Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/bea14a-0d32-4aa7-b898-d60b3b6cca6e/1/eAyQbuvTh7eRH4Mw6sLcDXPof8g.roa
File: eAyQbuvTh7eRH4Mw6sLcDXPof8g.roa (raw, json)
Hash identifier: vHT2ofNeSb3ma1uJDF7AEVw2KdEanTnfXB4/4ijFpYw=
Subject key identifier: 78:0C:90:6E:EB:D3:87:B7:91:1F:83:30:EA:C2:DC:0D:73:E8:7F:C8
Certificate issuer: /CN=5a939b0ced38d75cc63ed50d6e5ce72bbb5b4b10
Certificate serial: 01961A097F8C8DB92C7670B4769BC08AF2A3
Authority key identifier: 5A:93:9B:0C:ED:38:D7:5C:C6:3E:D5:0D:6E:5C:E7:2B:BB:5B:4B:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WpObDO0411zGPtUNblznK7tbSxA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/bea14a-0d32-4aa7-b898-d60b3b6cca6e/1/eAyQbuvTh7eRH4Mw6sLcDXPof8g.roa
Signing time: Wed 09 Apr 2025 10:12:32 +0000
ROA not before: Wed 09 Apr 2025 10:12:32 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 15704
IP address blocks: 31.221.128.0/17 maxlen: 20
37.29.128.0/17 maxlen: 20
46.6.0.0/16 maxlen: 24
46.222.0.0/16 maxlen: 20
80.81.96.0/19 maxlen: 19
82.144.0.0/19 maxlen: 19
83.175.192.0/18 maxlen: 18
95.169.224.0/19 maxlen: 24
109.227.128.0/19 maxlen: 19
109.227.128.0/20 maxlen: 20
109.227.144.0/20 maxlen: 20
109.227.178.0/24 maxlen: 24
178.237.224.0/21 maxlen: 21
178.237.232.0/21 maxlen: 21
185.241.128.0/22 maxlen: 22
188.127.160.0/19 maxlen: 19
213.171.224.0/19 maxlen: 19
213.172.32.0/19 maxlen: 19
217.168.3.0/24 maxlen: 24
217.168.6.0/24 maxlen: 24
217.168.13.0/24 maxlen: 24
217.172.64.0/20 maxlen: 20
Validation: Failed, certificate revoked on Wed 09 Apr 2025 15:14:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:1a:09:7f:8c:8d:b9:2c:76:70:b4:76:9b:c0:8a:f2:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5a939b0ced38d75cc63ed50d6e5ce72bbb5b4b10
Validity
Not Before: Apr 9 10:12:32 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=780c906eebd387b7911f8330eac2dc0d73e87fc8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:d1:63:f3:ef:3b:65:6e:66:6a:1f:a9:8d:4b:
bd:6e:53:29:e8:c3:cd:0b:fb:01:87:90:16:66:a6:
b4:61:31:98:df:9a:67:84:0d:d9:4c:5f:fb:10:3a:
99:53:aa:a3:29:c7:4e:c0:ce:4f:f2:da:25:57:c8:
87:e2:13:f9:a0:32:ac:d3:35:f9:61:33:82:6d:21:
bb:69:af:84:43:dd:7c:0d:23:51:53:6c:ce:ed:bb:
55:1d:68:f1:aa:7e:41:23:e0:b7:bb:e6:a7:b3:6e:
96:ca:8e:b0:52:af:e2:32:df:5b:fa:9c:45:9e:47:
4b:09:0e:3f:fc:ae:06:5a:69:e9:b8:49:aa:71:36:
bb:67:e2:9f:f5:c4:7b:71:c1:23:74:9b:21:e8:62:
5c:cc:2b:f9:9f:3d:0d:53:70:70:07:2f:1c:de:cf:
84:e3:9c:ea:09:12:22:f4:f8:e8:57:db:99:0b:b0:
7b:8b:ae:4e:12:80:8f:ae:f1:32:82:39:6b:b5:c9:
17:6d:19:c2:86:a1:85:ee:b4:89:c3:07:36:2d:aa:
e8:d9:ae:1a:8d:25:b4:76:34:75:f6:98:85:cf:28:
8a:ec:29:4c:73:91:31:67:00:43:a2:89:99:f3:8b:
f2:f0:f2:f5:76:8c:35:9c:35:6e:c7:2b:ce:69:f0:
ba:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:0C:90:6E:EB:D3:87:B7:91:1F:83:30:EA:C2:DC:0D:73:E8:7F:C8
X509v3 Authority Key Identifier:
keyid:5A:93:9B:0C:ED:38:D7:5C:C6:3E:D5:0D:6E:5C:E7:2B:BB:5B:4B:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WpObDO0411zGPtUNblznK7tbSxA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/bea14a-0d32-4aa7-b898-d60b3b6cca6e/1/eAyQbuvTh7eRH4Mw6sLcDXPof8g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/bea14a-0d32-4aa7-b898-d60b3b6cca6e/1/WpObDO0411zGPtUNblznK7tbSxA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.221.128.0/17
37.29.128.0/17
46.6.0.0/16
46.222.0.0/16
80.81.96.0/19
82.144.0.0/19
83.175.192.0/18
95.169.224.0/19
109.227.128.0/19
109.227.178.0/24
178.237.224.0/20
185.241.128.0/22
188.127.160.0/19
213.171.224.0/19
213.172.32.0/19
217.168.3.0/24
217.168.6.0/24
217.168.13.0/24
217.172.64.0/20
Signature Algorithm: sha256WithRSAEncryption
a8:fa:d0:9e:21:35:3b:bc:a7:86:5b:fd:59:f0:ca:c1:72:13:
d3:03:7b:43:af:aa:56:0e:b8:a9:2c:fe:11:29:11:19:13:23:
8c:cf:89:9b:0e:83:59:2d:28:5e:3b:8c:0a:7b:ef:e7:99:53:
c8:df:8c:0f:b6:8c:bc:bd:4b:6b:a6:b2:8d:03:9b:26:89:58:
12:22:f3:7a:38:8a:db:ef:01:72:2a:3c:34:22:7f:4e:7d:ec:
a8:ff:c4:30:a5:1a:72:77:ca:c4:12:aa:c0:50:86:46:5c:1f:
45:02:84:46:e0:f0:61:8e:1e:22:84:6a:c1:6d:79:76:46:0a:
a0:73:dd:78:df:0a:8f:6b:a4:63:9d:74:f3:7d:2a:a4:9d:ec:
20:99:56:ad:8d:df:81:d3:28:f8:14:65:48:28:4c:41:39:59:
20:40:f1:51:17:82:b1:a5:2a:89:5b:48:05:db:b8:53:20:ba:
9a:1d:8e:2e:92:c3:c0:e7:01:9a:c4:37:ea:75:1e:85:a8:f4:
72:8d:29:56:9e:c4:4a:20:c7:e3:a4:31:c9:12:99:a9:bb:a6:
fa:b4:5a:f4:f7:66:a7:8d:f4:9e:73:d5:95:25:5d:0d:63:b9:
00:92:e4:6a:29:6a:1f:ea:8d:ed:b1:e4:24:68:ab:51:b9:86:
7a:20:4c:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 22:14:40 2025 by rpki-client