Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/9EGo4Qgwihm3qSRRuyVBuW_puhw.roa
File: 9EGo4Qgwihm3qSRRuyVBuW_puhw.roa (raw, json)
Hash identifier: IhYJoueEg9xDksALJ8rKxpG6ybfa1FbGpPhrkOOpOvc=
Subject key identifier: F4:41:A8:E1:08:30:8A:19:B7:A9:24:51:BB:25:41:B9:6F:E9:BA:1C
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 0196F412CA3A6D95C1C869AFD37119DEADB2
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/9EGo4Qgwihm3qSRRuyVBuW_puhw.roa
Signing time: Wed 21 May 2025 18:19:54 +0000
ROA not before: Wed 21 May 2025 18:19:54 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 16276
IP address blocks: 5.83.153.0/24 maxlen: 24
77.90.33.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 23 May 2025 07:01:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:f4:12:ca:3a:6d:95:c1:c8:69:af:d3:71:19:de:ad:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: May 21 18:19:54 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f441a8e108308a19b7a92451bb2541b96fe9ba1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:06:f3:ab:7d:5f:4a:07:ab:b3:23:fb:84:b3:
e7:24:9e:ef:a0:50:0f:c5:63:15:ae:4a:78:87:fd:
41:eb:c9:a2:e9:a1:53:10:64:9f:1b:3c:98:ad:93:
fb:cb:ad:26:65:e9:35:cf:cd:a5:58:d5:aa:f3:ff:
46:55:36:1f:3c:e5:07:50:a7:06:95:a0:d3:8c:e0:
0f:b6:c9:bb:d9:9f:15:32:cc:68:35:82:36:0d:82:
31:8c:8c:d9:e2:e1:fe:78:aa:b2:80:f1:14:2a:dc:
6b:26:ce:0d:24:8c:e8:9e:bb:30:71:e2:e1:0d:1a:
e2:78:60:d7:d3:6c:9d:d9:73:e1:65:b6:e7:5c:5c:
90:1c:2e:c5:72:6b:be:5d:97:2d:6c:ad:15:e9:cc:
a0:e5:72:b8:70:f7:3c:fa:4c:46:79:da:2f:80:a2:
72:f6:e8:1f:9f:fa:ea:fb:8d:dc:33:cb:cf:85:35:
da:64:51:4d:34:17:48:5d:c5:e9:7e:d4:0f:61:23:
b2:7e:bf:e7:9b:13:99:74:e9:06:2f:8a:c4:33:66:
a2:2b:0b:4a:a0:38:ae:e2:60:43:f3:8d:3f:89:3f:
ec:b3:1c:0f:ed:b9:9b:59:94:68:11:da:95:5f:c7:
62:7f:1f:c7:5d:b7:ec:74:46:76:bc:f7:7c:e5:4c:
a2:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:41:A8:E1:08:30:8A:19:B7:A9:24:51:BB:25:41:B9:6F:E9:BA:1C
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/9EGo4Qgwihm3qSRRuyVBuW_puhw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.153.0/24
77.90.33.0/24
Signature Algorithm: sha256WithRSAEncryption
dd:3d:e4:5d:49:46:f4:12:80:4b:5e:c8:c4:42:fd:96:77:07:
30:f2:82:fc:83:28:2c:0b:1d:19:7e:6e:9a:db:de:f1:5f:d2:
3d:67:b2:99:5a:0d:fa:a3:24:08:d0:70:d9:7c:15:25:a7:ef:
74:d0:b2:d4:b6:43:b6:cd:fc:50:de:c1:c8:28:65:83:9b:3f:
b0:00:e6:71:f2:a2:7d:c4:aa:ad:ac:40:bc:ab:17:e3:92:d8:
34:1f:48:90:fc:dc:20:3f:bf:37:01:86:ae:8b:4e:93:30:d2:
a4:4c:75:c1:66:bd:b5:96:f5:79:e5:7b:ea:1d:28:e1:94:a6:
92:bc:df:ef:45:73:e0:8d:18:e6:b2:65:d0:6a:1b:84:a8:a1:
3a:6f:e8:78:f6:1e:85:9c:67:59:81:bc:44:69:3c:b5:ea:ae:
96:3b:80:7d:12:c9:b6:ac:d2:91:d7:4f:34:85:dc:92:51:61:
5f:1e:5e:89:7f:3e:68:81:36:de:ed:f8:7e:b0:fc:f1:8b:dc:
41:be:38:24:d2:56:05:52:5b:2f:7a:b4:31:24:73:9b:5f:75:
4f:63:98:c4:a7:bc:31:97:d2:d6:a1:d3:69:3f:69:4a:2b:2a:
3c:71:1a:52:a5:15:fe:ea:8c:68:76:a8:a9:73:42:3b:bf:7f:
13:62:b2:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 17 01:27:07 2025 by rpki-client