Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/KcAQAzjdheQRuwQnnO_DdHxaUTE.roa
File: KcAQAzjdheQRuwQnnO_DdHxaUTE.roa (raw, json)
Hash identifier: f82PMwM8lgm+EsLbldITCHyCoQUXZT9kd0fA09fRUAg=
Subject key identifier: 29:C0:10:03:38:DD:85:E4:11:BB:04:27:9C:EF:C3:74:7C:5A:51:31
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 0196AF8F5EBE5C66C4F4C402CDBDB9E42ED8
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/KcAQAzjdheQRuwQnnO_DdHxaUTE.roa
Signing time: Thu 08 May 2025 11:02:10 +0000
ROA not before: Thu 08 May 2025 11:02:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 16276
IP address blocks: 5.83.153.0/24 maxlen: 24
77.90.21.0/24 maxlen: 24
77.90.33.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 21 May 2025 18:19:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:af:8f:5e:be:5c:66:c4:f4:c4:02:cd:bd:b9:e4:2e:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: May 8 11:02:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=29c0100338dd85e411bb04279cefc3747c5a5131
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:f0:41:d1:39:8c:c6:ae:9e:f5:0e:d2:ea:58:
f9:db:42:42:73:40:ca:fb:ff:e1:2d:0a:0c:62:cb:
e4:9f:fb:90:b4:ec:c7:cc:e7:a6:c5:5c:62:e9:e0:
0f:00:de:41:a4:31:d9:75:bd:f8:3d:28:eb:4c:b6:
24:97:d6:32:63:c8:20:a1:c1:23:80:c4:86:b5:50:
90:1d:cb:7f:ac:7d:b4:85:8e:36:d1:94:a8:0e:67:
64:a6:4a:c4:68:3f:c4:ca:03:01:86:57:af:85:ee:
8e:ff:97:f8:27:5a:05:64:04:cd:f7:09:dd:e2:e8:
66:5f:64:ab:7d:f6:5f:ac:41:9b:75:8d:8e:d9:e6:
f9:68:2a:83:c4:6b:fb:11:a8:e3:ed:60:7a:08:70:
46:ba:c3:4b:1f:7a:f9:70:a5:25:46:7e:46:b4:de:
71:b3:f4:c7:93:89:0f:d4:a3:8d:16:6a:d9:4b:a2:
86:8c:8b:a8:70:8f:af:a3:2b:29:81:a5:2d:0e:4a:
43:21:aa:7c:5a:d3:89:65:08:b3:dc:6b:5f:78:69:
f5:1e:87:c3:e4:b2:d3:64:2a:37:d7:9a:7b:0e:be:
f7:cc:75:a8:be:88:a5:c3:aa:33:19:cd:78:e7:5a:
18:9d:d6:29:9c:3f:2b:b0:51:7a:3f:73:fa:c3:46:
49:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:C0:10:03:38:DD:85:E4:11:BB:04:27:9C:EF:C3:74:7C:5A:51:31
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/KcAQAzjdheQRuwQnnO_DdHxaUTE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.153.0/24
77.90.21.0/24
77.90.33.0/24
Signature Algorithm: sha256WithRSAEncryption
b9:69:05:95:d0:4e:f9:c4:b5:b5:6f:73:b5:a8:a3:5e:f2:b9:
a3:a3:68:cb:f6:f0:4e:54:5c:8a:ea:22:83:84:9f:ce:21:5d:
a0:3f:ee:da:a5:e7:fb:25:cb:2d:c4:1f:88:22:fd:52:b8:5a:
1e:79:eb:b7:e2:d5:34:a7:f2:40:15:68:15:53:21:da:72:55:
98:06:fb:f2:18:b2:02:70:ea:2e:89:59:0a:49:79:d0:7c:5a:
a5:0a:3a:64:4c:b6:1e:55:c7:20:86:e1:2a:da:f3:86:50:d3:
86:97:f2:7a:87:34:72:ec:3e:be:6c:14:75:36:68:9c:88:8b:
ba:68:a8:4f:9b:bc:02:6a:be:2e:92:85:63:13:ed:b6:b7:d3:
c3:e6:91:08:2c:02:6d:4b:1d:b2:a7:d2:53:96:4b:f6:c0:a6:
a1:ad:07:d7:f8:03:18:cc:f1:dc:c6:02:e5:40:5d:9d:19:e9:
3d:a3:ca:7c:ef:d3:56:e2:76:90:f7:7b:6e:4b:1a:37:d5:da:
f6:a5:12:d7:74:62:02:51:c1:95:d6:ea:2a:d0:e6:61:18:1a:
75:eb:3f:4d:f5:4e:cb:a1:01:34:e7:86:4e:80:d7:de:88:37:
bc:f0:a4:96:30:52:00:72:da:63:31:fd:23:59:c6:91:8c:e5:
d6:3b:15:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 15:42:17 2025 by rpki-client