Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/563zNBOku7bUuqzEj2iCrX3uThg.roa
File: 563zNBOku7bUuqzEj2iCrX3uThg.roa (raw, json)
Hash identifier: bMzuStXY/z+8V+4GyqwIitBbfmyjMgtlmT1fM4i6Oxo=
Subject key identifier: E7:AD:F3:34:13:A4:BB:B6:D4:BA:AC:C4:8F:68:82:AD:7D:EE:4E:18
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 01967F1565010ABB0F4A3EE19A5E0262F809
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/563zNBOku7bUuqzEj2iCrX3uThg.roa
Signing time: Tue 29 Apr 2025 01:07:10 +0000
ROA not before: Tue 29 Apr 2025 01:07:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 36352
IP address blocks: 5.83.139.0/24 maxlen: 24
5.231.30.0/24 maxlen: 24
5.231.94.0/24 maxlen: 24
5.231.105.0/24 maxlen: 24
5.231.115.0/24 maxlen: 24
5.231.204.0/24 maxlen: 24
77.90.7.0/24 maxlen: 24
83.243.86.0/24 maxlen: 24
85.93.1.0/24 maxlen: 24
85.118.167.0/24 maxlen: 24
87.239.129.0/24 maxlen: 24
89.106.72.0/24 maxlen: 24
89.106.73.0/24 maxlen: 24
89.106.89.0/24 maxlen: 24
89.106.91.0/24 maxlen: 24
89.144.3.0/24 maxlen: 24
94.103.168.0/24 maxlen: 24
94.249.172.0/24 maxlen: 24
94.249.173.0/24 maxlen: 24
94.249.194.0/24 maxlen: 24
94.249.233.0/24 maxlen: 24
94.249.238.0/24 maxlen: 24
94.249.239.0/24 maxlen: 24
95.215.33.0/24 maxlen: 24
178.18.151.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 30 Apr 2025 21:17:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7f:15:65:01:0a:bb:0f:4a:3e:e1:9a:5e:02:62:f8:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Apr 29 01:07:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e7adf33413a4bbb6d4baacc48f6882ad7dee4e18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:c9:4c:19:ed:24:73:67:ef:48:39:89:67:f6:
78:8f:3d:a0:cf:b3:ad:72:ec:5d:00:81:7f:9e:78:
12:ed:1d:9d:16:bb:e4:86:3c:79:ec:86:3c:cb:83:
45:7f:83:64:a2:76:22:bd:de:2d:7f:6a:4f:db:0c:
4a:0b:82:09:a6:16:60:6f:ed:59:1d:22:a2:75:7d:
d3:67:7c:15:36:47:02:a0:f2:86:7c:ca:3b:7a:75:
96:12:f8:db:f4:0d:e0:4e:54:c4:f8:42:a1:d5:dc:
15:10:06:e7:02:4e:40:e6:b2:ba:db:60:d7:6d:57:
84:8f:b0:b0:eb:e0:c7:4d:8d:2b:39:b1:52:48:25:
aa:e2:a3:aa:b2:d1:dc:0e:23:80:3e:d7:1b:ff:f2:
2e:ab:08:59:25:64:66:ea:ad:94:e3:15:3c:b9:9c:
e4:ae:45:84:55:54:1f:33:2d:12:1f:12:66:35:15:
93:0f:8d:12:44:58:7d:4d:e3:14:a5:1f:b4:aa:87:
2c:12:55:f3:56:2f:9f:45:13:39:b0:bc:e0:93:0b:
bb:51:36:d9:a3:d4:1d:12:c7:b9:d8:c0:04:1e:e1:
36:c8:5d:db:b3:e2:0e:37:84:c3:df:75:39:e7:e4:
9b:c5:0f:80:7e:80:6d:23:61:9c:a6:dd:0f:52:04:
06:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:AD:F3:34:13:A4:BB:B6:D4:BA:AC:C4:8F:68:82:AD:7D:EE:4E:18
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/563zNBOku7bUuqzEj2iCrX3uThg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.139.0/24
5.231.30.0/24
5.231.94.0/24
5.231.105.0/24
5.231.115.0/24
5.231.204.0/24
77.90.7.0/24
83.243.86.0/24
85.93.1.0/24
85.118.167.0/24
87.239.129.0/24
89.106.72.0/23
89.106.89.0/24
89.106.91.0/24
89.144.3.0/24
94.103.168.0/24
94.249.172.0/23
94.249.194.0/24
94.249.233.0/24
94.249.238.0/23
95.215.33.0/24
178.18.151.0/24
Signature Algorithm: sha256WithRSAEncryption
49:94:9b:b5:80:e3:b4:75:98:06:96:82:14:d0:39:45:13:98:
70:43:c6:54:27:21:3b:d7:f5:c8:e9:27:4e:ae:b5:80:a0:cd:
9f:0d:3d:1f:95:5a:45:cd:8a:8e:21:30:3f:dc:c7:b1:f1:6e:
a3:8c:26:78:30:bc:e4:b8:35:8d:10:41:69:cb:a8:51:0c:16:
5d:3b:22:87:f8:69:4c:23:83:86:1c:6f:cc:8f:7d:92:28:8c:
f2:5b:26:a3:6b:94:21:34:73:ae:a8:e1:5e:2e:cc:1e:12:70:
54:bb:92:fa:ed:ae:59:d9:75:5f:78:4f:b9:b1:1e:49:0c:87:
2b:16:73:b6:c0:f4:f3:aa:cf:e1:47:38:e7:6b:60:c1:4c:bc:
03:ca:f0:97:1a:d1:28:65:3f:31:05:80:5d:f0:ee:ec:8a:1d:
3a:c8:7a:73:ee:92:19:cb:9e:14:c7:78:82:d8:13:63:57:ed:
57:12:ec:0f:61:47:18:fd:b8:63:8b:93:52:38:db:bb:c7:9c:
ab:2d:38:6b:cd:8f:7a:c6:80:c1:89:4f:6a:c7:03:ec:44:dd:
5e:91:34:4b:9e:5c:8c:22:0a:6a:78:0c:14:b5:d3:b5:e6:79:
1b:9c:ed:fb:d4:42:fc:c1:63:0c:d6:d6:91:c0:d1:0a:dc:31:
06:35:ce:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 08:25:20 2025 by rpki-client