Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/6biiuVgKy2PIbgZPfVyJGf155-Y.roa
File: 6biiuVgKy2PIbgZPfVyJGf155-Y.roa (raw, json)
Hash identifier: tMnNFYLJEP9xYTd29WGljHJONPjF/tEVuIB/5Yv9yCI=
Subject key identifier: E9:B8:A2:B9:58:0A:CB:63:C8:6E:06:4F:7D:5C:89:19:FD:79:E7:E6
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 0196C9F5CCBF8A8890F78A5B4C6090A28739
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/6biiuVgKy2PIbgZPfVyJGf155-Y.roa
Signing time: Tue 13 May 2025 14:04:11 +0000
ROA not before: Tue 13 May 2025 14:04:11 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 57043
IP address blocks: 5.83.138.0/24 maxlen: 24
5.175.209.0/24 maxlen: 24
5.175.210.0/24 maxlen: 24
5.175.211.0/24 maxlen: 24
5.175.212.0/24 maxlen: 24
5.175.213.0/24 maxlen: 24
5.175.214.0/24 maxlen: 24
5.175.238.0/24 maxlen: 24
5.230.164.0/24 maxlen: 24
5.231.61.0/24 maxlen: 24
5.231.71.0/24 maxlen: 24
5.231.72.0/24 maxlen: 24
5.231.73.0/24 maxlen: 24
5.231.74.0/24 maxlen: 24
5.231.75.0/24 maxlen: 24
5.231.79.0/24 maxlen: 24
5.231.92.0/24 maxlen: 24
5.231.113.0/24 maxlen: 24
5.231.240.0/24 maxlen: 24
5.231.241.0/24 maxlen: 24
5.231.242.0/24 maxlen: 24
5.231.243.0/24 maxlen: 24
5.231.244.0/24 maxlen: 24
5.231.245.0/24 maxlen: 24
5.231.246.0/24 maxlen: 24
5.231.247.0/24 maxlen: 24
5.231.248.0/24 maxlen: 24
85.93.5.0/24 maxlen: 24
85.93.21.0/24 maxlen: 24
85.93.31.0/24 maxlen: 24
89.106.90.0/24 maxlen: 24
89.144.5.0/24 maxlen: 24
94.249.168.0/24 maxlen: 24
94.249.169.0/24 maxlen: 24
94.249.180.0/24 maxlen: 24
94.249.181.0/24 maxlen: 24
94.249.237.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 18 May 2025 16:16:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c9:f5:cc:bf:8a:88:90:f7:8a:5b:4c:60:90:a2:87:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: May 13 14:04:11 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e9b8a2b9580acb63c86e064f7d5c8919fd79e7e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:98:f9:d0:c5:58:3c:27:91:98:27:09:ee:ca:
7f:45:c2:32:aa:9d:c3:69:5e:5d:e9:01:5a:28:17:
40:a7:11:66:2b:8a:65:de:c2:58:38:14:97:61:d2:
20:2c:5f:3f:78:34:7b:08:d7:3b:84:cf:2b:fd:83:
8b:85:5b:60:f0:d8:67:f6:a8:1c:cf:2f:8b:e2:c6:
d0:9d:a4:48:c8:22:a0:16:c9:8f:5f:0f:34:b6:95:
e9:b3:8a:7b:9f:ee:d5:c5:74:6b:34:de:18:00:ab:
95:68:ff:fb:09:83:ff:b3:a3:b2:2a:ff:76:3e:0a:
6b:0b:46:41:90:bb:b8:17:43:2c:c3:44:ff:38:8c:
ff:e7:b1:33:e2:3f:14:64:2e:6b:80:62:ed:bf:75:
e0:54:a6:af:ef:72:70:c3:73:6e:c8:5b:94:68:b4:
c9:33:45:e3:a5:62:e8:ec:f5:52:a4:97:1f:85:4c:
f8:d8:2a:a3:8b:40:f2:06:c2:9f:43:10:de:0e:bb:
01:52:f5:29:f1:92:2a:8d:a3:26:c6:3b:37:d6:eb:
78:75:d4:dc:a0:4b:d7:dc:74:9b:5b:9d:ce:5d:55:
d8:c8:5f:3d:26:f4:e3:5e:9e:f2:6b:5f:03:bc:6a:
12:c1:b0:f5:e1:54:36:b8:a3:90:9e:cf:2e:fe:96:
4e:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:B8:A2:B9:58:0A:CB:63:C8:6E:06:4F:7D:5C:89:19:FD:79:E7:E6
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/6biiuVgKy2PIbgZPfVyJGf155-Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.138.0/24
5.175.209.0-5.175.214.255
5.175.238.0/24
5.230.164.0/24
5.231.61.0/24
5.231.71.0-5.231.75.255
5.231.79.0/24
5.231.92.0/24
5.231.113.0/24
5.231.240.0-5.231.248.255
85.93.5.0/24
85.93.21.0/24
85.93.31.0/24
89.106.90.0/24
89.144.5.0/24
94.249.168.0/23
94.249.180.0/23
94.249.237.0/24
Signature Algorithm: sha256WithRSAEncryption
04:b3:d8:0f:74:0a:07:5d:cb:50:53:72:79:01:f7:90:ed:af:
91:e3:b8:67:3a:30:cb:f8:c9:52:0e:0f:88:b1:02:e4:db:9d:
dd:dc:a1:28:38:91:3c:aa:ec:59:83:cf:a0:9a:74:ef:7e:1b:
8b:3f:94:db:fc:37:f6:89:20:d6:03:d2:e7:b7:79:0e:1e:e6:
45:eb:bb:24:5e:cd:4b:ed:4a:fe:a9:a0:6d:2a:99:f9:24:1a:
fe:db:f1:28:7e:11:3f:60:bc:59:82:df:4a:8f:1e:e4:8c:44:
6f:ec:1a:40:db:3d:1a:e0:07:2a:e7:d2:00:28:2c:b0:0c:92:
fe:96:05:c1:c5:5b:9d:a8:a8:4b:8a:9b:46:8a:06:14:16:79:
d3:b0:c3:ee:0c:e5:fa:8f:cf:6b:2d:60:17:73:e0:a7:43:c7:
b9:e1:d2:94:47:cd:84:c8:d2:b9:98:d9:dc:bf:ce:ef:0e:7e:
8b:cc:d3:d5:02:29:46:02:d0:02:42:ae:a9:dc:5f:c3:7d:67:
32:ce:b3:cb:b9:97:37:75:42:5f:85:d4:8a:ec:83:3d:bb:74:
82:31:cd:ed:2e:51:f5:f8:13:42:80:7f:98:ed:81:33:18:78:
7c:c1:cd:b9:72:bc:1f:e1:a0:88:5e:ea:17:10:b5:70:a7:9f:
88:9c:16:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 22:10:43 2025 by rpki-client