Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/JaqlqwP9CcjxwjgBxE9eRSvqdx0.roa
File: JaqlqwP9CcjxwjgBxE9eRSvqdx0.roa (raw, json)
Hash identifier: U/Kr7Wn9YcA7WeAWQYMtzWcK4VE6DH+xXUsGFfcPfmU=
Subject key identifier: 25:AA:A5:AB:03:FD:09:C8:F1:C2:38:01:C4:4F:5E:45:2B:EA:77:1D
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 0196F62FE1BD0EEA926258ED893C7D006C9A
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/JaqlqwP9CcjxwjgBxE9eRSvqdx0.roa
Signing time: Thu 22 May 2025 04:10:55 +0000
ROA not before: Thu 22 May 2025 04:10:55 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 58212
IP address blocks: 5.83.150.0/24 maxlen: 24
5.231.70.0/24 maxlen: 24
5.231.82.0/24 maxlen: 24
5.231.96.0/24 maxlen: 24
5.231.203.0/24 maxlen: 24
5.231.234.0/24 maxlen: 24
77.90.22.0/24 maxlen: 24
77.90.39.0/24 maxlen: 24
77.90.41.0/24 maxlen: 24
77.90.52.0/24 maxlen: 24
77.90.58.0/24 maxlen: 24
85.93.1.0/24 maxlen: 24
85.93.6.0/24 maxlen: 24
85.93.22.0/24 maxlen: 24
89.144.14.0/24 maxlen: 24
89.144.16.0/24 maxlen: 24
89.144.17.0/24 maxlen: 24
89.144.18.0/24 maxlen: 24
94.249.153.0/24 maxlen: 24
94.249.158.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 22 May 2025 04:31:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:f6:2f:e1:bd:0e:ea:92:62:58:ed:89:3c:7d:00:6c:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: May 22 04:10:55 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=25aaa5ab03fd09c8f1c23801c44f5e452bea771d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:18:e1:ff:7a:d7:fd:fb:7f:aa:33:c9:ad:8f:
c2:d8:8a:c8:68:9c:38:43:8b:80:cf:af:e9:59:4a:
9f:c4:2c:cc:8e:86:0b:01:6f:39:26:3d:85:68:99:
e9:51:ad:4d:97:d8:d7:61:53:a4:99:34:3d:16:f4:
cd:fa:12:d2:2c:54:87:9d:10:45:aa:ce:7b:3d:32:
50:c1:c0:13:96:36:c7:79:ea:e5:c3:54:6b:f3:99:
d5:c0:2d:51:f0:44:ab:57:e9:94:94:dc:0b:ee:9e:
8c:d7:52:8b:ca:4d:be:98:db:9b:0e:0a:dc:40:bf:
56:3c:04:57:54:2e:4b:25:55:f0:8d:ed:13:6e:fd:
5b:65:c4:b4:35:45:4f:e0:19:a1:6b:5c:ce:7c:76:
ba:f7:dc:26:93:94:6f:3d:a2:44:55:1f:5f:ea:b8:
8d:f8:c0:de:17:47:dd:e0:7b:9a:c1:e7:fc:55:3d:
43:58:e8:e0:30:18:ac:ce:df:9a:19:34:f1:ac:16:
d9:47:e0:6f:89:27:5a:0e:3c:ff:e3:9b:de:4f:22:
21:16:ac:e5:94:a2:6f:9c:85:98:1a:a8:48:3d:79:
3a:be:75:b2:56:1d:cd:d8:0a:1b:29:d4:7d:7e:46:
1f:94:9d:13:c7:ac:28:2d:fa:b9:e1:52:31:eb:db:
d9:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:AA:A5:AB:03:FD:09:C8:F1:C2:38:01:C4:4F:5E:45:2B:EA:77:1D
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/JaqlqwP9CcjxwjgBxE9eRSvqdx0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.150.0/24
5.231.70.0/24
5.231.82.0/24
5.231.96.0/24
5.231.203.0/24
5.231.234.0/24
77.90.22.0/24
77.90.39.0/24
77.90.41.0/24
77.90.52.0/24
77.90.58.0/24
85.93.1.0/24
85.93.6.0/24
85.93.22.0/24
89.144.14.0/24
89.144.16.0-89.144.18.255
94.249.153.0/24
94.249.158.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:4a:f1:87:a6:27:dc:94:e6:18:72:26:d4:e1:27:1a:12:3b:
53:cd:b5:18:e9:de:14:01:36:eb:e9:3a:66:48:89:5b:ec:54:
b6:a6:e7:6f:b5:3a:d3:4a:c5:db:25:9c:42:8b:20:56:ba:34:
19:1d:bf:2d:72:b8:92:d2:2e:53:21:f7:40:78:95:6c:5f:9c:
4a:93:e1:46:56:7f:92:2e:70:cd:49:15:88:3f:2c:24:45:7c:
e3:24:43:84:fa:d2:19:44:f3:65:6d:6a:c6:7c:13:56:92:e7:
5d:dd:8f:80:30:b6:ee:06:d6:c7:52:03:5a:23:cb:84:f9:87:
d6:ef:ad:22:9b:4b:ae:66:77:fa:5d:0a:1f:70:ff:a3:3c:0c:
b3:90:fa:58:04:99:27:46:fa:25:d3:73:b2:62:84:9f:03:f1:
d7:f9:d0:b0:32:c9:5a:e2:1e:ea:7a:1d:cc:e9:1c:0e:d1:76:
04:29:21:7b:31:24:77:20:e9:6c:cb:3d:29:85:ee:54:f0:b8:
21:31:d9:f7:5d:c2:f1:d2:fc:63:e6:52:68:40:45:ef:0e:bb:
77:22:96:bd:f6:c1:50:f8:a6:ac:4a:02:6d:b6:05:60:cd:86:
1f:67:db:fb:72:5f:5e:75:c6:1a:71:fa:38:94:6d:6b:bc:9c:
e1:0c:e7:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 12:02:02 2025 by rpki-client