Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/W-OMGlWw2rJadR7ziDdl4rDfMUk.roa
File: W-OMGlWw2rJadR7ziDdl4rDfMUk.roa (raw, json)
Hash identifier: PcG0je+m2yCHkI0Rm6SpUWTkrLJD4Gkej6C0kQAje9I=
Subject key identifier: 5B:E3:8C:1A:55:B0:DA:B2:5A:75:1E:F3:88:37:65:E2:B0:DF:31:49
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 01970C997DAA8587D98A065E4AE3CAC6F9B5
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/W-OMGlWw2rJadR7ziDdl4rDfMUk.roa
Signing time: Mon 26 May 2025 12:37:55 +0000
ROA not before: Mon 26 May 2025 12:37:55 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 43260
IP address blocks: 5.83.129.0/24 maxlen: 24
5.231.30.0/24 maxlen: 24
5.231.105.0/24 maxlen: 24
5.231.115.0/24 maxlen: 24
77.90.54.0/24 maxlen: 24
87.239.131.0/24 maxlen: 24
94.249.172.0/24 maxlen: 24
94.249.173.0/24 maxlen: 24
94.249.194.0/24 maxlen: 24
94.249.195.0/24 maxlen: 24
94.249.233.0/24 maxlen: 24
94.249.238.0/24 maxlen: 24
94.249.239.0/24 maxlen: 24
95.215.32.0/24 maxlen: 24
95.215.34.0/24 maxlen: 24
178.18.144.0/24 maxlen: 24
217.69.166.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 29 May 2025 04:08:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:0c:99:7d:aa:85:87:d9:8a:06:5e:4a:e3:ca:c6:f9:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: May 26 12:37:55 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5be38c1a55b0dab25a751ef3883765e2b0df3149
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:9e:a8:da:5c:87:ed:85:90:29:44:5a:14:b8:
aa:8d:cb:e4:4f:77:80:1b:5f:2b:42:b2:11:72:2a:
7c:5e:92:54:6b:1c:16:71:db:e9:71:14:c1:9b:3e:
a2:ee:35:82:38:a6:78:61:61:40:06:5d:0f:40:b7:
4d:d1:6b:84:a1:2c:7a:21:6e:86:6e:ab:67:cb:3f:
19:73:ef:98:87:31:7e:2f:bd:31:ed:7a:39:11:49:
b5:2c:52:b2:14:dd:9d:1d:0b:f2:9a:f5:80:33:f9:
07:f1:b6:a3:52:68:ce:2c:b7:ea:49:30:ce:0a:80:
42:a5:e8:8c:26:17:a8:07:5e:05:69:84:f7:1f:70:
f5:3c:34:bd:22:91:5a:fe:92:4f:cb:b8:10:85:71:
bd:6e:0f:ab:9b:da:08:04:8e:8a:80:d5:f0:b7:5f:
c5:51:a0:d5:b2:f9:92:eb:30:60:5d:13:c7:21:e5:
39:c7:d3:5d:31:e5:e9:b4:4b:44:36:91:b8:dc:ba:
4a:c5:f7:b3:46:39:3d:95:7d:1a:09:d5:67:a6:21:
9e:32:b9:48:8e:f9:07:58:b3:99:d3:64:33:a2:af:
e6:a8:aa:eb:2d:45:3b:4f:59:db:92:91:37:79:13:
e5:47:ab:90:0d:39:ce:3f:6b:8b:40:98:96:47:34:
0b:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:E3:8C:1A:55:B0:DA:B2:5A:75:1E:F3:88:37:65:E2:B0:DF:31:49
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/W-OMGlWw2rJadR7ziDdl4rDfMUk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.129.0/24
5.231.30.0/24
5.231.105.0/24
5.231.115.0/24
77.90.54.0/24
87.239.131.0/24
94.249.172.0/23
94.249.194.0/23
94.249.233.0/24
94.249.238.0/23
95.215.32.0/24
95.215.34.0/24
178.18.144.0/24
217.69.166.0/24
Signature Algorithm: sha256WithRSAEncryption
80:64:ae:c7:9a:ca:22:9b:11:f0:67:8c:97:b9:34:56:be:53:
dd:f6:88:3e:ba:c3:2a:4b:f3:46:b1:f9:5f:32:71:e7:e6:e1:
95:40:69:5a:45:18:04:5f:61:85:98:5c:5a:b5:73:a3:2c:25:
1d:88:85:93:08:14:0a:0e:3a:f3:7a:fe:bc:6c:5e:c4:a1:3c:
73:72:31:74:5f:d8:90:a9:8c:6c:ac:1b:80:dc:72:bd:8e:28:
c8:13:17:d5:4f:a4:e2:34:e8:ac:98:36:4b:7e:7f:0e:0f:11:
f9:51:8e:3d:5f:8c:b3:d6:75:3c:c0:b0:0c:ef:26:8c:27:0f:
aa:89:b4:7f:c2:22:c5:48:3b:22:ea:02:91:ad:bd:fc:e3:d5:
a6:78:06:37:e2:b6:d8:8f:0c:05:f4:09:2f:0e:96:6b:09:2b:
ef:40:0e:72:62:77:59:ad:86:7a:91:0a:5a:5e:da:56:0f:d1:
78:12:c4:52:70:af:83:d1:ee:de:be:68:26:65:6e:3e:5d:f0:
c4:79:63:fa:a2:7c:39:ad:e0:b8:a7:ab:5a:dc:ed:fd:de:66:
7f:22:e2:a9:5e:d1:3c:7f:08:13:66:8b:bc:22:a0:ec:0a:fa:
45:7d:cd:42:1e:89:f4:cd:37:cf:fb:0a:20:62:e1:e1:e5:87:
d4:6c:4a:db
-----BEGIN CERTIFICATE-----
MIIFSzCCBDOgAwIBAgISAZcMmX2qhYfZigZeSuPKxvm1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNlNjA5NzY5ODY4NmUxNTU1ZjUxZjZjODgzYmM1YTU4NTQ5
YjIzNjIwHhcNMjUwNTI2MTIzNzU1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1YmUzOGMxYTU1YjBkYWIyNWE3NTFlZjM4ODM3NjVlMmIwZGYzMTQ5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApp6o2lyH7YWQKURaFLiqjcvkT3eA
G18rQrIRcip8XpJUaxwWcdvpcRTBmz6i7jWCOKZ4YWFABl0PQLdN0WuEoSx6IW6G
bqtnyz8Zc++YhzF+L70x7Xo5EUm1LFKyFN2dHQvymvWAM/kH8bajUmjOLLfqSTDO
CoBCpeiMJheoB14FaYT3H3D1PDS9IpFa/pJPy7gQhXG9bg+rm9oIBI6KgNXwt1/F
UaDVsvmS6zBgXRPHIeU5x9NdMeXptEtENpG43LpKxfezRjk9lX0aCdVnpiGeMrlI
jvkHWLOZ02Qzoq/mqKrrLUU7T1nbkpE3eRPlR6uQDTnOP2uLQJiWRzQLoQIDAQAB
o4ICVzCCAlMwHQYDVR0OBBYEFFvjjBpVsNqyWnUe84g3ZeKw3zFJMB8GA1UdIwQY
MBaAFD5gl2mGhuFVX1H2yIO8WlhUmyNiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGIt
ZTFiZDg4ZDNmZDA3LzEvVy1PTUdsV3cyckphZFI3emlEZGw0ckRmTVVrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGItZTFiZDg4ZDNmZDA3
LzEvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMG0GCCsGAQUFBwEHAQH/BF4wXDBaBAIAATBUAwQABVOBAwQA
BeceAwQABedpAwQABedzAwQATVo2AwQAV++DAwQBXvmsAwQBXvnCAwQAXvnpAwQB
XvnuAwQAX9cgAwQAX9ciAwQAshKQAwQA2UWmMA0GCSqGSIb3DQEBCwUAA4IBAQCA
ZK7HmsoimxHwZ4yXuTRWvlPd9og+usMqS/NGsflfMnHn5uGVQGlaRRgEX2GFmFxa
tXOjLCUdiIWTCBQKDjrzev68bF7EoTxzcjF0X9iQqYxsrBuA3HK9jijIExfVT6Ti
NOismDZLfn8ODxH5UY49X4yz1nU8wLAM7yaMJw+qibR/wiLFSDsi6gKRrb3849Wm
eAY34rbYjwwF9AkvDpZrCSvvQA5yYndZrYZ6kQpaXtpWD9F4EsRScK+D0e7evmgm
ZW4+XfDEeWP6onw5reC4p6ta3O393mZ/IuKpXtE8fwgTZou8IqDsCvpFfc1CHon0
zTfP+wogYuHh5YfUbErb
-----END CERTIFICATE-----
Generated at Wed Jun 18 05:18:25 2025 by rpki-client