Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/YUcMFi8IrnMtH1Pw9QR8RJNucR0.roa
File: YUcMFi8IrnMtH1Pw9QR8RJNucR0.roa (raw, json)
Hash identifier: wX2rSWUYHQfaFDjqiBp2c4nHZe4DzPrpVYKFDQh79LI=
Subject key identifier: 61:47:0C:16:2F:08:AE:73:2D:1F:53:F0:F5:04:7C:44:93:6E:71:1D
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 0196E98CA51A3DE839F9B222A2C84CC59C5C
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/YUcMFi8IrnMtH1Pw9QR8RJNucR0.roa
Signing time: Mon 19 May 2025 17:17:10 +0000
ROA not before: Mon 19 May 2025 17:17:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 57043
IP address blocks: 5.83.138.0/24 maxlen: 24
5.175.200.0/24 maxlen: 24
5.175.201.0/24 maxlen: 24
5.175.204.0/24 maxlen: 24
5.175.205.0/24 maxlen: 24
5.175.209.0/24 maxlen: 24
5.175.210.0/24 maxlen: 24
5.175.211.0/24 maxlen: 24
5.175.212.0/24 maxlen: 24
5.175.213.0/24 maxlen: 24
5.175.214.0/24 maxlen: 24
5.175.238.0/24 maxlen: 24
5.230.164.0/24 maxlen: 24
5.231.61.0/24 maxlen: 24
5.231.71.0/24 maxlen: 24
5.231.72.0/24 maxlen: 24
5.231.73.0/24 maxlen: 24
5.231.74.0/24 maxlen: 24
5.231.75.0/24 maxlen: 24
5.231.79.0/24 maxlen: 24
5.231.92.0/24 maxlen: 24
5.231.113.0/24 maxlen: 24
5.231.240.0/24 maxlen: 24
5.231.241.0/24 maxlen: 24
5.231.242.0/24 maxlen: 24
5.231.243.0/24 maxlen: 24
5.231.244.0/24 maxlen: 24
5.231.245.0/24 maxlen: 24
5.231.246.0/24 maxlen: 24
5.231.247.0/24 maxlen: 24
5.231.248.0/24 maxlen: 24
85.93.5.0/24 maxlen: 24
85.93.21.0/24 maxlen: 24
85.93.31.0/24 maxlen: 24
89.106.90.0/24 maxlen: 24
89.144.5.0/24 maxlen: 24
94.249.168.0/24 maxlen: 24
94.249.169.0/24 maxlen: 24
94.249.180.0/24 maxlen: 24
94.249.181.0/24 maxlen: 24
94.249.237.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 21 May 2025 14:31:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:e9:8c:a5:1a:3d:e8:39:f9:b2:22:a2:c8:4c:c5:9c:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: May 19 17:17:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=61470c162f08ae732d1f53f0f5047c44936e711d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:dc:b5:4d:51:88:4f:1d:a7:32:80:7e:dc:e2:
4f:e8:50:3e:1a:e6:f0:3a:cc:11:5d:a0:ab:61:84:
a4:8c:03:1d:d4:64:6c:b5:cd:72:a3:06:5d:bd:74:
cb:5a:2f:cb:37:e2:b0:28:61:9c:35:ff:ea:4d:a0:
a3:7f:ec:33:d2:21:fc:77:b5:ed:70:91:54:28:d7:
4a:27:96:7a:bc:fb:c1:83:56:c4:33:c1:c2:ab:58:
3b:5e:90:60:62:9e:ed:15:7c:3a:f0:de:13:ae:ad:
db:88:b4:f9:bc:57:b9:f2:c8:7a:d2:db:5a:19:1c:
da:75:62:82:71:0a:7e:b7:82:62:45:0d:a9:19:20:
ce:2c:60:8d:3f:3d:32:38:6c:51:05:6b:54:54:82:
b3:c3:89:4b:b9:5e:02:d5:80:ac:50:52:06:77:8e:
aa:e1:5f:d5:ab:84:35:0b:4a:b5:ae:89:dc:76:a9:
75:36:fd:6f:f3:2a:81:b4:25:63:ad:0d:8c:05:8d:
ff:77:e2:04:f5:1b:18:78:4c:ad:c3:89:dc:bd:59:
2f:60:83:8f:92:cd:85:d9:54:18:41:1e:8b:92:df:
43:ab:5e:e6:5d:c9:e5:d3:35:f3:27:2a:bc:13:5e:
27:6d:cb:03:09:f5:d9:f7:ad:ce:41:dc:a9:62:a8:
44:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:47:0C:16:2F:08:AE:73:2D:1F:53:F0:F5:04:7C:44:93:6E:71:1D
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/YUcMFi8IrnMtH1Pw9QR8RJNucR0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.138.0/24
5.175.200.0/23
5.175.204.0/23
5.175.209.0-5.175.214.255
5.175.238.0/24
5.230.164.0/24
5.231.61.0/24
5.231.71.0-5.231.75.255
5.231.79.0/24
5.231.92.0/24
5.231.113.0/24
5.231.240.0-5.231.248.255
85.93.5.0/24
85.93.21.0/24
85.93.31.0/24
89.106.90.0/24
89.144.5.0/24
94.249.168.0/23
94.249.180.0/23
94.249.237.0/24
Signature Algorithm: sha256WithRSAEncryption
07:91:eb:ca:61:a3:a0:40:58:71:05:f4:8f:dd:6e:ad:f4:91:
f3:b1:5d:ee:2b:48:4d:8e:1e:1b:e7:e1:5c:f0:c1:86:33:6d:
c1:7b:f4:e9:8a:66:aa:68:6f:99:4e:83:b2:32:df:2b:6b:71:
38:38:75:b2:03:11:fb:52:bc:ca:b3:c9:9a:bc:1d:c6:28:57:
17:8a:af:95:68:50:6b:57:44:8d:ac:48:dd:94:2f:c1:df:41:
c4:74:d6:f0:63:74:58:3a:76:51:02:7e:60:85:d6:c4:fb:48:
bb:d0:b3:73:4e:94:45:64:dc:e9:d7:cc:80:6c:54:cf:41:54:
4e:be:06:32:68:5a:4e:73:e2:f0:88:34:d1:18:b2:39:6a:ea:
9d:0a:8a:a0:d4:36:1f:c8:02:7b:6f:87:02:fd:a1:54:9b:0b:
a6:67:fb:6f:24:0b:17:43:ff:0f:dc:c8:b2:86:b9:e7:e2:5a:
60:64:29:bc:c1:7d:b4:f5:65:04:c9:18:95:52:95:7f:62:3b:
26:ad:ad:61:15:78:ac:36:3c:46:ca:df:4d:e3:7e:71:dc:21:
c0:4b:83:0c:a9:3c:b7:db:9a:48:c2:7c:fd:e3:20:09:28:fb:
f1:be:98:b8:fc:5e:5f:f5:0a:3c:34:0e:dd:65:a5:bf:ec:8a:
75:f3:b2:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 18 11:21:24 2025 by rpki-client