Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/tmTC31pO-KALK8jZ2XXNnjR3xX0.roa
File: tmTC31pO-KALK8jZ2XXNnjR3xX0.roa (raw, json)
Hash identifier: KjE4MBoBGDk+21CZO26FC+NkvMmWtj4XSLzFGTv9wuA=
Subject key identifier: B6:64:C2:DF:5A:4E:F8:A0:0B:2B:C8:D9:D9:75:CD:9E:34:77:C5:7D
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 0194EE3F1C790A4BF7E27A171994F67F85A0
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/tmTC31pO-KALK8jZ2XXNnjR3xX0.roa
Signing time: Mon 10 Feb 2025 05:05:00 +0000
ROA not before: Mon 10 Feb 2025 05:05:00 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 43260
IP address blocks: 5.83.129.0/24 maxlen: 24
5.175.138.0/24 maxlen: 24
77.90.54.0/24 maxlen: 24
87.239.131.0/24 maxlen: 24
89.106.69.0/24 maxlen: 24
94.103.163.0/24 maxlen: 24
94.249.153.0/24 maxlen: 24
94.249.158.0/24 maxlen: 24
94.249.214.0/24 maxlen: 24
94.249.215.0/24 maxlen: 24
94.249.237.0/24 maxlen: 24
95.215.32.0/24 maxlen: 24
95.215.34.0/24 maxlen: 24
185.13.159.0/24 maxlen: 24
185.47.143.0/24 maxlen: 24
217.69.166.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 13:57:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:ee:3f:1c:79:0a:4b:f7:e2:7a:17:19:94:f6:7f:85:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Feb 10 05:05:00 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b664c2df5a4ef8a00b2bc8d9d975cd9e3477c57d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:0c:40:1b:7f:f7:0e:41:3b:9e:e0:ef:09:70:
77:1a:1d:fc:ae:65:a2:51:46:de:23:c0:7d:27:e7:
12:c1:41:55:4c:19:9a:59:71:e7:9d:8a:9f:e6:49:
5a:52:e1:17:9e:9f:83:47:02:29:3f:53:a7:cf:59:
26:16:d2:df:e8:e6:49:48:0e:80:de:00:34:48:2d:
72:f4:dc:5c:0e:e5:b5:82:ce:ea:8d:e4:d5:ee:94:
98:5b:b1:8a:f6:33:f4:9a:51:a9:ce:06:8a:5f:53:
93:6d:97:06:bc:aa:88:09:f4:c0:35:98:41:30:f8:
43:53:25:3e:2c:3b:51:c5:fe:4b:84:e7:11:e0:65:
24:32:19:fb:1c:27:2e:c4:ab:3a:05:db:d0:5f:96:
a0:c2:8a:fc:7b:90:ea:cb:7c:32:2b:5b:28:14:66:
11:64:4c:a0:f7:ac:3c:a6:a5:b1:b2:60:43:5c:5a:
68:46:08:dd:4a:36:68:dc:bf:85:18:d2:bb:28:ba:
b0:8a:0a:46:9b:4c:a2:ac:8e:ff:e4:96:a0:0e:e5:
d0:87:50:53:29:60:7e:97:c1:22:b9:4c:ec:84:c5:
89:20:6c:84:42:b5:ca:05:07:f9:37:9c:cc:e5:ec:
13:fe:04:62:22:b0:31:50:da:06:88:8e:02:dd:00:
5d:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:64:C2:DF:5A:4E:F8:A0:0B:2B:C8:D9:D9:75:CD:9E:34:77:C5:7D
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/tmTC31pO-KALK8jZ2XXNnjR3xX0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.129.0/24
5.175.138.0/24
77.90.54.0/24
87.239.131.0/24
89.106.69.0/24
94.103.163.0/24
94.249.153.0/24
94.249.158.0/24
94.249.214.0/23
94.249.237.0/24
95.215.32.0/24
95.215.34.0/24
185.13.159.0/24
185.47.143.0/24
217.69.166.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:36:e6:44:50:3e:4a:3c:a1:ef:5e:61:0a:2f:bd:fc:e5:31:
46:a4:4c:d8:14:2b:be:d8:d6:a8:20:2e:45:5b:23:b3:84:41:
35:6e:42:21:79:5d:21:b9:30:b2:8d:6e:54:77:16:12:df:62:
df:b9:3b:a8:aa:ba:e7:67:32:4e:6a:eb:5f:fc:6f:5e:bb:1e:
e8:5d:e5:9c:67:a9:f7:ab:e1:1e:dd:3a:1a:8c:21:60:09:f6:
b1:cb:b0:e7:56:73:d1:a0:55:f8:2f:da:1b:d8:98:60:6d:35:
65:f9:6f:84:da:38:ff:7e:1c:a1:80:e1:05:08:48:27:b1:df:
01:de:cd:16:86:53:61:a4:49:bb:9e:79:e5:ea:40:7d:80:a1:
88:e8:7a:2c:ad:04:c4:df:ed:6c:9b:3f:ac:f0:1b:85:ae:85:
b9:62:64:8b:69:2a:86:98:92:55:f3:8c:82:f6:93:07:2c:de:
db:c8:af:8a:80:cd:3e:39:cf:a3:d2:3b:50:54:7b:1d:98:d3:
82:ac:01:47:09:10:8c:de:33:36:4a:b4:2e:d8:cf:01:27:75:
cf:0f:3f:7d:03:51:bc:d9:fc:8b:f6:a3:c2:26:f1:1e:8a:71:
64:89:4c:69:a0:81:b2:1e:ac:25:21:b6:98:6a:72:67:b4:83:
9c:84:2d:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 06:41:26 2025 by rpki-client