Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/JXO-koYKYOeJy1FwUnCRmHgflgY.roa
File: JXO-koYKYOeJy1FwUnCRmHgflgY.roa (raw, json)
Hash identifier: DhdJzPaI01oaqdTYJ7RFp5gYwrfD/8TeyfYLmOJxLRk=
Subject key identifier: 25:73:BE:92:86:0A:60:E7:89:CB:51:70:52:70:91:98:78:1F:96:06
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 01976253079BE835DB74C15171CDA813550A
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/JXO-koYKYOeJy1FwUnCRmHgflgY.roa
Signing time: Thu 12 Jun 2025 04:08:17 +0000
ROA not before: Thu 12 Jun 2025 04:08:17 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 58212
IP address blocks: 5.231.70.0/24 maxlen: 24
5.231.203.0/24 maxlen: 24
5.231.234.0/24 maxlen: 24
77.90.22.0/24 maxlen: 24
77.90.41.0/24 maxlen: 24
77.90.52.0/24 maxlen: 24
85.93.1.0/24 maxlen: 24
85.93.6.0/24 maxlen: 24
85.93.22.0/24 maxlen: 24
89.144.14.0/24 maxlen: 24
89.144.17.0/24 maxlen: 24
89.144.18.0/24 maxlen: 24
89.144.35.0/24 maxlen: 24
94.103.168.0/24 maxlen: 24
178.18.147.0/24 maxlen: 24
185.13.159.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 13 Jun 2025 04:12:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:62:53:07:9b:e8:35:db:74:c1:51:71:cd:a8:13:55:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Jun 12 04:08:17 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2573be92860a60e789cb517052709198781f9606
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:f5:c1:80:1d:fd:af:61:29:9d:cc:76:76:a9:
d9:bf:8d:a9:0e:c3:91:53:27:74:6b:72:7c:3b:c2:
d4:d1:89:0f:bb:f8:0d:d2:b2:18:cb:ed:e7:47:bc:
6f:c8:ea:dd:f7:10:a7:00:62:54:43:77:66:6b:dd:
9a:f1:d9:25:da:4d:75:4a:87:4d:b1:9e:a1:b6:9a:
64:95:87:ce:ef:94:37:2f:54:ab:34:8f:a3:cf:7b:
f3:2a:fb:43:52:bf:72:e8:df:be:1f:e8:2d:c0:9b:
99:7b:dc:e8:a5:c1:9f:a9:fa:ad:6b:7a:52:cc:07:
d2:c5:ee:63:b6:98:4e:4c:52:d8:1e:f3:96:51:25:
0e:f6:0e:ba:a2:a1:e7:91:34:76:41:f7:e5:6f:95:
02:ae:47:37:6d:47:7c:78:ea:87:5b:d8:3c:05:c3:
15:93:3c:34:39:83:1d:04:46:cb:38:d2:97:ec:67:
ca:c5:a7:8c:d8:41:42:03:2c:0b:11:3d:1c:cf:e7:
7f:9b:e3:c7:69:91:85:3b:a5:69:77:46:dd:8e:16:
62:90:5e:3e:bd:c3:dc:a2:ab:c9:e7:5c:ef:37:cd:
7b:cf:f5:b2:27:05:b3:5b:ed:4d:4a:81:44:1d:59:
43:14:89:c3:bf:6d:86:83:a0:9d:f3:43:9c:df:61:
f0:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:73:BE:92:86:0A:60:E7:89:CB:51:70:52:70:91:98:78:1F:96:06
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/JXO-koYKYOeJy1FwUnCRmHgflgY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.231.70.0/24
5.231.203.0/24
5.231.234.0/24
77.90.22.0/24
77.90.41.0/24
77.90.52.0/24
85.93.1.0/24
85.93.6.0/24
85.93.22.0/24
89.144.14.0/24
89.144.17.0-89.144.18.255
89.144.35.0/24
94.103.168.0/24
178.18.147.0/24
185.13.159.0/24
Signature Algorithm: sha256WithRSAEncryption
88:3b:b7:86:22:5c:c2:33:d4:71:9b:08:2b:12:44:26:a6:4e:
4d:9d:d4:2b:4a:f3:83:71:a8:14:28:d8:46:53:69:82:d0:70:
ff:bf:d3:0e:dd:6c:df:3b:d8:d0:ae:63:5e:ae:8c:58:1a:c5:
71:df:94:47:7e:98:7b:68:1d:86:d9:c1:a3:73:57:17:9e:ac:
9a:24:a0:05:ee:64:42:27:42:04:4c:e0:ba:6e:4a:75:df:4d:
6e:50:cf:c4:17:68:b5:fa:85:97:6b:18:34:9a:e4:10:0c:37:
a7:b5:98:c8:24:e1:e6:02:75:e0:2f:35:65:99:31:08:ad:2e:
a8:68:2e:65:35:db:da:f6:28:e6:07:28:a8:66:fe:3d:3e:cd:
87:15:e8:ac:17:87:e4:aa:c3:b9:45:43:fc:58:21:70:74:6f:
cd:6e:41:38:b1:e2:74:bd:5a:86:9a:85:07:27:98:47:d9:a8:
07:05:cb:69:e7:40:d4:b8:77:80:e3:2d:d4:18:ac:63:b6:36:
51:f6:d1:1a:c4:0a:7a:88:af:b0:3a:a0:e0:29:da:80:1d:f2:
74:65:55:30:01:5b:26:3d:f6:2c:82:f9:bf:0a:bb:39:61:5f:
82:72:fa:b0:a7:7d:30:e1:0d:4d:80:20:83:a6:94:b5:a5:ea:
9f:ac:8b:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 15:01:31 2025 by rpki-client