Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/A8yKt1Uiw82NqAG_KDFFjg1Ep54.roa
File: A8yKt1Uiw82NqAG_KDFFjg1Ep54.roa (raw, json)
Hash identifier: ZT6mLX8pwV7WVhTDu2Q8SK5ZLC7s6C19unYsiLEgesU=
Subject key identifier: 03:CC:8A:B7:55:22:C3:CD:8D:A8:01:BF:28:31:45:8E:0D:44:A7:9E
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 019612CF7D6E0547E8AE7F76F6F59ECC316E
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/A8yKt1Uiw82NqAG_KDFFjg1Ep54.roa
Signing time: Tue 08 Apr 2025 00:31:50 +0000
ROA not before: Tue 08 Apr 2025 00:31:50 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 58212
IP address blocks: 5.83.150.0/24 maxlen: 24
5.231.70.0/24 maxlen: 24
5.231.82.0/24 maxlen: 24
5.231.96.0/24 maxlen: 24
77.90.22.0/24 maxlen: 24
77.90.39.0/24 maxlen: 24
77.90.41.0/24 maxlen: 24
77.90.52.0/24 maxlen: 24
77.90.58.0/24 maxlen: 24
89.106.70.0/24 maxlen: 24
89.144.7.0/24 maxlen: 24
89.144.8.0/24 maxlen: 24
89.144.14.0/24 maxlen: 24
89.144.16.0/24 maxlen: 24
89.144.25.0/24 maxlen: 24
89.144.35.0/24 maxlen: 24
94.249.158.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 08 Apr 2025 04:10:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:12:cf:7d:6e:05:47:e8:ae:7f:76:f6:f5:9e:cc:31:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Apr 8 00:31:50 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=03cc8ab75522c3cd8da801bf2831458e0d44a79e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:45:3d:83:73:ae:1a:2b:42:0f:c8:00:c0:2b:
2e:1f:40:a0:02:8b:7d:a3:45:37:61:87:93:a7:7f:
68:26:18:33:c2:7e:4e:02:83:b4:8d:af:7a:ef:a0:
f3:8c:58:45:c2:dc:6c:5b:28:2f:2a:13:b1:28:94:
ec:1e:0d:cd:c2:b3:3e:7c:24:0c:0d:32:c9:62:1a:
89:0d:dd:75:74:5b:bb:31:61:1c:93:6f:f7:0e:74:
6e:eb:1f:7a:11:fd:d3:7d:ac:8f:ca:1c:1f:c6:52:
a6:8c:45:d3:e3:11:d8:db:eb:6e:9e:0d:30:aa:ef:
92:5a:f1:f4:51:9d:38:3c:e6:16:c8:72:e5:f6:64:
2c:52:8e:3b:d5:b8:df:3c:43:b1:d4:e0:3b:bf:2d:
d1:b3:84:e6:a6:fc:a0:c6:09:fa:a4:b0:ee:f7:28:
04:ab:f1:0a:92:74:63:62:9f:c7:d4:88:8f:db:98:
21:84:1d:e3:c1:00:b0:97:23:d8:74:a9:bc:bc:e5:
97:b4:b6:b5:df:4a:fa:5e:8a:c5:ef:ca:8d:c1:34:
9e:10:84:d3:03:38:45:43:88:46:d0:f0:cc:9a:18:
0f:5e:a6:68:4f:c6:9f:b5:95:c2:d0:dc:3c:db:68:
1b:c3:de:f5:78:68:d7:08:bc:b7:19:f8:8b:d0:09:
37:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:CC:8A:B7:55:22:C3:CD:8D:A8:01:BF:28:31:45:8E:0D:44:A7:9E
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/A8yKt1Uiw82NqAG_KDFFjg1Ep54.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.150.0/24
5.231.70.0/24
5.231.82.0/24
5.231.96.0/24
77.90.22.0/24
77.90.39.0/24
77.90.41.0/24
77.90.52.0/24
77.90.58.0/24
89.106.70.0/24
89.144.7.0-89.144.8.255
89.144.14.0/24
89.144.16.0/24
89.144.25.0/24
89.144.35.0/24
94.249.158.0/24
Signature Algorithm: sha256WithRSAEncryption
41:31:da:d1:ee:ec:9e:d4:bc:9a:55:29:b2:4a:33:d0:9a:31:
b3:0a:0a:91:17:2f:d3:65:da:eb:e7:9c:e8:93:48:b5:e3:f2:
6e:fe:9c:50:74:3b:51:de:32:c2:91:04:12:56:dd:87:82:2c:
7b:bd:46:eb:98:5c:2d:19:69:7b:17:f8:5a:90:a9:2b:97:70:
db:bb:72:e7:87:7a:2b:f9:8b:06:74:26:32:65:1a:12:81:31:
69:5d:83:7d:3d:53:27:73:cf:bc:77:d0:09:ea:bd:c8:35:f6:
32:7c:0d:22:00:d3:f6:14:e5:c1:92:15:0f:4f:dc:b4:07:21:
b3:3c:41:d7:ee:1d:fc:3d:04:d8:fa:8f:a5:91:af:85:51:79:
a2:1b:27:70:a9:3a:6e:1c:a4:35:97:b0:e4:c3:6b:b5:98:69:
43:54:5d:85:f9:a5:cc:41:2d:f8:d2:8f:e4:8b:52:9c:7f:3d:
cc:87:36:b0:6c:b0:52:74:f1:bb:19:21:8e:2e:6d:e1:66:7d:
24:25:74:e8:dd:79:63:60:5c:2f:38:1a:01:ad:28:78:2d:d2:
35:5a:e0:0d:ea:bd:3d:15:96:6f:9d:34:35:1e:63:8f:95:a9:
5c:28:45:89:e3:7b:16:ea:5d:e8:4b:13:4a:3c:dc:76:82:5a:
ee:34:4b:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 18 03:01:42 2025 by rpki-client