Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/snNMZ7yEpA0lbBttkYzOVPviIbE.roa
File: snNMZ7yEpA0lbBttkYzOVPviIbE.roa (raw, json)
Hash identifier: jruafNgIs7d3bt6gsFCZSs+E9P5bRLbM06uEobo6WdI=
Subject key identifier: B2:73:4C:67:BC:84:A4:0D:25:6C:1B:6D:91:8C:CE:54:FB:E2:21:B1
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 01962D58DA718C29E07607B9A0F5DFBA0064
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/snNMZ7yEpA0lbBttkYzOVPviIbE.roa
Signing time: Sun 13 Apr 2025 04:11:59 +0000
ROA not before: Sun 13 Apr 2025 04:11:59 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 58212
IP address blocks: 5.83.150.0/24 maxlen: 24
5.231.82.0/24 maxlen: 24
5.231.96.0/24 maxlen: 24
77.90.22.0/24 maxlen: 24
77.90.39.0/24 maxlen: 24
77.90.41.0/24 maxlen: 24
77.90.52.0/24 maxlen: 24
77.90.58.0/24 maxlen: 24
89.106.70.0/24 maxlen: 24
89.144.7.0/24 maxlen: 24
89.144.8.0/24 maxlen: 24
89.144.14.0/24 maxlen: 24
89.144.16.0/24 maxlen: 24
89.144.25.0/24 maxlen: 24
89.144.35.0/24 maxlen: 24
94.249.153.0/24 maxlen: 24
94.249.158.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 13 Apr 2025 06:32:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:2d:58:da:71:8c:29:e0:76:07:b9:a0:f5:df:ba:00:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Apr 13 04:11:59 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b2734c67bc84a40d256c1b6d918cce54fbe221b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:b2:66:50:9b:c0:f8:55:66:4c:fe:f7:ec:6d:
cb:bc:d9:ac:c9:b1:2d:3e:cd:7c:f4:3b:bd:d2:18:
df:3b:49:fb:a7:b9:12:28:02:7d:67:99:a7:17:50:
f2:96:cf:ba:70:f4:40:83:a2:bc:99:44:1f:93:4a:
c0:a5:17:c1:27:eb:1c:a8:80:29:38:b1:21:60:21:
11:92:af:f1:bc:8b:6f:92:98:3f:34:30:68:da:e1:
87:b0:3a:54:9e:6a:8b:9a:f3:7e:37:ba:be:62:0a:
78:b2:31:92:24:dc:01:7e:f6:2b:12:a4:d2:af:e0:
78:06:1e:b9:7f:7e:2d:28:35:83:30:97:fa:93:1b:
c9:13:89:c1:7d:b4:6e:06:69:8a:d4:72:b8:37:b1:
88:ac:88:bc:a3:21:92:ce:db:75:3e:e9:a2:d7:fc:
20:c9:a3:c6:bc:cb:77:83:89:50:a0:51:37:64:21:
96:39:77:f7:5f:23:4d:31:b6:d3:2a:28:8d:03:ea:
67:1b:e9:78:11:ba:86:9e:9e:b5:58:5e:66:5e:dc:
d2:46:48:5d:a4:98:50:ca:08:3d:08:4b:54:3d:dc:
4b:78:40:db:b3:68:4c:e3:67:58:85:8a:b5:b5:d6:
e4:53:9e:f1:4f:2d:8d:79:e2:14:14:0f:ec:e3:fc:
4f:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:73:4C:67:BC:84:A4:0D:25:6C:1B:6D:91:8C:CE:54:FB:E2:21:B1
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/snNMZ7yEpA0lbBttkYzOVPviIbE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.150.0/24
5.231.82.0/24
5.231.96.0/24
77.90.22.0/24
77.90.39.0/24
77.90.41.0/24
77.90.52.0/24
77.90.58.0/24
89.106.70.0/24
89.144.7.0-89.144.8.255
89.144.14.0/24
89.144.16.0/24
89.144.25.0/24
89.144.35.0/24
94.249.153.0/24
94.249.158.0/24
Signature Algorithm: sha256WithRSAEncryption
cb:1b:b5:33:3b:75:9b:5e:01:a8:92:35:ab:92:69:55:f3:9d:
16:d2:a6:82:7c:46:0d:0f:75:88:06:f7:eb:9a:23:eb:ec:02:
b1:95:48:5c:98:69:7e:2c:04:a9:7f:44:0c:0e:23:60:63:89:
96:24:2f:0a:ea:e9:c6:ba:f7:7d:2b:a9:3d:78:8e:79:f1:9c:
84:ed:f8:6b:fb:f0:ec:74:82:93:7a:bb:aa:20:a9:a1:2a:65:
2e:9e:d8:3f:22:4b:15:90:37:7f:aa:1b:de:d8:3f:2a:50:0e:
23:14:b4:36:ca:50:03:3b:60:b6:4e:36:69:12:04:4e:a0:d8:
4b:9d:0e:b9:ef:ca:ff:6c:82:af:5e:b5:bf:c7:cc:3b:63:cc:
56:fb:41:c0:48:d2:54:db:3a:e2:b9:bf:c0:72:6f:e7:bb:f5:
2d:3f:dc:93:c5:06:0f:19:04:69:b5:bc:3f:a7:ff:d9:d0:72:
35:f8:7d:5d:da:b2:1f:7d:30:c8:01:11:83:0e:b9:af:d3:4a:
9a:25:41:1c:1f:2a:77:f1:8a:d5:f6:0f:7c:eb:f6:65:b6:9f:
95:87:32:5e:6c:09:3b:9c:75:99:bc:4a:55:92:36:05:17:c0:
03:c4:13:85:cc:d9:d4:74:b6:30:28:3d:7b:6d:3c:21:57:36:
fa:5c:08:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 08:29:52 2025 by rpki-client