Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/hiVXTgs-sVPb5PS_dP5SyktObmA.roa
File: hiVXTgs-sVPb5PS_dP5SyktObmA.roa (raw, json)
Hash identifier: v4N5R0/8Ruso07fRvJQCMFby75vgcQ8cpz+jRVdaXiw=
Subject key identifier: 86:25:57:4E:0B:3E:B1:53:DB:E4:F4:BF:74:FE:52:CA:4B:4E:6E:60
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 0196DC713BD7A907480AE10BBA612BFD48F1
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/hiVXTgs-sVPb5PS_dP5SyktObmA.roa
Signing time: Sat 17 May 2025 04:12:10 +0000
ROA not before: Sat 17 May 2025 04:12:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 58212
IP address blocks: 5.83.150.0/24 maxlen: 24
5.231.70.0/24 maxlen: 24
5.231.82.0/24 maxlen: 24
5.231.96.0/24 maxlen: 24
5.231.203.0/24 maxlen: 24
5.231.234.0/24 maxlen: 24
77.90.22.0/24 maxlen: 24
77.90.39.0/24 maxlen: 24
77.90.41.0/24 maxlen: 24
77.90.52.0/24 maxlen: 24
77.90.58.0/24 maxlen: 24
85.93.1.0/24 maxlen: 24
85.93.6.0/24 maxlen: 24
85.93.22.0/24 maxlen: 24
89.144.14.0/24 maxlen: 24
89.144.16.0/24 maxlen: 24
89.144.17.0/24 maxlen: 24
89.144.18.0/24 maxlen: 24
89.144.25.0/24 maxlen: 24
89.144.35.0/24 maxlen: 24
94.249.153.0/24 maxlen: 24
94.249.158.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 22 May 2025 04:10:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:dc:71:3b:d7:a9:07:48:0a:e1:0b:ba:61:2b:fd:48:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: May 17 04:12:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8625574e0b3eb153dbe4f4bf74fe52ca4b4e6e60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:47:aa:18:66:92:73:16:c0:1f:79:20:f0:d8:
9e:d5:72:fe:78:2e:2d:55:1b:6c:40:d9:4b:f2:fc:
77:1b:d9:e6:20:c4:35:d2:e0:f8:1b:32:6c:ec:b4:
74:5a:36:d3:2b:d3:4a:74:30:95:f7:86:13:a2:51:
77:d9:da:14:51:e6:68:6b:12:cd:5b:2c:26:b7:78:
97:90:b7:38:69:7a:91:81:4d:58:56:27:27:eb:0f:
89:58:bd:e3:8d:24:87:0f:b9:f7:37:e5:07:ea:a1:
08:f7:78:c7:e3:c8:c4:69:d2:fc:41:04:b3:47:81:
2a:7e:00:eb:1b:0e:58:be:a7:80:1b:99:e0:12:7c:
c3:e2:aa:4b:bc:1c:9a:36:9f:90:2f:cc:9e:40:a8:
b0:bd:79:11:6e:73:03:94:fa:85:0d:16:d0:5c:c8:
ec:52:3c:58:a5:d8:4e:d1:86:b9:92:09:49:08:43:
92:c9:e9:15:44:a9:61:c4:8d:0b:07:23:98:fb:b0:
55:32:be:c3:ff:bd:ef:7d:6c:3a:32:f7:9b:bc:66:
3a:f2:74:9e:9f:c2:71:b5:ed:c3:73:bf:b6:af:ac:
db:1e:75:06:34:9b:f7:33:13:9e:e4:aa:8a:bf:34:
82:59:62:ba:19:5c:21:7e:16:e6:8e:9e:7a:91:24:
ba:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:25:57:4E:0B:3E:B1:53:DB:E4:F4:BF:74:FE:52:CA:4B:4E:6E:60
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/hiVXTgs-sVPb5PS_dP5SyktObmA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.150.0/24
5.231.70.0/24
5.231.82.0/24
5.231.96.0/24
5.231.203.0/24
5.231.234.0/24
77.90.22.0/24
77.90.39.0/24
77.90.41.0/24
77.90.52.0/24
77.90.58.0/24
85.93.1.0/24
85.93.6.0/24
85.93.22.0/24
89.144.14.0/24
89.144.16.0-89.144.18.255
89.144.25.0/24
89.144.35.0/24
94.249.153.0/24
94.249.158.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:ce:73:fc:67:88:aa:50:c9:81:3c:59:d2:a9:f3:3f:a8:27:
3e:88:f7:bb:cc:5a:dc:ff:66:3c:e8:52:84:b2:24:f7:7c:69:
3e:b5:ca:0b:e6:9e:7c:f3:41:bb:13:73:e0:88:4c:5c:fe:68:
f0:74:b2:04:89:e7:2a:4a:45:41:41:f7:80:8f:25:5b:c8:0e:
3f:86:6a:80:b5:7d:d8:38:1b:15:5f:8b:7d:d9:d7:66:c7:f9:
c8:b4:be:93:4b:f5:64:c4:49:5a:64:5f:54:30:2c:04:23:df:
9b:c3:ed:63:f3:bc:02:a7:cf:21:29:b5:1b:b4:78:d5:f5:ae:
b6:8f:b4:58:d2:44:0a:90:95:75:97:26:10:96:7f:65:2d:7a:
ac:d4:9f:52:5a:c8:fe:96:a2:4c:65:c3:28:0d:99:9d:a2:aa:
7c:45:ee:94:7e:4e:71:03:1d:44:b6:c7:64:38:46:bf:39:ca:
2b:e8:66:1b:e6:0e:af:0a:67:a8:92:71:bd:ac:14:20:5b:de:
8c:c7:b4:40:e8:de:83:b3:01:16:04:c7:0c:42:bd:46:40:d5:
cd:dc:c1:5a:37:cc:95:9e:df:df:e9:f9:6d:c7:ce:78:b8:65:
e1:d6:88:a5:36:b9:19:fa:a9:a5:98:c9:8d:41:0e:b3:e4:3a:
63:65:37:cb
-----BEGIN CERTIFICATE-----
MIIFfDCCBGSgAwIBAgISAZbccTvXqQdICuELumEr/UjxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNlNjA5NzY5ODY4NmUxNTU1ZjUxZjZjODgzYmM1YTU4NTQ5
YjIzNjIwHhcNMjUwNTE3MDQxMjEwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4NjI1NTc0ZTBiM2ViMTUzZGJlNGY0YmY3NGZlNTJjYTRiNGU2ZTYwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxkeqGGaScxbAH3kg8Nie1XL+eC4t
VRtsQNlL8vx3G9nmIMQ10uD4GzJs7LR0WjbTK9NKdDCV94YTolF32doUUeZoaxLN
Wywmt3iXkLc4aXqRgU1YVicn6w+JWL3jjSSHD7n3N+UH6qEI93jH48jEadL8QQSz
R4EqfgDrGw5YvqeAG5ngEnzD4qpLvByaNp+QL8yeQKiwvXkRbnMDlPqFDRbQXMjs
UjxYpdhO0Ya5kglJCEOSyekVRKlhxI0LByOY+7BVMr7D/73vfWw6MvebvGY68nSe
n8Jxte3Dc7+2r6zbHnUGNJv3MxOe5KqKvzSCWWK6GVwhfhbmjp56kSS62wIDAQAB
o4ICiDCCAoQwHQYDVR0OBBYEFIYlV04LPrFT2+T0v3T+UspLTm5gMB8GA1UdIwQY
MBaAFD5gl2mGhuFVX1H2yIO8WlhUmyNiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGIt
ZTFiZDg4ZDNmZDA3LzEvaGlWWFRncy1zVlBiNVBTX2RQNVN5a3RPYm1BLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGItZTFiZDg4ZDNmZDA3
LzEvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGdBggrBgEFBQcBBwEB/wSBjTCBijCBhwQCAAEwgYADBAAF
U5YDBAAF50YDBAAF51IDBAAF52ADBAAF58sDBAAF5+oDBABNWhYDBABNWicDBABN
WikDBABNWjQDBABNWjoDBABVXQEDBABVXQYDBABVXRYDBABZkA4wDAMEBFmQEAME
AFmQEgMEAFmQGQMEAFmQIwMEAF75mQMEAF75njANBgkqhkiG9w0BAQsFAAOCAQEA
TM5z/GeIqlDJgTxZ0qnzP6gnPoj3u8xa3P9mPOhShLIk93xpPrXKC+aefPNBuxNz
4IhMXP5o8HSyBInnKkpFQUH3gI8lW8gOP4ZqgLV92DgbFV+LfdnXZsf5yLS+k0v1
ZMRJWmRfVDAsBCPfm8PtY/O8AqfPISm1G7R41fWuto+0WNJECpCVdZcmEJZ/ZS16
rNSfUlrI/paiTGXDKA2ZnaKqfEXulH5OcQMdRLbHZDhGvznKK+hmG+YOrwpnqJJx
vawUIFvejMe0QOjeg7MBFgTHDEK9RkDVzdzBWjfMlZ7f3+n5bcfOeLhl4daIpTa5
GfqppZjJjUEOs+Q6Y2U3yw==
-----END CERTIFICATE-----
Generated at Sun Jun 15 14:21:03 2025 by rpki-client