Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/g6HmpxqHxGs304MonI9OS2hRP0k.roa
File: g6HmpxqHxGs304MonI9OS2hRP0k.roa (raw, json)
Hash identifier: JFGI+v2x9yHnlcPydaSCXAVYHyWbymw/IRn/sMWzGq8=
Subject key identifier: 83:A1:E6:A7:1A:87:C4:6B:37:D3:83:28:9C:8F:4E:4B:68:51:3F:49
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 01967F642126B3EC8CEC8953C6813077135B
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/g6HmpxqHxGs304MonI9OS2hRP0k.roa
Signing time: Tue 29 Apr 2025 02:33:10 +0000
ROA not before: Tue 29 Apr 2025 02:33:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 58212
IP address blocks: 5.83.150.0/24 maxlen: 24
5.231.70.0/24 maxlen: 24
5.231.82.0/24 maxlen: 24
5.231.96.0/24 maxlen: 24
5.231.203.0/24 maxlen: 24
5.231.225.0/24 maxlen: 24
77.90.22.0/24 maxlen: 24
77.90.39.0/24 maxlen: 24
77.90.41.0/24 maxlen: 24
77.90.52.0/24 maxlen: 24
77.90.58.0/24 maxlen: 24
85.93.6.0/24 maxlen: 24
85.93.7.0/24 maxlen: 24
85.93.22.0/24 maxlen: 24
89.106.70.0/24 maxlen: 24
89.144.14.0/24 maxlen: 24
89.144.16.0/24 maxlen: 24
89.144.25.0/24 maxlen: 24
89.144.35.0/24 maxlen: 24
94.249.153.0/24 maxlen: 24
94.249.158.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 01 May 2025 20:47:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7f:64:21:26:b3:ec:8c:ec:89:53:c6:81:30:77:13:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Apr 29 02:33:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=83a1e6a71a87c46b37d383289c8f4e4b68513f49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:fe:10:81:36:b6:e8:00:c7:be:8d:13:c1:09:
71:2b:06:b4:03:d7:56:1a:f9:a7:30:d8:61:4f:a9:
41:51:a4:a0:c1:8a:0f:53:54:a3:32:0f:b3:a2:09:
d5:c3:c8:cf:b0:47:2f:e3:20:0d:e4:b4:fe:25:b7:
90:97:f0:cd:35:58:67:14:a5:d4:a3:2f:af:a8:6e:
fd:02:85:0e:44:bc:eb:4d:17:f3:dc:33:c7:02:b2:
9c:c3:e7:3c:0a:55:1f:68:8e:22:a4:fe:39:95:72:
40:ce:7d:23:99:eb:8f:4b:4f:ff:77:d4:61:54:c3:
b2:94:97:bd:e0:18:7e:f1:0d:e6:c7:a8:04:13:1f:
90:a0:ea:09:fe:af:b0:fd:a0:1f:90:32:ad:32:47:
a6:b4:15:63:c8:ba:d2:6b:da:22:b7:f4:36:76:b8:
fb:d0:2b:57:89:e4:9b:98:89:56:a9:05:e7:fd:10:
37:d6:19:f3:44:0d:3e:6b:66:d5:3d:e4:dc:f8:f6:
ef:99:5a:1a:de:d7:12:9d:c6:ec:ff:6b:fd:a1:47:
cb:0e:04:c2:2c:ca:b3:4b:f8:e7:6c:2b:fe:f6:c5:
72:67:1d:6b:e4:08:a5:13:bb:98:b3:09:be:bb:ed:
ca:0c:bd:b6:de:93:a0:6b:33:f7:3a:ff:8f:77:53:
c1:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:A1:E6:A7:1A:87:C4:6B:37:D3:83:28:9C:8F:4E:4B:68:51:3F:49
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/g6HmpxqHxGs304MonI9OS2hRP0k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.150.0/24
5.231.70.0/24
5.231.82.0/24
5.231.96.0/24
5.231.203.0/24
5.231.225.0/24
77.90.22.0/24
77.90.39.0/24
77.90.41.0/24
77.90.52.0/24
77.90.58.0/24
85.93.6.0/23
85.93.22.0/24
89.106.70.0/24
89.144.14.0/24
89.144.16.0/24
89.144.25.0/24
89.144.35.0/24
94.249.153.0/24
94.249.158.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:90:55:3f:7b:51:22:f4:b3:c0:d8:4e:53:33:ac:24:ed:5c:
ae:e3:e3:78:87:55:ec:84:5e:ed:a0:a9:25:50:ba:9c:f5:76:
eb:aa:be:6c:dc:80:71:f2:09:57:76:df:5f:17:68:4b:83:06:
1a:38:5a:0c:2b:ea:f5:83:87:d7:e7:0b:d9:ae:07:80:f2:fc:
2e:1f:e3:74:ef:1c:12:40:f2:af:ca:b8:a3:e8:f0:a1:f3:c0:
59:53:62:2d:83:ec:35:ae:63:44:49:ba:46:11:51:b7:81:d1:
6d:d0:83:f9:09:21:1b:d8:d0:22:a2:08:35:c9:c4:54:4e:f0:
57:7d:ca:6f:49:f5:92:08:55:d2:c4:cc:66:c1:e9:21:be:05:
ef:ce:06:69:4f:d5:90:a7:13:c1:8e:33:3a:0b:52:83:3f:89:
a8:35:6a:7b:24:86:17:1c:1f:74:c7:b4:95:01:91:84:a0:b9:
bf:83:55:c7:55:51:83:db:3b:34:4a:f8:f4:b0:98:83:1e:60:
c1:a3:99:ae:72:6f:61:3d:6b:99:6d:81:d2:fc:07:bf:63:b0:
22:d4:39:27:1b:89:53:54:5e:a1:c2:cd:af:63:4a:20:3b:f7:
6e:63:80:cf:c4:bf:8b:fb:31:8e:67:ef:8e:fe:18:8d:5c:0a:
74:78:a0:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 06:52:23 2025 by rpki-client