Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/x25h-lWC00NLUeyFiQ8UJR5fiRw.roa
File: x25h-lWC00NLUeyFiQ8UJR5fiRw.roa (raw, json)
Hash identifier: W1GRuuDkqDStN98COpf9DE4LyRSaLo0GH51m6xHR/r4=
Subject key identifier: C7:6E:61:FA:55:82:D3:43:4B:51:EC:85:89:0F:14:25:1E:5F:89:1C
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 0196B015086B9082F2214D8F975F840EC496
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/x25h-lWC00NLUeyFiQ8UJR5fiRw.roa
Signing time: Thu 08 May 2025 13:28:10 +0000
ROA not before: Thu 08 May 2025 13:28:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 58212
IP address blocks: 5.83.150.0/24 maxlen: 24
5.231.70.0/24 maxlen: 24
5.231.82.0/24 maxlen: 24
5.231.96.0/24 maxlen: 24
5.231.203.0/24 maxlen: 24
5.231.234.0/24 maxlen: 24
77.90.22.0/24 maxlen: 24
77.90.39.0/24 maxlen: 24
77.90.41.0/24 maxlen: 24
77.90.52.0/24 maxlen: 24
77.90.58.0/24 maxlen: 24
85.93.1.0/24 maxlen: 24
85.93.6.0/24 maxlen: 24
85.93.7.0/24 maxlen: 24
85.93.22.0/24 maxlen: 24
89.144.14.0/24 maxlen: 24
89.144.16.0/24 maxlen: 24
89.144.25.0/24 maxlen: 24
89.144.35.0/24 maxlen: 24
94.249.153.0/24 maxlen: 24
94.249.158.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 09 May 2025 21:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b0:15:08:6b:90:82:f2:21:4d:8f:97:5f:84:0e:c4:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: May 8 13:28:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c76e61fa5582d3434b51ec85890f14251e5f891c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:85:a6:ae:8a:eb:d5:5e:02:a4:67:2a:63:cb:
c6:5d:62:90:9b:6d:0c:f0:22:63:58:9f:94:b0:28:
c6:1e:f9:51:1a:67:71:7f:b7:1e:87:87:25:70:d9:
12:dc:74:33:dd:7c:01:0a:ac:3c:7f:4c:d2:59:6c:
43:9b:6d:a8:f8:b5:a0:f5:9a:23:c6:64:af:8a:af:
47:2c:ed:3b:53:a7:2b:bb:bc:a4:24:df:81:f3:8b:
3c:b0:43:b1:73:b2:a2:9f:8e:d8:dc:a5:f3:38:12:
cb:ce:c0:5a:0f:41:87:af:82:44:e3:50:41:eb:ad:
88:73:0a:c7:e6:33:08:04:6f:61:81:b5:b6:7a:64:
59:80:34:d7:93:b5:9a:45:28:da:0a:f8:9f:46:03:
5d:29:d3:37:de:3e:21:14:4c:88:09:a1:a7:ca:4b:
c5:92:e1:2c:c7:c5:27:45:8b:9d:b9:b6:31:d5:92:
f9:b7:a1:c3:3c:1b:2e:22:b4:1c:cf:1d:8b:84:e0:
43:fe:43:05:e4:73:ed:86:33:c9:f1:61:03:67:3d:
df:44:d1:c2:ff:15:f1:d9:86:73:db:f0:a3:5d:df:
27:4a:c3:f4:4a:d0:3b:75:b7:e8:d6:ae:92:e2:d3:
ca:5f:2c:d4:fc:ca:38:91:6e:7d:fa:4b:52:b8:4c:
30:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:6E:61:FA:55:82:D3:43:4B:51:EC:85:89:0F:14:25:1E:5F:89:1C
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/x25h-lWC00NLUeyFiQ8UJR5fiRw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.150.0/24
5.231.70.0/24
5.231.82.0/24
5.231.96.0/24
5.231.203.0/24
5.231.234.0/24
77.90.22.0/24
77.90.39.0/24
77.90.41.0/24
77.90.52.0/24
77.90.58.0/24
85.93.1.0/24
85.93.6.0/23
85.93.22.0/24
89.144.14.0/24
89.144.16.0/24
89.144.25.0/24
89.144.35.0/24
94.249.153.0/24
94.249.158.0/24
Signature Algorithm: sha256WithRSAEncryption
cc:ea:9a:31:be:26:9f:72:a0:03:58:3f:70:6c:4c:77:d1:10:
9c:de:df:65:27:da:e7:32:fa:86:7f:5e:d3:fc:a4:dc:b5:96:
5c:3f:d2:9e:de:4f:b4:df:5f:96:60:6a:27:29:de:83:42:fc:
aa:06:e9:ac:0b:c1:0b:24:25:5a:96:18:32:7c:7f:17:89:7d:
d1:70:1e:1a:f9:aa:75:40:0d:b8:9b:ac:8b:bc:2c:ad:af:75:
e9:ce:2b:1a:b0:16:22:6e:41:5e:38:20:be:08:28:a5:c7:55:
71:69:99:38:ab:45:e0:40:07:4f:61:f5:78:33:55:ca:ac:bf:
a4:8f:6e:e7:2c:bd:cb:86:14:04:1d:67:21:1d:65:96:74:50:
a4:be:08:4c:79:ee:37:ca:71:e6:68:c5:83:25:45:83:b3:8d:
c4:fb:d1:79:11:40:8f:96:7e:e9:66:42:69:d5:61:e2:c6:e4:
50:b8:30:da:13:b6:66:ef:09:1e:e9:02:fc:2a:d3:8f:ee:86:
56:0c:5f:31:1f:46:c8:c2:f9:d4:3b:ae:b1:55:0a:fa:79:4b:
5e:10:ed:25:30:ce:2a:f5:1f:3a:f4:f9:d3:ac:b2:e3:d1:ee:
7d:7f:8c:34:e2:44:07:49:8e:dc:ec:5b:fe:95:6c:26:31:d7:
a7:81:7d:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 08:42:27 2025 by rpki-client