Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/hLXL_BaTVOZTAqb7icY3-zFdudY.roa
File: hLXL_BaTVOZTAqb7icY3-zFdudY.roa (raw, json)
Hash identifier: 4F393kVJkGKkEhD4dslFV7OOacjUOEt7nhymBTrO6Zk=
Subject key identifier: 84:B5:CB:FC:16:93:54:E6:53:02:A6:FB:89:C6:37:FB:31:5D:B9:D6
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 0196AE15417E5780A5745F72BBB8DF5CD853
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/hLXL_BaTVOZTAqb7icY3-zFdudY.roa
Signing time: Thu 08 May 2025 04:09:10 +0000
ROA not before: Thu 08 May 2025 04:09:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 58212
IP address blocks: 5.83.150.0/24 maxlen: 24
5.231.70.0/24 maxlen: 24
5.231.82.0/24 maxlen: 24
5.231.96.0/24 maxlen: 24
5.231.203.0/24 maxlen: 24
5.231.225.0/24 maxlen: 24
5.231.234.0/24 maxlen: 24
77.90.22.0/24 maxlen: 24
77.90.39.0/24 maxlen: 24
77.90.52.0/24 maxlen: 24
77.90.58.0/24 maxlen: 24
85.93.1.0/24 maxlen: 24
85.93.6.0/24 maxlen: 24
85.93.7.0/24 maxlen: 24
85.93.22.0/24 maxlen: 24
89.144.14.0/24 maxlen: 24
89.144.16.0/24 maxlen: 24
89.144.25.0/24 maxlen: 24
89.144.35.0/24 maxlen: 24
94.249.153.0/24 maxlen: 24
94.249.158.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 08 May 2025 11:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ae:15:41:7e:57:80:a5:74:5f:72:bb:b8:df:5c:d8:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: May 8 04:09:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=84b5cbfc169354e65302a6fb89c637fb315db9d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:34:b6:58:4f:23:4b:0e:3d:b8:ac:d0:87:be:
f0:e4:56:2d:2c:2f:b4:83:5e:91:68:54:6c:9a:f2:
a0:91:ee:eb:5e:cb:cf:36:c7:91:3c:74:da:26:39:
39:ba:d5:d4:13:d3:9b:90:8e:c6:08:83:05:57:a9:
41:55:f1:81:6b:98:19:0a:7c:53:2a:27:58:6d:10:
db:eb:ce:b9:47:22:31:8d:5c:58:44:ce:4b:4f:f4:
52:03:68:19:2c:7a:3b:95:db:6d:de:8b:03:71:ba:
a4:07:60:c3:fb:68:3b:12:b6:55:cd:dc:8d:ac:df:
8d:b3:9c:71:98:b5:32:76:e6:e2:cd:3c:71:d4:42:
85:66:d6:93:12:cb:e6:a4:60:02:2b:4d:4b:0b:24:
c8:67:55:25:02:b2:3b:9e:28:8f:11:f0:34:2b:7d:
72:96:fb:04:fd:5f:a9:4a:49:34:4e:d2:7c:ca:8b:
f6:f5:8e:56:c0:73:fa:0e:a5:73:f5:3d:ef:b0:d5:
bb:1f:b0:1b:2d:3a:c5:44:39:06:3d:ad:01:eb:99:
77:1c:ad:6a:57:71:3e:4c:ea:3f:6f:af:93:09:c0:
f4:04:56:af:1c:9a:29:68:58:66:f4:05:6b:75:2c:
f2:82:f8:27:93:5b:6b:ab:15:bd:54:10:16:e6:53:
73:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:B5:CB:FC:16:93:54:E6:53:02:A6:FB:89:C6:37:FB:31:5D:B9:D6
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/hLXL_BaTVOZTAqb7icY3-zFdudY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.150.0/24
5.231.70.0/24
5.231.82.0/24
5.231.96.0/24
5.231.203.0/24
5.231.225.0/24
5.231.234.0/24
77.90.22.0/24
77.90.39.0/24
77.90.52.0/24
77.90.58.0/24
85.93.1.0/24
85.93.6.0/23
85.93.22.0/24
89.144.14.0/24
89.144.16.0/24
89.144.25.0/24
89.144.35.0/24
94.249.153.0/24
94.249.158.0/24
Signature Algorithm: sha256WithRSAEncryption
68:6f:34:eb:97:8d:c7:64:00:3a:a9:9f:3c:bc:64:89:8e:ec:
f3:6b:5b:0b:d4:25:eb:1b:35:41:15:d8:af:11:d1:14:94:53:
3b:43:5d:a1:b3:56:ee:0f:2b:de:49:e2:70:df:1c:18:1a:76:
1d:02:ba:6d:0b:4a:d2:8b:89:0f:59:09:bd:3b:a2:6d:8b:8f:
75:4a:e6:a0:16:f8:3f:b8:b6:ba:9f:14:3d:5f:86:bf:57:7a:
23:91:41:a8:65:a4:84:dc:2b:93:46:12:c2:0c:31:b1:d8:e2:
df:70:e8:f6:e6:1f:36:fe:c8:a5:57:4e:3c:37:3d:bb:e8:e3:
50:25:bf:3a:96:ac:6e:65:ca:b2:f5:52:f7:e2:38:77:b8:01:
20:47:35:91:70:31:ce:9b:04:85:1d:46:50:81:d2:1f:f1:17:
1b:5a:13:05:b2:3e:1d:b6:06:54:bc:00:2e:d6:f9:ea:46:9f:
f2:1e:c8:b8:d0:7f:5f:bd:17:3f:4e:81:dd:18:f9:49:f2:20:
a3:50:3a:a4:a6:9b:74:30:c4:42:26:0b:c6:c3:62:cd:fe:3d:
62:49:70:65:69:1a:2d:4b:1f:9c:bd:4d:cd:db:26:e5:b8:98:
9c:18:40:d7:0a:f7:24:91:e0:92:57:6f:16:ec:49:73:b2:c9:
07:41:b3:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 22:11:27 2025 by rpki-client