Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/cDej2XNnZqbKqAOLmba6RuvQHpk.roa
File: cDej2XNnZqbKqAOLmba6RuvQHpk.roa (raw, json)
Hash identifier: fWAn49Hc88VBD2MRran+8EZdMc62KILwcWRiPCFkZHo=
Subject key identifier: 70:37:A3:D9:73:67:66:A6:CA:A8:03:8B:99:B6:BA:46:EB:D0:1E:99
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 01962C061C0933797C12E272D404CA0E4E23
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/cDej2XNnZqbKqAOLmba6RuvQHpk.roa
Signing time: Sat 12 Apr 2025 22:01:59 +0000
ROA not before: Sat 12 Apr 2025 22:01:59 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 12586
IP address blocks: 5.83.128.0/19 maxlen: 32
5.83.128.0/20 maxlen: 32
5.83.136.0/24 maxlen: 24
5.83.151.0/24 maxlen: 32
5.83.156.0/24 maxlen: 24
5.83.157.0/24 maxlen: 24
5.175.128.0/24 maxlen: 32
5.175.129.0/24 maxlen: 32
5.175.130.0/24 maxlen: 32
5.175.131.0/24 maxlen: 32
5.175.133.0/24 maxlen: 32
5.175.143.0/24 maxlen: 24
5.175.218.0/24 maxlen: 32
5.175.219.0/24 maxlen: 32
5.175.220.0/24 maxlen: 24
5.175.225.0/24 maxlen: 32
5.175.226.0/24 maxlen: 32
5.175.227.0/24 maxlen: 32
5.175.228.0/24 maxlen: 32
5.175.229.0/24 maxlen: 32
5.175.230.0/24 maxlen: 32
5.175.231.0/24 maxlen: 32
5.175.232.0/24 maxlen: 32
5.175.235.0/24 maxlen: 32
5.175.239.0/24 maxlen: 24
5.175.240.0/24 maxlen: 32
5.175.241.0/24 maxlen: 32
5.175.242.0/24 maxlen: 32
5.175.243.0/24 maxlen: 32
5.175.244.0/24 maxlen: 32
5.175.251.0/24 maxlen: 32
5.175.252.0/24 maxlen: 32
5.175.253.0/24 maxlen: 32
5.175.254.0/24 maxlen: 32
5.175.255.0/24 maxlen: 32
5.230.0.0/15 maxlen: 32
5.230.6.0/24 maxlen: 32
5.230.11.0/24 maxlen: 32
5.230.102.0/24 maxlen: 32
5.230.224.0/24 maxlen: 32
5.231.24.0/24 maxlen: 24
5.231.43.0/24 maxlen: 24
5.231.48.0/24 maxlen: 24
5.231.49.0/24 maxlen: 24
5.231.94.0/24 maxlen: 24
5.231.104.0/24 maxlen: 24
5.231.232.0/24 maxlen: 24
5.231.233.0/24 maxlen: 24
5.231.234.0/24 maxlen: 24
77.90.0.0/18 maxlen: 32
77.90.18.0/24 maxlen: 24
77.90.21.0/24 maxlen: 24
77.90.38.0/24 maxlen: 24
83.243.80.0/21 maxlen: 32
85.93.0.0/19 maxlen: 32
85.93.12.0/24 maxlen: 24
85.93.15.0/24 maxlen: 24
85.93.20.0/24 maxlen: 32
85.118.160.0/21 maxlen: 32
87.239.128.0/21 maxlen: 32
89.106.64.0/19 maxlen: 32
89.106.92.0/24 maxlen: 24
89.106.93.0/24 maxlen: 24
89.106.94.0/24 maxlen: 24
89.106.95.0/24 maxlen: 24
89.144.0.0/18 maxlen: 32
89.144.21.0/24 maxlen: 24
89.144.38.0/24 maxlen: 24
94.103.160.0/20 maxlen: 32
94.103.166.0/24 maxlen: 24
94.249.128.0/17 maxlen: 32
94.249.150.0/24 maxlen: 24
94.249.170.0/24 maxlen: 24
94.249.212.0/24 maxlen: 24
95.215.32.0/22 maxlen: 32
178.18.144.0/20 maxlen: 32
178.18.151.0/24 maxlen: 24
185.13.156.0/22 maxlen: 32
185.13.156.0/24 maxlen: 24
185.47.140.0/24 maxlen: 32
185.47.141.0/24 maxlen: 32
185.47.142.0/24 maxlen: 24
185.121.69.0/24 maxlen: 24
185.121.71.0/24 maxlen: 32
193.28.251.0/24 maxlen: 32
195.110.14.0/23 maxlen: 32
217.69.160.0/20 maxlen: 32
217.69.167.0/24 maxlen: 24
217.69.170.0/24 maxlen: 24
2a00:12d8::/29 maxlen: 128
2a00:19d0::/29 maxlen: 128
2a00:cdc0::/32 maxlen: 128
2a01:bd40::/29 maxlen: 128
2a02:7a0::/29 maxlen: 128
2a02:2fc0::/29 maxlen: 128
2a02:2fc0::/48 maxlen: 48
2a02:2fc0:1::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 12 Apr 2025 23:28:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:2c:06:1c:09:33:79:7c:12:e2:72:d4:04:ca:0e:4e:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Apr 12 22:01:59 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7037a3d9736766a6caa8038b99b6ba46ebd01e99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:d8:70:a7:f3:7d:d3:13:2e:42:f4:1a:76:58:
2b:b9:6d:f8:59:aa:94:15:86:40:97:75:15:27:75:
85:60:c3:c7:91:16:ee:3b:d7:2f:cd:b6:e9:b4:a8:
1c:83:65:d7:26:ef:e7:db:86:ae:8c:8f:01:fa:a2:
26:16:79:5e:23:5c:79:8d:d4:8a:94:2a:97:d4:15:
95:3c:e0:c6:2a:0d:12:9a:d1:ee:d3:83:4a:24:18:
2e:71:9e:51:85:fd:9d:04:59:82:92:b9:01:de:38:
c1:0d:33:a5:5b:57:c7:80:64:31:ab:ca:64:43:1c:
f0:18:ef:54:28:1e:d9:65:63:2f:51:48:19:b2:2f:
99:82:45:da:95:1f:35:f7:a8:fd:dd:b6:17:e3:cb:
9c:e2:8a:98:36:df:00:95:94:ff:70:d7:ec:a9:02:
87:8b:66:44:cf:5b:ff:4b:1e:b4:34:eb:70:64:c4:
16:65:38:52:49:e2:2f:43:7c:a0:77:e1:66:43:5f:
1f:94:78:eb:c5:63:44:ec:f8:a3:a4:be:e0:78:43:
31:51:df:95:68:a2:1a:e5:5d:a5:4a:94:d8:d4:2a:
d2:d5:1b:7e:55:70:da:37:7b:a3:ec:b7:7e:e1:88:
a8:93:e2:5a:34:5e:73:5f:27:81:ae:8a:72:10:f3:
68:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:37:A3:D9:73:67:66:A6:CA:A8:03:8B:99:B6:BA:46:EB:D0:1E:99
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/cDej2XNnZqbKqAOLmba6RuvQHpk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.128.0/19
5.175.128.0/22
5.175.133.0/24
5.175.143.0/24
5.175.218.0-5.175.220.255
5.175.225.0-5.175.232.255
5.175.235.0/24
5.175.239.0-5.175.244.255
5.175.251.0-5.175.255.255
5.230.0.0/15
77.90.0.0/18
83.243.80.0/21
85.93.0.0/19
85.118.160.0/21
87.239.128.0/21
89.106.64.0/19
89.144.0.0/18
94.103.160.0/20
94.249.128.0/17
95.215.32.0/22
178.18.144.0/20
185.13.156.0/22
185.47.140.0-185.47.142.255
185.121.69.0/24
185.121.71.0/24
193.28.251.0/24
195.110.14.0/23
217.69.160.0/20
IPv6:
2a00:12d8::/29
2a00:19d0::/29
2a00:cdc0::/32
2a01:bd40::/29
2a02:7a0::/29
2a02:2fc0::/29
Signature Algorithm: sha256WithRSAEncryption
82:c9:09:7e:3d:06:f5:1f:57:dc:a4:31:66:95:c2:6c:e3:3a:
2f:61:ef:8e:ca:66:59:8e:60:83:b1:b6:e0:1c:88:bf:90:d7:
22:e8:7b:1f:93:1d:52:ba:c5:12:69:00:d5:a6:3b:1b:3d:84:
66:37:d2:f9:5b:08:c1:12:b8:4b:e6:cf:3b:ce:4e:25:74:80:
59:9e:ad:eb:b6:c8:f3:33:86:ef:21:6a:fe:53:1d:a9:ae:84:
0b:af:41:a6:3f:2c:6a:1b:56:64:75:d7:e9:69:d1:c7:bb:f1:
83:0c:ec:a9:3d:55:59:89:d3:03:72:7b:a6:ab:e9:f7:84:fd:
e3:73:d3:ce:15:84:b1:bb:af:4f:9d:47:d2:88:dd:68:57:f6:
45:c3:99:ad:32:98:76:25:8b:ba:c1:05:fa:75:99:f9:c3:b4:
5b:bd:1f:37:40:dc:36:5c:3f:c2:5c:4d:77:dd:d7:bd:af:50:
df:90:da:b8:26:46:81:1b:e9:ff:ac:d2:51:d7:10:48:3e:23:
00:23:28:15:bf:2c:ed:b0:43:a1:42:68:0c:18:f5:b2:d4:a2:
1f:56:ea:18:93:4c:98:9f:13:42:7e:6f:41:ec:75:c3:4a:47:
a9:67:c3:74:23:9f:e8:d6:22:61:d0:6e:12:4a:c3:81:00:24:
64:c6:d3:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 17 03:48:42 2025 by rpki-client