Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/SVDZs1SpMjJkY95gVmlMUHkUew4.roa
File: SVDZs1SpMjJkY95gVmlMUHkUew4.roa (raw, json)
Hash identifier: UYg4UpSpAe4jlCpt7bg3/KMgARIKHduM/dRWIg9br6Y=
Subject key identifier: 49:50:D9:B3:54:A9:32:32:64:63:DE:60:56:69:4C:50:79:14:7B:0E
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 0196B70D653960F039CF67FD1D2CDB337E32
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/SVDZs1SpMjJkY95gVmlMUHkUew4.roa
Signing time: Fri 09 May 2025 21:57:10 +0000
ROA not before: Fri 09 May 2025 21:57:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 58212
IP address blocks: 5.83.150.0/24 maxlen: 24
5.231.70.0/24 maxlen: 24
5.231.82.0/24 maxlen: 24
5.231.96.0/24 maxlen: 24
5.231.203.0/24 maxlen: 24
5.231.225.0/24 maxlen: 24
5.231.234.0/24 maxlen: 24
77.90.22.0/24 maxlen: 24
77.90.39.0/24 maxlen: 24
77.90.41.0/24 maxlen: 24
77.90.52.0/24 maxlen: 24
77.90.58.0/24 maxlen: 24
85.93.1.0/24 maxlen: 24
85.93.6.0/24 maxlen: 24
85.93.7.0/24 maxlen: 24
85.93.22.0/24 maxlen: 24
89.144.14.0/24 maxlen: 24
89.144.16.0/24 maxlen: 24
89.144.25.0/24 maxlen: 24
89.144.35.0/24 maxlen: 24
94.249.153.0/24 maxlen: 24
94.249.158.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 11 May 2025 21:08:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b7:0d:65:39:60:f0:39:cf:67:fd:1d:2c:db:33:7e:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: May 9 21:57:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4950d9b354a932326463de6056694c5079147b0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:c3:f8:d3:89:6d:9c:8a:5b:7e:04:b0:03:b7:
5e:62:5a:b0:a4:38:f4:e3:6e:e4:4e:3f:d4:c2:a7:
1a:23:b7:25:86:e1:15:a7:ed:37:f8:96:20:1c:33:
64:bd:2d:85:dd:9e:d8:8e:6a:fb:36:08:7f:12:32:
70:d5:9b:f4:9f:c9:6d:bf:50:78:ab:f8:dc:ab:df:
39:93:0d:20:fc:7f:49:db:04:65:16:cf:4d:67:0f:
5f:11:46:f2:77:06:63:02:bd:02:45:db:e4:20:4c:
f0:77:7a:d8:c5:a3:99:fa:4c:5f:bb:ca:da:61:24:
f6:4e:01:4b:60:db:66:32:0e:60:5c:44:74:24:3e:
ba:3e:14:c4:42:c0:a5:29:91:a2:d9:32:88:37:d0:
dc:42:ed:0e:96:dd:1b:dd:b1:bb:b7:4e:18:c3:c5:
1f:9f:27:87:a7:73:1f:39:5f:51:7f:60:32:95:91:
b5:a7:08:22:46:1a:b6:46:c3:d9:28:63:e2:61:b7:
05:b2:79:ee:6d:20:7c:aa:ec:4a:4f:9a:a0:69:d2:
7d:94:3f:8e:07:bd:76:df:02:63:50:5b:0f:1d:17:
82:ce:79:77:bd:76:d0:d7:49:2d:5b:b2:ac:7f:41:
9b:21:e5:04:59:7b:6c:6b:0d:22:c7:11:16:61:36:
88:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:50:D9:B3:54:A9:32:32:64:63:DE:60:56:69:4C:50:79:14:7B:0E
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/SVDZs1SpMjJkY95gVmlMUHkUew4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.150.0/24
5.231.70.0/24
5.231.82.0/24
5.231.96.0/24
5.231.203.0/24
5.231.225.0/24
5.231.234.0/24
77.90.22.0/24
77.90.39.0/24
77.90.41.0/24
77.90.52.0/24
77.90.58.0/24
85.93.1.0/24
85.93.6.0/23
85.93.22.0/24
89.144.14.0/24
89.144.16.0/24
89.144.25.0/24
89.144.35.0/24
94.249.153.0/24
94.249.158.0/24
Signature Algorithm: sha256WithRSAEncryption
04:6a:98:e5:8a:f4:57:a4:8f:c3:99:f7:f4:4c:b1:cf:ea:a4:
b4:8e:c8:d6:dd:10:aa:01:53:12:5d:bc:fe:3d:5b:fa:b5:a6:
9e:c4:7d:1f:bf:9f:9d:c0:05:56:d2:f9:56:1f:15:99:8b:29:
df:33:2e:cb:23:5e:a4:e3:ed:da:47:d2:f8:4e:ad:e3:83:58:
e7:d4:33:9a:d6:c4:e1:05:69:c3:38:ea:67:53:45:40:97:5a:
c2:fb:36:9c:02:f1:f0:48:ab:31:7b:c8:de:85:e5:13:f4:f1:
43:40:2b:db:e9:e5:0b:29:78:d5:83:d5:70:28:03:75:12:c0:
e8:bf:1c:f8:64:17:dd:30:35:b8:6b:b3:c5:b6:66:d8:5e:d5:
fd:f3:b6:e1:ab:ee:98:77:f1:d9:e7:2e:d4:e3:9a:6f:0f:35:
df:21:d6:06:d2:cc:25:77:9b:7c:37:2f:60:a8:9d:05:64:e7:
1e:fb:51:36:05:df:88:66:49:6e:bf:21:75:c1:89:23:f3:d7:
07:c2:2e:31:77:4e:63:a7:6b:b9:a6:ab:96:35:7a:c8:67:cf:
19:1c:17:fe:4d:31:49:b1:df:74:c1:93:4a:30:ae:9e:ad:97:
7c:ea:8a:48:13:08:d5:a2:29:56:ac:f7:0f:9c:0c:7e:b6:f4:
99:1f:6e:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 06:27:30 2025 by rpki-client