Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/yWtzD5H4an2xmuBlL_U072DECo8.roa
File: yWtzD5H4an2xmuBlL_U072DECo8.roa (raw, json)
Hash identifier: q1WD2QF1PlgsU+Cz27KtdnIfSV1Xb6bE/D3uPoTTvyU=
Subject key identifier: C9:6B:73:0F:91:F8:6A:7D:B1:9A:E0:65:2F:F5:34:EF:60:C4:0A:8F
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 01921F2544AB03CF3CC35518157061B1DC4E
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/yWtzD5H4an2xmuBlL_U072DECo8.roa
Signing time: Mon 23 Sep 2024 13:49:48 +0000
ROA not before: Mon 23 Sep 2024 13:49:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214347
IP address blocks: 5.83.138.0/24 maxlen: 24
5.83.153.0/24 maxlen: 24
5.83.154.0/24 maxlen: 24
77.90.29.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 10 Oct 2024 00:33:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:1f:25:44:ab:03:cf:3c:c3:55:18:15:70:61:b1:dc:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Sep 23 13:49:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c96b730f91f86a7db19ae0652ff534ef60c40a8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:1e:4b:76:ca:30:56:1c:09:be:15:2b:f6:e1:
28:f7:39:05:42:b7:48:8a:d8:4b:16:ae:2d:c0:d8:
97:82:03:08:a6:1d:c7:ff:cc:a7:dd:60:99:2a:86:
b4:90:00:24:db:f0:b3:b7:18:ee:e8:13:b6:34:c9:
a2:63:57:dd:0a:f6:7d:c0:34:46:9b:cf:79:ca:82:
43:76:d7:09:6e:04:62:97:4e:92:2f:bc:c1:78:6d:
c9:56:29:58:0a:0e:7c:f2:ea:8f:0d:df:23:48:73:
f2:5c:0e:4c:d2:da:b0:56:9f:de:5c:fc:70:0a:70:
7c:4f:21:d1:3f:a0:63:43:01:f3:69:2f:0a:6d:0d:
a5:ec:8e:47:df:a1:09:0c:7e:f7:81:95:25:8e:1a:
46:0a:66:6b:18:18:2f:89:8b:46:75:52:85:45:e4:
14:d5:d2:f5:5b:14:7d:5f:50:98:6d:24:47:1c:70:
81:da:ec:ab:a9:e1:de:fe:75:59:98:b0:b5:41:f8:
e9:ad:a4:03:b4:c7:4b:95:7b:70:8d:33:c0:0e:47:
56:77:d7:a3:93:ae:c1:b6:1b:16:e1:47:43:a5:13:
bb:ec:8c:a2:0d:06:b6:59:4d:e4:87:9d:f8:33:13:
c8:31:d3:43:c1:77:9c:2a:56:d5:df:e7:f2:4b:45:
e7:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:6B:73:0F:91:F8:6A:7D:B1:9A:E0:65:2F:F5:34:EF:60:C4:0A:8F
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/yWtzD5H4an2xmuBlL_U072DECo8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.138.0/24
5.83.153.0-5.83.154.255
77.90.29.0/24
Signature Algorithm: sha256WithRSAEncryption
09:65:5a:15:fe:b6:f7:e2:0a:4f:b6:ec:bf:ee:cb:2b:90:c4:
51:62:69:dd:e5:ce:a1:b1:eb:10:8b:f6:6f:0b:fb:8b:4f:e8:
e0:d7:e8:d4:d7:d7:84:41:b4:bd:04:5e:81:a0:cc:a9:68:cd:
ff:48:0e:81:9e:9d:28:6e:1f:20:3c:eb:2e:78:a3:b8:bc:c2:
35:b4:6d:60:84:f9:75:04:2a:b6:61:83:c2:cd:f2:b6:43:0e:
06:32:de:78:10:77:17:23:25:cc:d8:bb:47:47:14:4b:09:82:
b3:30:32:12:f8:79:d5:3d:13:b8:4f:51:d5:29:69:04:e0:b4:
49:09:c3:ee:5d:a6:8e:41:09:73:79:1a:bd:62:31:03:c7:e2:
e7:fc:fc:da:87:a8:b9:80:12:3b:db:68:4e:73:ce:69:a5:df:
64:d2:18:64:93:58:3f:8e:c5:64:43:da:18:a4:a8:44:d4:69:
95:5b:07:29:9b:48:93:ae:da:4e:b9:b9:c1:9c:ee:1f:67:95:
ad:9d:f6:53:44:e9:f2:d9:e7:44:24:cb:b7:aa:97:9f:61:11:
ca:1f:32:01:b3:5e:30:51:22:b1:a1:f1:4a:c9:ac:10:1c:8e:
84:30:a0:d2:26:b5:1f:ae:27:7f:f6:d3:fa:21:89:19:5e:21:
d4:1e:82:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 10 06:23:12 2024 by rpki-client on console-fra.rpki-client.org