Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/vHwrXxjCN0wJEX9Sdp-HKcmkWck.roa
File: vHwrXxjCN0wJEX9Sdp-HKcmkWck.roa (raw, json)
Hash identifier: r3ew5H4qdNfUv3dSETNLpwbucFWHI+TdL1fW2aDXVGo=
Subject key identifier: BC:7C:2B:5F:18:C2:37:4C:09:11:7F:52:76:9F:87:29:C9:A4:59:C9
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 0192B0A417DD36C6A2F384CC44294FCC13ED
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/vHwrXxjCN0wJEX9Sdp-HKcmkWck.roa
Signing time: Mon 21 Oct 2024 19:53:16 +0000
ROA not before: Mon 21 Oct 2024 19:53:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43260
IP address blocks: 5.83.129.0/24 maxlen: 24
5.175.138.0/24 maxlen: 24
5.231.70.0/24 maxlen: 24
77.90.54.0/24 maxlen: 24
77.90.55.0/24 maxlen: 24
85.118.162.0/24 maxlen: 24
87.239.131.0/24 maxlen: 24
94.249.138.0/24 maxlen: 24
94.249.148.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 24 Oct 2024 01:24:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:b0:a4:17:dd:36:c6:a2:f3:84:cc:44:29:4f:cc:13:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Oct 21 19:53:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bc7c2b5f18c2374c09117f52769f8729c9a459c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:4f:81:f4:d5:0d:9a:ee:27:10:99:f0:f0:e1:
e2:2c:cb:56:d1:b5:94:61:17:f5:3d:56:ca:a4:ba:
82:2d:f9:50:85:4b:a8:3f:f1:20:4d:07:05:a1:92:
14:38:c3:36:56:47:e7:24:0a:0f:fe:cd:ea:07:c5:
a5:05:eb:d2:63:f2:a8:dc:f3:48:86:64:e2:f5:4e:
23:3f:47:1e:b1:ee:c8:84:7e:a8:3c:30:2a:dc:3f:
80:52:3f:01:b8:8e:d6:1e:bb:47:26:76:57:a9:50:
ef:dc:2e:d8:c2:1a:7b:ee:b3:4a:4a:04:29:fc:1b:
31:c8:97:c7:fc:5c:4e:e0:6f:d7:23:86:58:fd:f0:
c9:4f:85:f0:b4:99:a6:6a:3e:8f:75:63:25:cf:b9:
84:8e:5f:51:5c:e2:80:5a:d6:f8:12:ec:3e:1f:37:
88:fc:ae:9d:3f:d5:1d:59:b8:8f:4c:c4:0d:ea:40:
d2:99:ff:bc:20:a7:ab:c1:4c:6e:fc:cf:0c:45:76:
b9:39:c5:b9:d5:ff:1a:63:64:11:08:51:07:5b:92:
1c:b6:a2:6c:a0:4c:b8:e3:1e:2e:f5:0c:83:41:12:
a5:31:aa:97:44:fb:7a:25:dc:7b:02:e0:1d:4c:ea:
98:4d:2a:b9:cd:2a:e6:a8:1d:61:31:0a:05:a3:88:
93:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:7C:2B:5F:18:C2:37:4C:09:11:7F:52:76:9F:87:29:C9:A4:59:C9
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/vHwrXxjCN0wJEX9Sdp-HKcmkWck.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.129.0/24
5.175.138.0/24
5.231.70.0/24
77.90.54.0/23
85.118.162.0/24
87.239.131.0/24
94.249.138.0/24
94.249.148.0/24
Signature Algorithm: sha256WithRSAEncryption
47:b4:a4:e1:72:da:fe:c3:98:7f:17:b3:ea:b5:8f:04:b5:2e:
1b:a9:e6:3e:ed:78:9e:69:e2:0d:43:ec:21:dd:e0:e9:c2:21:
e7:b0:60:63:31:c2:94:d7:6f:9e:29:d2:17:98:32:4e:5a:bf:
bc:ed:da:55:04:bc:c9:05:ad:4f:d8:7d:4a:75:0a:e6:e4:a8:
94:15:f0:8a:bc:c3:5f:06:7c:f9:0c:b8:34:4c:5b:5d:a5:43:
28:77:4d:06:5d:87:9b:c4:ac:a9:77:6e:69:9e:92:3b:2c:d2:
da:b1:ea:64:9c:96:36:f9:c7:89:55:a8:88:e1:4e:af:66:85:
ec:d7:a8:f6:a1:ba:4e:27:e6:be:d6:58:6d:13:1b:73:c4:7d:
fd:a7:57:9a:88:5c:de:8d:fd:80:91:e1:1f:27:7c:05:47:37:
5a:67:e8:96:b1:1e:29:26:ab:01:28:55:55:c2:bc:5a:de:ae:
38:ab:e5:08:fb:c9:b4:04:16:93:1a:64:d0:65:39:0a:5b:56:
15:34:01:12:c8:c5:82:bc:bb:26:73:03:41:6d:2b:05:d2:cc:
25:86:bb:06:ac:17:18:1f:3c:8e:fa:0c:1a:8b:60:fd:fd:6f:
e2:9e:8c:a0:66:fb:82:39:7e:d3:cf:5d:12:09:0e:11:c6:77:
66:4d:b5:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 24 05:37:38 2024 by rpki-client on console-ams.rpki-client.org