Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/8wJEsfeTPAYyN2ppGPlkflhhnmE.roa
File: 8wJEsfeTPAYyN2ppGPlkflhhnmE.roa (raw, json)
Hash identifier: ApNoS0iIvtVlV7ijSK/8hHOqk0euNZ/sHlYwJ2CzwIg=
Subject key identifier: F3:02:44:B1:F7:93:3C:06:32:37:6A:69:18:F9:64:7E:58:61:9E:61
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 0196A477665BDA984CF43196B1C11C146DDE
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/8wJEsfeTPAYyN2ppGPlkflhhnmE.roa
Signing time: Tue 06 May 2025 07:20:10 +0000
ROA not before: Tue 06 May 2025 07:20:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 57043
IP address blocks: 5.83.138.0/24 maxlen: 24
5.175.238.0/24 maxlen: 24
5.230.164.0/24 maxlen: 24
5.231.61.0/24 maxlen: 24
5.231.71.0/24 maxlen: 24
5.231.72.0/24 maxlen: 24
5.231.73.0/24 maxlen: 24
5.231.74.0/24 maxlen: 24
5.231.75.0/24 maxlen: 24
5.231.79.0/24 maxlen: 24
5.231.92.0/24 maxlen: 24
5.231.113.0/24 maxlen: 24
5.231.240.0/24 maxlen: 24
5.231.241.0/24 maxlen: 24
5.231.242.0/24 maxlen: 24
5.231.243.0/24 maxlen: 24
5.231.244.0/24 maxlen: 24
5.231.245.0/24 maxlen: 24
5.231.246.0/24 maxlen: 24
5.231.247.0/24 maxlen: 24
5.231.248.0/24 maxlen: 24
85.93.5.0/24 maxlen: 24
85.93.21.0/24 maxlen: 24
85.93.31.0/24 maxlen: 24
89.106.90.0/24 maxlen: 24
89.144.5.0/24 maxlen: 24
89.144.11.0/24 maxlen: 24
94.249.168.0/24 maxlen: 24
94.249.169.0/24 maxlen: 24
94.249.237.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 08 May 2025 10:47:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a4:77:66:5b:da:98:4c:f4:31:96:b1:c1:1c:14:6d:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: May 6 07:20:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f30244b1f7933c0632376a6918f9647e58619e61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:b8:4c:26:e1:a6:63:c1:2e:9d:ff:75:4a:63:
ec:d4:c5:f6:7d:48:b7:25:62:87:c9:75:27:5b:9a:
86:2a:16:da:02:30:19:fb:1d:92:1e:dd:49:96:44:
9e:f2:d1:da:e3:ba:01:64:ba:c1:96:ee:a7:dd:b7:
c9:b0:8a:90:d2:25:1d:67:d3:a4:c5:1e:38:8c:e0:
c1:e9:d6:bc:9a:b4:df:9c:61:22:83:b1:9c:95:72:
45:a4:17:ea:bd:df:df:bc:b4:35:6f:c4:ac:27:ea:
5e:35:19:62:2d:5e:d6:12:c2:28:aa:20:4f:d2:7a:
5a:90:ad:39:72:a9:2a:f5:a4:b3:a1:c0:41:a1:e9:
d5:10:8a:ed:cb:24:3d:a5:42:e1:bd:16:0b:94:69:
2d:ec:11:e1:29:92:fa:0f:65:7d:0c:61:99:84:d7:
40:d7:c3:a7:24:ae:d7:38:73:77:fa:6a:7c:8c:a2:
08:d4:d5:84:56:88:8f:ca:2e:1e:c3:a8:24:b4:39:
1b:3f:eb:4b:21:25:41:d0:83:ac:ca:d1:ed:a5:38:
3c:31:1d:09:3a:c6:66:71:55:37:ac:16:03:42:b7:
c9:a7:e1:77:e6:96:14:0b:5b:85:1d:8a:02:96:ab:
b2:61:ce:57:5c:53:6c:cb:9a:20:d5:93:89:43:96:
d0:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:02:44:B1:F7:93:3C:06:32:37:6A:69:18:F9:64:7E:58:61:9E:61
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/8wJEsfeTPAYyN2ppGPlkflhhnmE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.138.0/24
5.175.238.0/24
5.230.164.0/24
5.231.61.0/24
5.231.71.0-5.231.75.255
5.231.79.0/24
5.231.92.0/24
5.231.113.0/24
5.231.240.0-5.231.248.255
85.93.5.0/24
85.93.21.0/24
85.93.31.0/24
89.106.90.0/24
89.144.5.0/24
89.144.11.0/24
94.249.168.0/23
94.249.237.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:63:0e:02:42:9e:c1:cb:b8:df:5a:dc:67:3f:8f:f9:36:79:
ad:3d:5c:14:b8:76:2f:da:90:45:a4:62:03:60:6a:36:53:7f:
28:f2:78:99:04:8e:1a:a5:c7:ad:72:d4:f3:8f:a1:e8:b7:67:
6a:75:5e:ff:c7:97:5a:0a:fb:03:24:3f:c2:b0:b7:3c:bd:6b:
3e:3d:da:c8:98:9e:6a:39:1f:17:98:3f:d8:93:07:fd:82:de:
0a:d8:95:c4:30:ed:34:1a:e5:8b:77:f4:36:ca:e5:e2:25:b6:
d1:3f:a4:2e:23:62:d4:22:56:fb:15:b9:f9:57:fb:0b:5e:57:
a1:0f:7c:92:a0:af:19:43:05:70:48:99:0d:5d:0f:1b:0f:3a:
ee:72:a3:79:fa:56:fa:cb:98:87:af:c7:56:6d:c1:ea:09:b1:
27:e3:b4:3e:9c:4b:0b:cb:77:7a:95:3d:68:d3:5c:df:df:10:
6f:0c:0b:61:ba:1f:9d:e7:73:0f:48:af:46:aa:1f:ac:53:16:
da:8f:51:77:8e:82:02:5c:98:c2:51:b4:58:3b:5a:72:89:6f:
13:7f:1e:4e:b9:5b:40:3b:51:de:dd:20:26:11:74:4d:5d:e2:
d8:de:50:5e:db:87:59:2c:81:79:50:29:30:a5:79:8f:53:2e:
60:59:6f:e5
-----BEGIN CERTIFICATE-----
MIIFbzCCBFegAwIBAgISAZakd2Zb2phM9DGWscEcFG3eMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNlNjA5NzY5ODY4NmUxNTU1ZjUxZjZjODgzYmM1YTU4NTQ5
YjIzNjIwHhcNMjUwNTA2MDcyMDEwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmMzAyNDRiMWY3OTMzYzA2MzIzNzZhNjkxOGY5NjQ3ZTU4NjE5ZTYxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxbhMJuGmY8Eunf91SmPs1MX2fUi3
JWKHyXUnW5qGKhbaAjAZ+x2SHt1JlkSe8tHa47oBZLrBlu6n3bfJsIqQ0iUdZ9Ok
xR44jODB6da8mrTfnGEig7GclXJFpBfqvd/fvLQ1b8SsJ+peNRliLV7WEsIoqiBP
0npakK05cqkq9aSzocBBoenVEIrtyyQ9pULhvRYLlGkt7BHhKZL6D2V9DGGZhNdA
18OnJK7XOHN3+mp8jKII1NWEVoiPyi4ew6gktDkbP+tLISVB0IOsytHtpTg8MR0J
OsZmcVU3rBYDQrfJp+F35pYUC1uFHYoClquyYc5XXFNsy5og1ZOJQ5bQtwIDAQAB
o4ICezCCAncwHQYDVR0OBBYEFPMCRLH3kzwGMjdqaRj5ZH5YYZ5hMB8GA1UdIwQY
MBaAFD5gl2mGhuFVX1H2yIO8WlhUmyNiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGIt
ZTFiZDg4ZDNmZDA3LzEvOHdKRXNmZVRQQVl5TjJwcEdQbGtmbGhobm1FLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGItZTFiZDg4ZDNmZDA3
LzEvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGQBggrBgEFBQcBBwEB/wSBgDB+MHwEAgABMHYDBAAFU4oD
BAAFr+4DBAAF5qQDBAAF5z0wDAMEAAXnRwMEAgXnSAMEAAXnTwMEAAXnXAMEAAXn
cTAMAwQEBefwAwQABef4AwQAVV0FAwQAVV0VAwQAVV0fAwQAWWpaAwQAWZAFAwQA
WZALAwQBXvmoAwQAXvntMA0GCSqGSIb3DQEBCwUAA4IBAQBLYw4CQp7By7jfWtxn
P4/5NnmtPVwUuHYv2pBFpGIDYGo2U38o8niZBI4apcetctTzj6Hot2dqdV7/x5da
CvsDJD/CsLc8vWs+PdrImJ5qOR8XmD/Ykwf9gt4K2JXEMO00GuWLd/Q2yuXiJbbR
P6QuI2LUIlb7Fbn5V/sLXlehD3ySoK8ZQwVwSJkNXQ8bDzrucqN5+lb6y5iHr8dW
bcHqCbEn47Q+nEsLy3d6lT1o01zf3xBvDAthuh+d53MPSK9Gqh+sUxbaj1F3joIC
XJjCUbRYO1pyiW8Tfx5OuVtAO1He3SAmEXRNXeLY3lBe24dZLIF5UCkwpXmPUy5g
WW/l
-----END CERTIFICATE-----
Generated at Sun Jun 15 08:28:09 2025 by rpki-client