Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/uYB1ixs_f3x0EFTZ_-FcAZ-UAh8.roa
File: uYB1ixs_f3x0EFTZ_-FcAZ-UAh8.roa (raw, json)
Hash identifier: ifBfApT6EHViIGDkuCriI5TabZ4YRmDzaEzxzSQYJ1Y=
Subject key identifier: B9:80:75:8B:1B:3F:7F:7C:74:10:54:D9:FF:E1:5C:01:9F:94:02:1F
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 019767828C62983BBCCAEAB77441FB93EEC0
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/uYB1ixs_f3x0EFTZ_-FcAZ-UAh8.roa
Signing time: Fri 13 Jun 2025 04:18:18 +0000
ROA not before: Fri 13 Jun 2025 04:18:18 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 58212
IP address blocks: 5.231.70.0/24 maxlen: 24
5.231.203.0/24 maxlen: 24
5.231.234.0/24 maxlen: 24
77.90.22.0/24 maxlen: 24
77.90.41.0/24 maxlen: 24
77.90.52.0/24 maxlen: 24
85.93.1.0/24 maxlen: 24
85.93.6.0/24 maxlen: 24
85.93.22.0/24 maxlen: 24
89.144.14.0/24 maxlen: 24
89.144.17.0/24 maxlen: 24
89.144.18.0/24 maxlen: 24
89.144.35.0/24 maxlen: 24
94.103.168.0/24 maxlen: 24
178.18.147.0/24 maxlen: 24
185.13.159.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 13 Jun 2025 22:02:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:67:82:8c:62:98:3b:bc:ca:ea:b7:74:41:fb:93:ee:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Jun 13 04:18:18 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b980758b1b3f7f7c741054d9ffe15c019f94021f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:8a:56:76:f3:7a:1b:1e:ae:64:88:7a:d9:c6:
3f:11:3f:e5:01:e9:56:64:ea:22:77:12:6d:27:d2:
b6:57:d6:f9:54:87:bd:9a:58:97:0c:6d:95:40:ae:
62:5a:15:7a:9b:73:53:46:e9:fe:df:3d:65:43:66:
14:d5:f1:f3:3f:9e:9a:37:5b:c9:4b:f5:57:2c:5d:
1d:bb:48:95:fc:f1:05:e7:b7:55:dc:93:fe:33:9f:
b5:45:87:59:e6:74:ae:29:6e:fa:f9:ff:94:5b:4e:
12:c6:7e:06:16:71:81:e4:52:57:d8:73:fb:45:b4:
22:c0:bd:33:27:67:0b:a7:18:06:f2:cb:cc:b2:a7:
71:96:d8:bf:1a:f0:4a:c0:40:04:ec:cb:99:2e:7f:
f7:f3:c4:73:ab:7d:15:d7:4c:f7:a4:fa:5d:71:77:
f2:10:9f:b7:9d:03:52:fd:f3:4e:3f:9a:f1:de:8e:
85:6a:38:5b:ce:70:0e:c7:c3:72:ae:7b:e7:77:ff:
db:a6:7f:d3:ee:74:be:46:f8:93:2b:9c:79:73:4b:
81:6a:af:9f:14:3a:8b:23:72:79:3b:f3:52:a2:49:
24:bd:6b:8d:22:64:af:e5:cd:d0:93:a1:0b:56:f4:
00:74:44:b5:2f:c2:f5:96:25:56:77:5f:b8:1d:63:
78:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:80:75:8B:1B:3F:7F:7C:74:10:54:D9:FF:E1:5C:01:9F:94:02:1F
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/uYB1ixs_f3x0EFTZ_-FcAZ-UAh8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.231.70.0/24
5.231.203.0/24
5.231.234.0/24
77.90.22.0/24
77.90.41.0/24
77.90.52.0/24
85.93.1.0/24
85.93.6.0/24
85.93.22.0/24
89.144.14.0/24
89.144.17.0-89.144.18.255
89.144.35.0/24
94.103.168.0/24
178.18.147.0/24
185.13.159.0/24
Signature Algorithm: sha256WithRSAEncryption
90:fd:91:7c:5d:a0:40:14:f7:4b:65:29:20:c4:3a:1b:c2:e4:
49:02:1d:08:b2:f6:45:57:e5:c3:95:5c:3e:a8:47:b0:23:a5:
88:ac:17:a1:57:46:96:0d:18:80:68:ae:7a:06:f0:53:93:bb:
4f:13:4c:2f:44:d0:71:27:bd:d0:36:5f:7c:40:99:e3:c0:82:
86:be:73:f2:b9:62:aa:f4:c2:c4:ec:a4:be:ff:dd:2f:4e:81:
f2:30:30:c5:30:ed:bc:f8:2a:52:75:12:2d:97:47:c1:7e:9e:
e0:93:54:07:4d:8e:25:a6:dc:7d:76:69:36:32:ac:9b:d3:6d:
3a:3e:43:bb:96:c9:3a:bd:25:e9:1b:2f:c5:cf:e6:ef:6e:cc:
79:4e:15:35:55:29:50:9b:28:4d:dc:9c:30:f3:4c:29:2a:3b:
1a:4a:8e:7c:a9:5b:c8:e0:d5:a8:fd:69:85:36:31:d7:9d:3f:
0c:96:14:f8:6f:d8:0c:07:21:e9:b7:43:e5:3a:f2:87:a1:61:
6a:67:ee:67:50:b1:8d:ef:6c:95:36:a4:25:43:ab:17:8d:e0:
50:fa:65:47:09:d6:9f:cb:c1:ba:d9:f6:1a:d5:6a:ad:1a:e2:
93:10:f4:57:21:95:27:15:4c:3d:b8:64:3a:aa:8a:c9:25:a6:
15:35:4a:bb
-----BEGIN CERTIFICATE-----
MIIFWTCCBEGgAwIBAgISAZdngoximDu8yuq3dEH7k+7AMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNlNjA5NzY5ODY4NmUxNTU1ZjUxZjZjODgzYmM1YTU4NTQ5
YjIzNjIwHhcNMjUwNjEzMDQxODE4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiOTgwNzU4YjFiM2Y3ZjdjNzQxMDU0ZDlmZmUxNWMwMTlmOTQwMjFmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv4pWdvN6Gx6uZIh62cY/ET/lAelW
ZOoidxJtJ9K2V9b5VIe9mliXDG2VQK5iWhV6m3NTRun+3z1lQ2YU1fHzP56aN1vJ
S/VXLF0du0iV/PEF57dV3JP+M5+1RYdZ5nSuKW76+f+UW04Sxn4GFnGB5FJX2HP7
RbQiwL0zJ2cLpxgG8svMsqdxlti/GvBKwEAE7MuZLn/388Rzq30V10z3pPpdcXfy
EJ+3nQNS/fNOP5rx3o6FajhbznAOx8Nyrnvnd//bpn/T7nS+RviTK5x5c0uBaq+f
FDqLI3J5O/NSokkkvWuNImSv5c3Qk6ELVvQAdES1L8L1liVWd1+4HWN4vwIDAQAB
o4ICZTCCAmEwHQYDVR0OBBYEFLmAdYsbP398dBBU2f/hXAGflAIfMB8GA1UdIwQY
MBaAFD5gl2mGhuFVX1H2yIO8WlhUmyNiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGIt
ZTFiZDg4ZDNmZDA3LzEvdVlCMWl4c19mM3gwRUZUWl8tRmNBWi1VQWg4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGItZTFiZDg4ZDNmZDA3
LzEvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHsGCCsGAQUFBwEHAQH/BGwwajBoBAIAATBiAwQABedGAwQA
BefLAwQABefqAwQATVoWAwQATVopAwQATVo0AwQAVV0BAwQAVV0GAwQAVV0WAwQA
WZAOMAwDBABZkBEDBABZkBIDBABZkCMDBABeZ6gDBACyEpMDBAC5DZ8wDQYJKoZI
hvcNAQELBQADggEBAJD9kXxdoEAU90tlKSDEOhvC5EkCHQiy9kVX5cOVXD6oR7Aj
pYisF6FXRpYNGIBornoG8FOTu08TTC9E0HEnvdA2X3xAmePAgoa+c/K5Yqr0wsTs
pL7/3S9OgfIwMMUw7bz4KlJ1Ei2XR8F+nuCTVAdNjiWm3H12aTYyrJvTbTo+Q7uW
yTq9JekbL8XP5u9uzHlOFTVVKVCbKE3cnDDzTCkqOxpKjnypW8jg1aj9aYU2Mded
PwyWFPhv2AwHIem3Q+U68oehYWpn7mdQsY3vbJU2pCVDqxeN4FD6ZUcJ1p/LwbrZ
9hrVaq0a4pMQ9FchlScVTD24ZDqqisklphU1Srs=
-----END CERTIFICATE-----
Generated at Sun Jun 15 09:38:09 2025 by rpki-client