Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/I5B_xQJ-LkSCxnDwfJjLtSaxaqw.roa
File: I5B_xQJ-LkSCxnDwfJjLtSaxaqw.roa (raw, json)
Hash identifier: RvtkjAuK11oAX11WjMgPvEzkI6xkEHN4xIdcuAxvETk=
Subject key identifier: 23:90:7F:C5:02:7E:2E:44:82:C6:70:F0:7C:98:CB:B5:26:B1:6A:AC
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 019758091053D3E8BF2C78098EB19A610447
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/I5B_xQJ-LkSCxnDwfJjLtSaxaqw.roa
Signing time: Tue 10 Jun 2025 04:11:18 +0000
ROA not before: Tue 10 Jun 2025 04:11:18 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 58212
IP address blocks: 5.231.70.0/24 maxlen: 24
5.231.203.0/24 maxlen: 24
5.231.234.0/24 maxlen: 24
77.90.22.0/24 maxlen: 24
77.90.41.0/24 maxlen: 24
77.90.52.0/24 maxlen: 24
85.93.1.0/24 maxlen: 24
85.93.6.0/24 maxlen: 24
85.93.22.0/24 maxlen: 24
89.144.14.0/24 maxlen: 24
89.144.16.0/24 maxlen: 24
89.144.17.0/24 maxlen: 24
89.144.18.0/24 maxlen: 24
89.144.35.0/24 maxlen: 24
94.103.168.0/24 maxlen: 24
178.18.147.0/24 maxlen: 24
185.13.159.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 12 Jun 2025 04:08:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:58:09:10:53:d3:e8:bf:2c:78:09:8e:b1:9a:61:04:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Jun 10 04:11:18 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=23907fc5027e2e4482c670f07c98cbb526b16aac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:cb:4a:69:e5:f7:5a:63:fe:58:fc:11:bd:98:
62:60:72:b6:11:74:42:fd:64:fc:8e:96:21:c6:4d:
d3:ba:79:78:02:aa:b0:7b:26:d1:db:57:23:d1:49:
a3:12:a3:71:a4:8d:5b:58:a0:18:40:7a:d6:74:a5:
c9:43:e3:d8:9c:01:ec:6b:22:61:5d:8d:9f:0c:9f:
f6:17:66:e4:68:f5:01:75:d5:be:e4:37:10:3c:d4:
d4:7e:7a:9e:0f:25:cb:21:2f:02:01:9f:36:d9:95:
55:4e:b1:8e:74:3d:f0:79:4a:d4:55:27:0e:c7:fb:
c1:7c:25:80:76:6b:31:32:27:f3:01:21:1d:f8:b5:
58:2a:c8:6a:88:2a:0f:6f:bb:2b:ac:31:a8:3d:07:
41:77:c3:9b:e4:5e:71:04:2f:75:db:9e:95:c9:f0:
f5:eb:aa:05:b7:61:c4:af:09:56:04:36:5f:22:ab:
ff:e6:93:33:18:da:73:fa:7d:eb:38:66:6f:b8:15:
83:2b:af:39:0b:51:60:46:1e:5f:3a:82:fb:f0:24:
a5:02:67:33:97:59:69:09:7f:19:14:60:d1:b6:85:
2a:5d:7b:32:7c:2c:bd:13:f3:ae:ee:df:6a:ea:d5:
9f:53:70:54:02:0f:ff:c8:e0:91:c5:66:c1:55:15:
ee:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:90:7F:C5:02:7E:2E:44:82:C6:70:F0:7C:98:CB:B5:26:B1:6A:AC
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/I5B_xQJ-LkSCxnDwfJjLtSaxaqw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.231.70.0/24
5.231.203.0/24
5.231.234.0/24
77.90.22.0/24
77.90.41.0/24
77.90.52.0/24
85.93.1.0/24
85.93.6.0/24
85.93.22.0/24
89.144.14.0/24
89.144.16.0-89.144.18.255
89.144.35.0/24
94.103.168.0/24
178.18.147.0/24
185.13.159.0/24
Signature Algorithm: sha256WithRSAEncryption
01:a9:71:73:ad:80:2f:7e:a7:3c:0e:05:17:8a:2c:d1:11:65:
aa:ba:7a:35:eb:35:db:f3:78:7a:90:29:a6:8d:86:19:a3:d9:
f9:33:84:66:00:cd:98:25:16:3c:6c:f0:88:5a:ae:88:96:f6:
21:8a:27:f2:44:bc:d0:41:7f:33:60:50:ae:bd:3b:f9:dc:53:
25:56:a7:91:dd:d4:95:38:c2:38:1b:f1:15:6d:41:d7:f3:75:
a4:43:51:2a:96:ed:8a:56:4a:b5:b6:05:92:59:48:55:df:d3:
5a:17:53:a2:d8:f0:a7:f1:b6:65:95:7d:f4:2c:7a:67:12:a7:
d6:15:f8:1a:4a:7e:8d:fb:e6:24:bc:ed:a9:c9:75:a0:9f:9d:
20:45:6b:bd:86:78:23:f7:7d:00:6e:ba:82:61:9a:cf:08:14:
60:bf:dc:e0:65:6c:b6:03:62:03:d9:73:5c:1d:e4:a6:40:d2:
14:25:ce:8f:97:69:98:49:37:eb:12:9d:05:86:c3:86:1c:5a:
00:be:79:ca:6a:83:dc:8e:8f:87:c0:c1:4a:54:0d:c9:36:f8:
84:4a:9c:d6:46:8e:02:30:be:97:f4:81:1f:e4:58:65:e1:b5:
f2:1c:67:88:66:3d:de:e0:6b:bb:e5:58:fd:1b:c6:a8:b8:ab:
1c:88:a1:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 17 04:40:26 2025 by rpki-client