Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/z5JaQ9MtelOOHnfzqP3bnGOsLNw.roa
File: z5JaQ9MtelOOHnfzqP3bnGOsLNw.roa (raw, json)
Hash identifier: /roG/8/nwEJtAYbPn+MXAt2oAzeLgl64UxYao1d80II=
Subject key identifier: CF:92:5A:43:D3:2D:7A:53:8E:1E:77:F3:A8:FD:DB:9C:63:AC:2C:DC
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 019301E2CFD744573E77CCCC4470D086ADF5
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/z5JaQ9MtelOOHnfzqP3bnGOsLNw.roa
Signing time: Wed 06 Nov 2024 14:31:01 +0000
ROA not before: Wed 06 Nov 2024 14:31:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214347
IP address blocks: 5.83.138.0/24 maxlen: 24
5.83.153.0/24 maxlen: 24
5.83.154.0/24 maxlen: 24
77.90.29.0/24 maxlen: 24
77.90.44.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 14 Nov 2024 05:10:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:01:e2:cf:d7:44:57:3e:77:cc:cc:44:70:d0:86:ad:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Nov 6 14:31:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cf925a43d32d7a538e1e77f3a8fddb9c63ac2cdc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:4b:84:08:3c:63:23:e2:d2:c5:0a:5b:fb:2c:
98:17:d0:5f:7c:b2:20:4b:ac:b0:15:84:3d:87:0b:
b4:a8:d8:30:c2:ff:48:c2:24:f9:1f:09:f5:95:cb:
46:83:4d:8d:bc:6b:96:40:0c:c5:87:bc:24:e5:6c:
05:2c:c1:0a:3f:23:94:82:9d:59:68:df:18:7e:dc:
ec:52:b6:a9:8c:ab:22:65:f7:97:d5:41:2a:ff:17:
08:6f:e2:d6:4a:99:0f:21:94:26:bf:6d:37:a8:9b:
48:f7:f0:65:84:b9:d0:37:91:ad:7e:37:71:50:1f:
b6:97:2f:49:c8:fe:ed:4b:e2:77:f4:ee:ff:76:b3:
4f:5e:b2:db:16:d4:a6:5d:04:26:69:6e:47:8f:58:
8b:d8:0b:03:fc:22:c2:96:e2:39:b3:cc:7b:ee:68:
90:b0:5f:a6:4d:ad:54:ae:54:49:ba:0a:c2:93:93:
b8:61:a8:38:2f:d7:7e:c6:20:66:c9:a7:89:4f:b8:
53:a5:61:92:4b:e2:8a:77:f0:b9:2e:4a:3e:e9:23:
7b:b2:be:14:93:1a:cb:45:5b:21:ee:b3:54:d7:1d:
24:6f:38:f8:7b:de:6e:ab:4c:10:bb:fc:e7:61:e1:
e6:f9:fb:83:7b:83:0d:06:7f:ea:6b:76:99:43:32:
b6:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:92:5A:43:D3:2D:7A:53:8E:1E:77:F3:A8:FD:DB:9C:63:AC:2C:DC
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/z5JaQ9MtelOOHnfzqP3bnGOsLNw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.138.0/24
5.83.153.0-5.83.154.255
77.90.29.0/24
77.90.44.0/24
Signature Algorithm: sha256WithRSAEncryption
70:7a:84:b3:af:d4:b4:84:c7:c9:73:4e:fe:d0:aa:15:1c:72:
da:ba:ce:ce:7d:ac:66:fa:33:ec:9d:e6:25:39:8b:0a:27:bf:
6b:c0:ab:02:d6:a2:26:81:c8:4d:cd:c5:91:ff:9f:a0:14:43:
d7:4a:a8:9f:85:f1:1f:f2:68:e2:ce:70:48:92:91:b6:d6:57:
0e:2c:5d:fe:46:9a:e4:c4:9c:62:dc:12:4f:69:1e:de:81:a7:
6f:26:de:a4:7d:d9:46:3b:e3:a8:a8:1b:52:70:af:77:53:47:
21:d2:dc:cc:b8:62:b6:ae:a4:1e:a0:8d:20:8b:4b:db:e5:bd:
2b:6e:58:9c:04:aa:18:89:f0:a7:da:0f:c8:70:86:95:7b:68:
6f:8b:8b:1d:42:74:e9:c2:29:8a:44:cc:a1:1b:04:1c:7d:8f:
df:b4:48:54:21:4e:f9:b5:a6:ac:b6:4e:aa:cc:2f:24:5c:cc:
60:a6:3a:9b:36:6b:cc:02:bb:c8:fa:33:e0:a0:c2:d5:41:34:
55:59:75:66:d5:7c:54:65:4b:3a:5b:cd:4a:c5:4d:13:db:b8:
12:1c:d1:95:0a:15:61:fe:d0:65:e6:48:2b:58:b4:cb:fe:d3:
a0:7e:2a:69:fd:03:0e:96:b6:90:eb:82:60:40:05:f9:62:a6:
c8:84:a5:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 14 06:09:44 2024 by rpki-client on console-ams.rpki-client.org