Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/tXep6in32cZe7StT7r7O_qnV1mU.roa
File: tXep6in32cZe7StT7r7O_qnV1mU.roa (raw, json)
Hash identifier: XvvMIFh+mh4TP/iwdsQJduLEAIZcdtYwZDa4HRbGQzM=
Subject key identifier: B5:77:A9:EA:29:F7:D9:C6:5E:ED:2B:53:EE:BE:CE:FE:A9:D5:D6:65
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 0196EE0C623F8E335E9C532A8C6A4412D4B5
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/tXep6in32cZe7StT7r7O_qnV1mU.roa
Signing time: Tue 20 May 2025 14:15:10 +0000
ROA not before: Tue 20 May 2025 14:15:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 43260
IP address blocks: 5.83.129.0/24 maxlen: 24
5.231.30.0/24 maxlen: 24
5.231.105.0/24 maxlen: 24
5.231.115.0/24 maxlen: 24
77.90.54.0/24 maxlen: 24
87.239.131.0/24 maxlen: 24
94.249.172.0/24 maxlen: 24
94.249.173.0/24 maxlen: 24
94.249.194.0/24 maxlen: 24
94.249.195.0/24 maxlen: 24
94.249.233.0/24 maxlen: 24
94.249.238.0/24 maxlen: 24
94.249.239.0/24 maxlen: 24
95.215.32.0/24 maxlen: 24
95.215.34.0/24 maxlen: 24
178.18.144.0/24 maxlen: 24
217.69.166.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 24 May 2025 04:17:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ee:0c:62:3f:8e:33:5e:9c:53:2a:8c:6a:44:12:d4:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: May 20 14:15:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b577a9ea29f7d9c65eed2b53eebecefea9d5d665
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:5f:f9:69:ba:2f:a1:87:d4:9c:0f:b8:59:48:
4d:8d:4f:cd:b8:c7:f2:11:96:22:93:f7:36:72:21:
ca:d1:db:9a:f4:e2:c1:1e:98:90:0c:99:3f:92:05:
90:f7:ff:41:76:de:02:07:45:84:89:09:41:1e:8d:
56:62:d6:76:b2:2c:5b:86:e4:cf:7c:8a:78:3e:3e:
e9:bc:02:d9:14:4c:76:ae:5c:42:2c:9e:38:45:18:
c2:75:96:bf:a0:92:d1:63:af:5b:0f:4f:9d:8e:07:
50:86:3a:9b:eb:63:cc:ed:03:b4:c8:81:25:e5:26:
8d:31:a0:f1:72:83:86:cb:36:45:1f:b8:91:fa:79:
60:60:23:9a:04:a0:20:42:a6:01:22:f6:bf:2f:8a:
49:ab:58:45:9b:f7:b4:0e:63:c7:38:d0:9e:73:b7:
91:d4:ff:a4:b2:07:00:ae:80:fa:b9:7f:ad:c1:a4:
40:0c:6a:49:53:b8:1d:cd:14:12:53:60:f2:37:db:
be:3c:12:ca:86:d8:95:91:e2:e1:a5:00:75:79:27:
ea:ae:47:23:f1:30:14:de:5c:91:01:37:bd:48:62:
ef:0b:06:14:7b:08:41:b9:46:13:16:dc:75:e9:10:
b4:48:71:0e:c7:09:e4:15:e4:97:68:61:41:aa:23:
29:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:77:A9:EA:29:F7:D9:C6:5E:ED:2B:53:EE:BE:CE:FE:A9:D5:D6:65
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/tXep6in32cZe7StT7r7O_qnV1mU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.129.0/24
5.231.30.0/24
5.231.105.0/24
5.231.115.0/24
77.90.54.0/24
87.239.131.0/24
94.249.172.0/23
94.249.194.0/23
94.249.233.0/24
94.249.238.0/23
95.215.32.0/24
95.215.34.0/24
178.18.144.0/24
217.69.166.0/24
Signature Algorithm: sha256WithRSAEncryption
13:aa:d2:68:90:45:f1:9d:9d:10:ca:4d:fe:86:63:3e:5e:92:
52:1a:3d:19:68:c3:08:0b:54:5d:9e:14:c9:70:c7:36:f6:f0:
5e:a7:0f:fb:ba:95:c5:1f:57:c9:ca:ae:81:8d:59:a8:52:cf:
15:a8:69:71:a4:1b:88:a3:36:7b:ba:1a:c4:fe:4b:b4:3d:f5:
81:26:09:5e:1c:ec:e0:bf:7f:b6:6b:07:92:dd:6f:c2:85:5f:
59:e3:0d:88:52:44:41:10:8a:41:65:6b:7d:ef:00:4b:7f:7a:
12:ed:f2:e5:d4:69:d5:57:b4:04:50:0d:dc:f1:c4:38:fe:bc:
35:71:42:08:98:ca:aa:2b:c3:62:68:b7:4d:3e:a9:c8:2e:02:
ef:ba:31:5b:ad:84:6a:b3:d7:31:53:c7:9c:00:ef:3a:07:82:
d3:b5:d5:99:be:ec:1c:da:3f:3a:a6:70:a1:62:40:9a:d9:e4:
8b:35:92:3a:d8:ce:41:23:ff:2c:01:77:49:4b:dc:a7:73:3f:
bb:e9:f7:0f:34:36:84:12:d8:3d:f8:ef:4d:59:3d:a6:d7:c4:
48:99:fe:48:8b:e2:33:e2:d0:81:f4:ac:85:b5:21:d6:15:cc:
55:f5:0a:b1:a9:99:8c:a5:0c:2d:da:7b:ad:22:f9:5a:2e:b9:
3b:c8:bd:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 05:43:14 2025 by rpki-client