Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/wx_-3idozjWqTTdpd6GcV4c9F8Y.roa
File: wx_-3idozjWqTTdpd6GcV4c9F8Y.roa (raw, json)
Hash identifier: PEK3mXv550eqLV0AU9BMo+bUgPbs0qNlZF0aJ/WuKgI=
Subject key identifier: C3:1F:FE:DE:27:68:CE:35:AA:4D:37:69:77:A1:9C:57:87:3D:17:C6
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 01963CD0ACC514F1F1404ED0EFD8731FB73A
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/wx_-3idozjWqTTdpd6GcV4c9F8Y.roa
Signing time: Wed 16 Apr 2025 04:17:10 +0000
ROA not before: Wed 16 Apr 2025 04:17:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 58212
IP address blocks: 5.83.150.0/24 maxlen: 24
5.231.70.0/24 maxlen: 24
5.231.82.0/24 maxlen: 24
5.231.96.0/24 maxlen: 24
5.231.225.0/24 maxlen: 24
77.90.22.0/24 maxlen: 24
77.90.39.0/24 maxlen: 24
77.90.41.0/24 maxlen: 24
77.90.52.0/24 maxlen: 24
77.90.58.0/24 maxlen: 24
85.93.22.0/24 maxlen: 24
89.106.70.0/24 maxlen: 24
89.144.7.0/24 maxlen: 24
89.144.14.0/24 maxlen: 24
89.144.16.0/24 maxlen: 24
89.144.25.0/24 maxlen: 24
89.144.35.0/24 maxlen: 24
94.249.153.0/24 maxlen: 24
94.249.158.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 16 Apr 2025 21:02:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:3c:d0:ac:c5:14:f1:f1:40:4e:d0:ef:d8:73:1f:b7:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Apr 16 04:17:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c31ffede2768ce35aa4d376977a19c57873d17c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:64:3b:35:14:93:cd:1e:f7:51:22:09:98:8a:
4e:44:ba:8f:e9:d5:82:27:34:97:dd:cf:f1:88:78:
ae:a0:33:f8:e4:a7:19:4b:71:e8:df:2f:55:08:ff:
2a:f5:0b:08:93:bc:7e:02:1b:97:bd:9a:e3:4b:1e:
08:0d:07:2d:5c:5d:57:8d:f2:d5:9e:12:a9:8e:28:
c8:f8:05:e3:c3:b2:58:f0:37:79:0b:b9:b8:8a:c8:
ce:72:bd:9d:5a:4b:a9:5d:c1:00:3f:7d:cf:6d:6e:
f4:0c:28:0f:d4:12:7e:71:ec:d6:03:9b:ea:4a:b9:
81:33:69:01:0d:8d:f1:31:57:34:2a:48:44:f6:46:
fe:44:92:18:3e:bb:fb:0a:72:0a:95:6e:f2:d4:a9:
42:00:f5:c8:c0:04:28:3f:cb:fd:60:06:03:aa:7f:
0a:23:68:59:95:dd:8b:88:03:77:1f:a6:9f:ff:4d:
b7:19:8a:d4:97:65:78:0a:a6:c2:75:ec:68:86:43:
e6:b1:e3:14:ad:50:82:76:4c:67:1f:e2:7a:77:72:
bb:9f:db:2d:ee:ae:2b:5e:ae:46:0d:c7:db:c3:89:
48:61:52:4e:cc:0e:5f:20:dc:a9:ce:70:8a:a5:cc:
66:d0:5a:57:aa:9c:90:a6:1c:db:c1:ab:4e:ce:11:
56:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:1F:FE:DE:27:68:CE:35:AA:4D:37:69:77:A1:9C:57:87:3D:17:C6
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/wx_-3idozjWqTTdpd6GcV4c9F8Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.150.0/24
5.231.70.0/24
5.231.82.0/24
5.231.96.0/24
5.231.225.0/24
77.90.22.0/24
77.90.39.0/24
77.90.41.0/24
77.90.52.0/24
77.90.58.0/24
85.93.22.0/24
89.106.70.0/24
89.144.7.0/24
89.144.14.0/24
89.144.16.0/24
89.144.25.0/24
89.144.35.0/24
94.249.153.0/24
94.249.158.0/24
Signature Algorithm: sha256WithRSAEncryption
23:ba:0a:7a:70:da:55:bf:0a:6a:30:d7:1d:6c:5a:ae:8e:83:
75:16:e8:9e:8d:8e:ab:90:49:43:ae:d7:98:63:d0:e5:88:b6:
0c:65:ec:ef:89:6c:90:5f:c7:35:80:15:c8:4a:02:6c:c6:18:
88:28:a3:3a:4f:20:0b:8d:90:4c:cc:b0:4f:cf:a5:47:7a:54:
e8:38:ad:18:a0:94:46:7e:5a:8a:14:9c:ee:30:3a:05:e5:ec:
c4:08:49:c6:ea:eb:8c:2a:02:54:8e:83:fb:71:cd:91:6e:95:
2c:de:98:dd:16:c6:25:42:34:34:1e:70:37:e8:8a:dd:9c:41:
1d:d4:f2:9e:98:95:d3:e3:6f:2f:d4:c2:35:78:a2:e9:b4:b9:
37:f3:5e:20:4a:1b:d5:21:d1:e7:46:67:67:9f:a0:3a:89:9a:
44:3d:ce:15:00:85:3d:a9:02:8b:98:e3:51:5f:71:04:47:26:
54:07:dc:ad:94:07:20:6c:62:64:34:28:ea:b6:04:cd:b4:ba:
13:a5:b1:d7:18:cc:61:7a:a4:8d:40:43:35:32:77:04:32:73:
a4:9a:42:56:b2:90:c2:4d:b0:e7:59:0e:ba:80:01:ce:55:76:
22:21:64:85:e5:89:d0:35:5c:b1:ca:85:99:f7:aa:96:08:f0:
3c:a3:f5:08
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Mon Jun 16 04:15:25 2025 by rpki-client