Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/DvX9iYEA8MHc3I5EIm6nDHISVqY.roa
File: DvX9iYEA8MHc3I5EIm6nDHISVqY.roa (raw, json)
Hash identifier: l3rLEwGQkZaKcj5tnyiPAomHYMfM0L7pgjK0zpDa0Co=
Subject key identifier: 0E:F5:FD:89:81:00:F0:C1:DC:DC:8E:44:22:6E:A7:0C:72:12:56:A6
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 019664A0530BEB0BBBE28CA49B6D43C8E6F0
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/DvX9iYEA8MHc3I5EIm6nDHISVqY.roa
Signing time: Wed 23 Apr 2025 21:49:10 +0000
ROA not before: Wed 23 Apr 2025 21:49:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 19318
IP address blocks: 89.144.34.0/24 maxlen: 24
94.103.166.0/24 maxlen: 24
94.103.172.0/24 maxlen: 24
94.103.173.0/24 maxlen: 24
94.103.174.0/24 maxlen: 24
94.249.197.0/24 maxlen: 24
94.249.198.0/24 maxlen: 24
94.249.199.0/24 maxlen: 24
94.249.200.0/24 maxlen: 24
94.249.201.0/24 maxlen: 24
94.249.202.0/24 maxlen: 24
94.249.203.0/24 maxlen: 24
94.249.204.0/24 maxlen: 24
94.249.205.0/24 maxlen: 24
94.249.206.0/24 maxlen: 24
94.249.225.0/24 maxlen: 24
94.249.226.0/24 maxlen: 24
94.249.227.0/24 maxlen: 24
94.249.228.0/24 maxlen: 24
94.249.229.0/24 maxlen: 24
94.249.230.0/24 maxlen: 24
178.18.147.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 24 Apr 2025 12:32:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:64:a0:53:0b:eb:0b:bb:e2:8c:a4:9b:6d:43:c8:e6:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Apr 23 21:49:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0ef5fd898100f0c1dcdc8e44226ea70c721256a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:a3:82:10:0b:7d:18:49:01:6e:f9:97:4a:06:
f9:60:c4:4e:bd:c1:8e:eb:60:ac:c1:70:3e:50:90:
7f:d8:a3:df:cd:ad:89:b3:c0:ff:dd:37:97:bd:b9:
2a:13:5d:2a:00:54:a5:0d:6b:05:bc:d6:8c:e3:46:
2d:17:2d:ef:46:9a:88:a1:9a:cf:b9:ee:e0:8f:83:
6a:21:d6:e3:95:71:b2:ed:23:d7:da:36:43:dd:92:
94:cf:00:ab:55:89:79:a7:18:7e:f9:f7:0e:63:5e:
31:6c:1a:7e:23:f8:00:78:0a:79:34:01:5b:8c:fc:
41:44:f2:89:5b:49:9d:1e:b5:7b:36:03:aa:2d:a5:
af:ab:19:0a:a1:71:b2:39:3c:23:14:ed:f0:a6:ca:
8b:b1:70:d5:94:7e:f0:c1:5e:de:76:63:ee:12:be:
04:43:5f:5c:53:15:c4:11:74:9e:7f:b0:e5:62:c8:
92:0a:14:5b:8e:57:b1:b3:66:5a:c8:ea:70:b7:62:
fe:3e:50:8a:28:c6:00:98:a4:2b:a1:53:70:ea:c9:
ff:74:a1:49:46:81:53:d1:ce:4a:1f:2e:94:11:bb:
2f:83:6f:2b:5f:2a:4f:d3:22:00:7e:2f:e6:c5:c7:
86:9e:1c:52:cc:90:a2:a5:aa:6d:3b:55:d0:d4:33:
98:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:F5:FD:89:81:00:F0:C1:DC:DC:8E:44:22:6E:A7:0C:72:12:56:A6
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/DvX9iYEA8MHc3I5EIm6nDHISVqY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.144.34.0/24
94.103.166.0/24
94.103.172.0-94.103.174.255
94.249.197.0-94.249.206.255
94.249.225.0-94.249.230.255
178.18.147.0/24
Signature Algorithm: sha256WithRSAEncryption
c0:91:40:42:84:ee:19:f5:6d:21:86:63:8e:85:9a:a2:6b:54:
c9:63:64:bd:40:e9:a0:78:8b:86:75:6f:67:c3:1f:b3:11:34:
4a:49:c6:c5:49:53:e4:1f:14:65:56:e5:0c:eb:bd:b0:b5:f6:
54:98:78:f3:2f:3f:22:f3:e7:42:3f:80:c0:71:89:76:9b:99:
7b:f6:01:6b:08:6a:6d:75:75:79:a6:7b:4e:fa:71:f8:18:09:
c6:ef:d9:01:d2:98:5e:17:0c:40:35:b4:69:1d:4b:5f:69:ea:
98:41:56:cd:09:b0:11:2d:8e:91:79:43:f3:65:0e:ed:cc:c8:
d1:83:46:67:dd:79:6d:56:4c:e9:c4:24:42:9d:70:be:ec:6f:
eb:22:88:7c:b4:93:8b:bf:af:6f:61:3a:09:9f:5e:4b:40:8a:
14:b7:98:7c:5c:a2:ba:93:5d:85:bf:54:d2:7b:48:28:6c:99:
e8:72:ef:e6:13:19:bd:b2:69:12:12:b6:04:29:fc:52:e2:7c:
fe:4b:da:61:91:df:d2:11:d5:85:32:1f:d7:44:11:12:32:ec:
2c:d8:3a:d1:49:9b:3c:4e:3b:88:6a:f8:4a:82:01:7a:0e:36:
0b:ca:d2:cd:f4:af:4a:ae:c1:7e:61:25:5b:dd:1c:e8:df:13:
55:d9:7b:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 03:25:09 2025 by rpki-client