Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/vz0nccKQUKhgvI8Wqu264Pu8Ib0.roa
File: vz0nccKQUKhgvI8Wqu264Pu8Ib0.roa (raw, json)
Hash identifier: H/Jyxe7M85lHnQEhxK9s5rmfdesNF9vdMWlPkyLx6MY=
Subject key identifier: BF:3D:27:71:C2:90:50:A8:60:BC:8F:16:AA:ED:BA:E0:FB:BC:21:BD
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 01972689CE8D3796CC32F99E47C5E0CCB07D
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/vz0nccKQUKhgvI8Wqu264Pu8Ib0.roa
Signing time: Sat 31 May 2025 13:30:54 +0000
ROA not before: Sat 31 May 2025 13:30:54 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 58212
IP address blocks: 5.231.70.0/24 maxlen: 24
5.231.203.0/24 maxlen: 24
5.231.234.0/24 maxlen: 24
77.90.22.0/24 maxlen: 24
77.90.41.0/24 maxlen: 24
77.90.52.0/24 maxlen: 24
77.90.58.0/24 maxlen: 24
85.93.1.0/24 maxlen: 24
85.93.6.0/24 maxlen: 24
85.93.22.0/24 maxlen: 24
89.144.14.0/24 maxlen: 24
89.144.16.0/24 maxlen: 24
89.144.17.0/24 maxlen: 24
89.144.18.0/24 maxlen: 24
89.144.25.0/24 maxlen: 24
89.144.35.0/24 maxlen: 24
94.103.168.0/24 maxlen: 24
94.249.153.0/24 maxlen: 24
94.249.158.0/24 maxlen: 24
178.18.147.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 02 Jun 2025 04:18:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:26:89:ce:8d:37:96:cc:32:f9:9e:47:c5:e0:cc:b0:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: May 31 13:30:54 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=bf3d2771c29050a860bc8f16aaedbae0fbbc21bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:ea:cb:56:db:de:3a:f3:f7:f8:36:70:24:bd:
2b:1b:a2:f6:da:ce:6c:21:05:c2:bd:f3:bb:ae:5d:
b3:b6:04:a5:f4:81:68:cb:88:34:82:d2:85:c2:56:
70:5d:ad:62:b4:33:e6:f6:59:07:d6:b8:f3:b5:f7:
40:13:91:14:44:35:30:e1:07:9f:e2:9a:94:26:0a:
15:dd:a9:0f:db:32:dd:e5:a3:0e:ef:3c:eb:42:98:
d6:04:43:e2:54:24:f2:8a:a8:e2:02:db:ab:e4:17:
3b:4f:55:0e:94:4d:d9:a4:01:8f:a8:44:5c:ac:32:
6d:f5:84:c8:26:2d:72:06:ac:9c:23:95:67:a3:4a:
e9:15:d9:88:3b:40:c0:2b:72:79:89:21:c8:e3:17:
b3:93:f0:5a:c9:dc:40:c2:e0:b9:54:15:0f:77:fb:
e6:27:91:78:66:f8:9f:d2:a0:4f:1d:c0:3d:9b:26:
b4:62:7c:67:92:8e:f9:52:33:3f:b7:e1:07:ea:6c:
71:25:d0:d1:b5:2e:f4:e3:76:a4:22:24:7e:d6:cc:
f7:91:70:d5:82:86:a1:a9:66:69:50:d5:52:b5:09:
51:ad:49:ca:72:8e:27:7f:e9:78:11:81:0b:29:90:
7c:05:ff:2a:29:11:32:d7:ff:8d:d5:6c:d6:70:6b:
0b:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:3D:27:71:C2:90:50:A8:60:BC:8F:16:AA:ED:BA:E0:FB:BC:21:BD
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/vz0nccKQUKhgvI8Wqu264Pu8Ib0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.231.70.0/24
5.231.203.0/24
5.231.234.0/24
77.90.22.0/24
77.90.41.0/24
77.90.52.0/24
77.90.58.0/24
85.93.1.0/24
85.93.6.0/24
85.93.22.0/24
89.144.14.0/24
89.144.16.0-89.144.18.255
89.144.25.0/24
89.144.35.0/24
94.103.168.0/24
94.249.153.0/24
94.249.158.0/24
178.18.147.0/24
Signature Algorithm: sha256WithRSAEncryption
56:73:ef:ec:33:d5:7f:a2:7f:db:05:49:00:04:34:12:62:cb:
fc:e5:b7:03:4c:63:07:4f:91:90:26:82:d3:48:e7:83:f2:a0:
7b:d3:72:21:17:f8:a2:87:ed:c1:c8:ab:44:a9:3a:5e:22:99:
b5:fd:ea:31:48:98:f7:7c:9b:f2:d4:db:9a:66:b7:b2:bb:54:
63:6e:80:bd:8d:9b:78:60:34:07:9c:a1:f2:a8:06:52:34:16:
9c:4d:6f:63:d8:c7:b9:15:a4:32:c4:df:0d:8f:4a:1a:ce:c2:
2e:e8:71:08:58:d4:85:ff:70:12:bb:79:b6:74:52:dc:b6:2f:
6c:da:72:21:cb:bd:7f:45:05:92:d5:7c:54:c7:65:a4:db:e9:
4f:84:41:a8:6f:94:66:5a:6d:4a:f3:07:cc:2c:98:7b:b2:92:
f9:1b:0e:e0:fc:61:8b:e8:ac:e7:13:a8:a6:4b:df:5e:ba:47:
61:5a:3a:10:e3:24:ae:ec:20:1d:31:88:61:29:f4:c7:83:d3:
c2:7b:17:79:73:c7:c4:4c:cc:ed:5e:8d:05:39:5c:40:04:35:
22:7e:50:b1:dd:94:b6:0c:3d:f6:dc:4b:53:28:c8:a0:3f:9b:
9b:58:93:04:6e:ae:24:ff:2b:11:ee:f2:e2:f9:c2:bf:5c:cc:
b7:5f:e4:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 09:37:51 2025 by rpki-client