Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/DPnFS5ENmf5oucCM_cwGJFSxHig.roa
File: DPnFS5ENmf5oucCM_cwGJFSxHig.roa (raw, json)
Hash identifier: v1hNzykzAcXHHJVXcQhZFDCfQIyEkv4b6WjH+gcrLGU=
Subject key identifier: 0C:F9:C5:4B:91:0D:99:FE:68:B9:C0:8C:FD:CC:06:24:54:B1:1E:28
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 01963A3E6B819F9AAB2FEAFE139E6C007F0B
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/DPnFS5ENmf5oucCM_cwGJFSxHig.roa
Signing time: Tue 15 Apr 2025 16:18:11 +0000
ROA not before: Tue 15 Apr 2025 16:18:11 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 58212
IP address blocks: 5.83.150.0/24 maxlen: 24
5.231.70.0/24 maxlen: 24
5.231.82.0/24 maxlen: 24
5.231.96.0/24 maxlen: 24
5.231.225.0/24 maxlen: 24
77.90.22.0/24 maxlen: 24
77.90.39.0/24 maxlen: 24
77.90.41.0/24 maxlen: 24
77.90.52.0/24 maxlen: 24
77.90.58.0/24 maxlen: 24
85.93.22.0/24 maxlen: 24
89.106.70.0/24 maxlen: 24
89.144.7.0/24 maxlen: 24
89.144.8.0/24 maxlen: 24
89.144.14.0/24 maxlen: 24
89.144.16.0/24 maxlen: 24
89.144.25.0/24 maxlen: 24
89.144.35.0/24 maxlen: 24
94.249.153.0/24 maxlen: 24
94.249.158.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 16 Apr 2025 04:17:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:3a:3e:6b:81:9f:9a:ab:2f:ea:fe:13:9e:6c:00:7f:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Apr 15 16:18:11 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0cf9c54b910d99fe68b9c08cfdcc062454b11e28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:c3:8b:f5:3e:90:97:96:a1:76:d5:a2:b7:bc:
f3:ed:48:30:ec:98:77:42:c1:e7:67:cf:1c:df:22:
c9:18:24:83:39:e9:4e:f2:97:07:51:67:fa:73:75:
8d:df:fd:e3:bc:93:5e:49:3a:2e:5e:4e:a2:98:7c:
6e:b8:a1:f4:78:f5:32:90:0d:c7:0b:a4:fc:7e:3e:
a1:b3:d7:36:f4:d5:01:e3:81:51:4f:23:a9:75:da:
39:55:41:6f:f4:98:b8:56:11:e8:d7:ea:da:4c:ca:
36:3a:35:78:f8:1f:23:64:48:16:f4:41:7b:bb:cd:
1c:26:ee:47:d8:63:1c:2d:04:58:82:5d:63:dc:70:
f7:fa:2c:1d:8d:9f:74:f1:28:ba:99:11:b9:94:8e:
2b:1b:14:2c:2e:0d:fa:bb:71:69:62:bd:55:05:6a:
b1:2a:a0:80:12:5d:11:e9:37:9c:89:48:73:c1:97:
75:96:03:29:18:9d:c1:74:39:28:b4:8c:da:06:10:
1a:27:e5:bd:86:80:2c:a7:ca:1a:79:00:1f:dd:40:
0c:3a:bc:60:e7:d6:4f:ea:04:ca:a4:d2:a9:e0:4e:
3f:db:16:e8:78:14:31:2c:85:7c:42:0b:e1:74:33:
96:b3:60:8f:1b:f1:30:65:b3:05:3e:d7:f5:d8:3e:
31:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:F9:C5:4B:91:0D:99:FE:68:B9:C0:8C:FD:CC:06:24:54:B1:1E:28
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/DPnFS5ENmf5oucCM_cwGJFSxHig.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.150.0/24
5.231.70.0/24
5.231.82.0/24
5.231.96.0/24
5.231.225.0/24
77.90.22.0/24
77.90.39.0/24
77.90.41.0/24
77.90.52.0/24
77.90.58.0/24
85.93.22.0/24
89.106.70.0/24
89.144.7.0-89.144.8.255
89.144.14.0/24
89.144.16.0/24
89.144.25.0/24
89.144.35.0/24
94.249.153.0/24
94.249.158.0/24
Signature Algorithm: sha256WithRSAEncryption
72:59:cc:f8:b2:9c:a1:87:41:21:73:d0:f8:7d:3b:b7:88:2f:
1a:6f:65:15:b0:7c:96:17:f7:b3:82:8c:ad:9d:da:7b:09:08:
f5:83:d3:1e:70:26:c1:cc:8e:14:59:96:6b:1f:b8:f6:0d:79:
59:f8:1a:c6:66:15:2c:5a:58:7f:27:4d:e8:2e:0a:67:32:58:
c7:c5:bc:5b:b4:16:aa:a3:fd:13:fc:c2:b0:67:83:e4:64:f9:
ae:ef:3d:5a:73:8b:53:4d:29:73:9d:ed:08:8a:7c:b4:8b:a9:
35:eb:a9:79:bb:9b:0f:e4:80:ce:49:70:11:9d:e5:e1:d6:f2:
e4:20:31:ee:22:88:0e:bb:12:f5:a3:9a:4d:4f:81:0a:3c:5a:
54:6b:6c:1c:ac:1c:a8:74:a1:25:06:dd:b5:36:c7:63:60:b9:
17:9b:b8:b5:64:32:ab:4f:07:80:c0:38:f5:11:7d:27:51:1b:
74:14:9c:3e:f9:39:07:fc:6b:23:fa:8c:86:1a:56:94:18:63:
40:4a:5d:2f:bd:9c:02:c4:80:84:01:2f:06:9b:c9:71:6c:a2:
64:04:e0:a6:a0:38:2b:fc:a2:83:32:6b:79:7b:90:bf:93:2d:
57:7c:68:88:6f:1e:4d:ac:58:31:ee:6a:eb:20:32:f9:c7:72:
4d:5f:ac:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 21:01:02 2025 by rpki-client