b:cb:f1:00:ea:27:50:0e:0a:da:d9:2d:
ce:1c:b4:1c:c4:44:a4:14:e1:59:94:da:7d:d4:c8:
ab:25:b3:a4:15:e9:f5:6f:2c:27:4a:b5:49:66:aa:
4d:98:79:52:a7:a1:77:50:93:f5:e3:79:5d:78:35:
b0:86:19:8b:e3:7a:86:7b:b7:82:01:78:1f:03:e6:
96:bf:af:e6:bf:b9:97:3d:0a:8d:44:71:d3:85:d8:
7f:78:7c:f7:49:f7:38:14:2a:69:49:c8:80:9c:bd:
b2:f3:3b:f7:99:fc:dc:83:98:66:37:5b:79:79:0d:
23:bb:d5:29:cb:41:08:2f:54:f2:91:8b:36:34:da:
1c:c0:8e:7a:6e:fd:70:7c:da:6b:cb:15:46:0c:96:
1e:2a:18:c1:f1:6c:7f:b4:29:81:25:27:bf:6e:dd:
eb:5d:2c:f4:76:2e:2f:7f:95:de:1e:7b:8f:d3:3c:
77:b7:19:5b:b3:64:b3:07:2f:08:1a:aa:60:f9:1c:
fb:07:a7:1f:c1:29:45:ac:a4:a0:d8:2e:e8:25:c9:
8f:81:5e:28:5d:08:3a:a6:77:29:3b:bf:e8:ef:d0:
26:68:42:40:58:eb:1e:96:3b:be:ef:1f:16:b2:88:
43:6a:64:53:03:04:ee:e3:23:c1:06:57:d1:88:94:
63:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:67:8F:1A:E5:FD:CD:82:B3:E6:EB:7D:D8:39:D3:83:02:65:58:B7
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/pWePGuX9zYKz5ut92DnTgwJlWLc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.175.236.0/23
Signature Algorithm: sha256WithRSAEncryption
e3:8a:5a:47:0f:79:98:26:67:ad:47:79:44:a1:6b:a8:71:18:
d8:be:e4:06:20:7e:cc:ca:3b:83:7e:8e:10:09:66:d1:84:74:
18:97:5d:28:65:2b:0e:fd:4e:f5:84:6c:c2:f5:93:b6:22:0f:
9d:96:4a:38:47:d8:30:48:84:ec:4d:1a:1a:83:29:8a:7d:c3:
0b:49:90:48:59:5b:87:2f:81:bd:d9:18:d0:0f:af:41:a8:57:
3c:e1:23:d3:c8:c0:f3:73:f8:44:76:1e:32:f3:0f:76:79:75:
2c:09:b2:91:48:88:d8:d9:1c:e1:b4:96:66:6b:67:d0:1a:d4:
bb:83:9c:ec:46:d9:28:55:46:1c:25:c2:48:a3:11:63:c5:2e:
c5:d4:82:de:fd:60:07:95:43:e2:7f:4d:63:26:2b:53:7a:58:
82:37:4e:1b:35:a6:57:6a:20:35:97:32:52:64:a3:0a:27:3a:
a7:59:60:76:a5:4e:9a:67:27:2b:f9:d5:39:5b:ea:11:f5:40:
3e:71:d3:b4:27:25:18:cf:cd:64:5b:0b:08:ca:56:b0:52:3c:
96:ef:50:76:f1:6e:20:41:5c:dd:ad:87:6f:fc:56:a1:3e:31:
91:d3:28:cf:3d:ad:9a:0e:b0:7a:c2:a6:cc:03:d7:94:e7:fd:
9c:41:e2:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 03:25:18 2025 by rpki-client