Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/7ae3c7-67e4-44de-b139-87d17df74c7e/1/eQNhql3DbDMdM-HCfxS2gRtfu8U.roa
File: eQNhql3DbDMdM-HCfxS2gRtfu8U.roa (raw, json)
Hash identifier: OhRlD7Onh4IABdsCjB9ff2bOGREVwkG/yArZ6RgbiWs=
Subject key identifier: 79:03:61:AA:5D:C3:6C:33:1D:33:E1:C2:7F:14:B6:81:1B:5F:BB:C5
Certificate issuer: /CN=94d98e8fec680775a157266e0c6b78b141a34f5e
Certificate serial: 019764B2EF70E59613DFB71F9A5503B891F1
Authority key identifier: 94:D9:8E:8F:EC:68:07:75:A1:57:26:6E:0C:6B:78:B1:41:A3:4F:5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lNmOj-xoB3WhVyZuDGt4sUGjT14.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/7ae3c7-67e4-44de-b139-87d17df74c7e/1/eQNhql3DbDMdM-HCfxS2gRtfu8U.roa
Signing time: Thu 12 Jun 2025 15:12:17 +0000
ROA not before: Thu 12 Jun 2025 15:12:17 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 15626
IP address blocks: 5.34.182.0/23 maxlen: 23
5.34.182.0/24 maxlen: 24
5.34.183.0/24 maxlen: 24
82.118.17.0/24 maxlen: 24
82.118.18.0/24 maxlen: 24
193.238.152.0/23 maxlen: 23
193.238.153.0/24 maxlen: 24
217.12.192.0/21 maxlen: 21
217.12.199.0/24 maxlen: 24
217.12.204.0/23 maxlen: 23
217.12.205.0/24 maxlen: 24
217.12.210.0/23 maxlen: 23
217.12.210.0/24 maxlen: 24
217.12.212.0/22 maxlen: 22
217.12.215.0/24 maxlen: 24
217.12.216.0/23 maxlen: 23
217.12.220.0/22 maxlen: 22
217.12.221.0/24 maxlen: 24
217.12.222.0/24 maxlen: 24
217.12.223.0/24 maxlen: 24
2a02:27a8::/32 maxlen: 32
2a02:27a8:feed::/48 maxlen: 48
2a02:27ad::/32 maxlen: 32
2a05:9407::/32 maxlen: 32
Validation: Failed, certificate revoked on Fri 13 Jun 2025 20:08:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:64:b2:ef:70:e5:96:13:df:b7:1f:9a:55:03:b8:91:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94d98e8fec680775a157266e0c6b78b141a34f5e
Validity
Not Before: Jun 12 15:12:17 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=790361aa5dc36c331d33e1c27f14b6811b5fbbc5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:23:d0:0d:04:04:4b:a6:84:89:93:70:0e:fd:
d1:5b:7e:06:ce:5d:09:93:40:35:2a:31:a5:2c:77:
4b:89:f7:9f:6c:5c:df:10:ad:3a:d8:57:4d:39:a2:
a2:45:c6:15:71:6c:20:70:26:b5:bd:de:71:a3:0d:
9c:d9:96:79:1c:63:47:c8:e0:2b:5f:a5:24:d1:10:
1c:bd:c2:a0:01:41:28:88:3b:f5:a7:f9:37:32:56:
a2:3b:d7:53:71:8c:51:f1:ea:6a:e8:5e:fe:b6:9d:
d6:0e:7b:cc:6b:d7:7d:46:ec:d4:38:62:4b:cf:cf:
2f:79:25:0a:41:6a:20:34:ce:2c:cb:91:d1:4e:9f:
87:83:ce:68:20:4c:d5:d2:91:72:66:a0:a0:97:c9:
0f:ad:66:d6:35:54:0d:56:32:d0:9d:f5:f7:8c:e2:
f1:2c:ad:92:19:1b:ed:43:18:f2:20:b0:30:36:50:
8e:c8:54:5f:5e:a9:ba:8c:23:d2:37:90:6d:0e:4c:
90:de:61:66:6a:bf:ef:8b:8d:84:dd:c2:0c:65:aa:
6a:fe:0c:4b:76:a4:6a:03:a9:1a:d4:78:3c:f9:fe:
73:46:c5:0a:a0:61:9f:81:c2:bc:25:33:9f:b6:56:
2f:22:02:e6:90:0d:6b:df:35:a8:d7:a2:75:cd:a6:
fc:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:03:61:AA:5D:C3:6C:33:1D:33:E1:C2:7F:14:B6:81:1B:5F:BB:C5
X509v3 Authority Key Identifier:
keyid:94:D9:8E:8F:EC:68:07:75:A1:57:26:6E:0C:6B:78:B1:41:A3:4F:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lNmOj-xoB3WhVyZuDGt4sUGjT14.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/7ae3c7-67e4-44de-b139-87d17df74c7e/1/eQNhql3DbDMdM-HCfxS2gRtfu8U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/7ae3c7-67e4-44de-b139-87d17df74c7e/1/lNmOj-xoB3WhVyZuDGt4sUGjT14.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.34.182.0/23
82.118.17.0-82.118.18.255
193.238.152.0/23
217.12.192.0/21
217.12.204.0/23
217.12.210.0-217.12.217.255
217.12.220.0/22
IPv6:
2a02:27a8::/32
2a02:27ad::/32
2a05:9407::/32
Signature Algorithm: sha256WithRSAEncryption
3e:cd:ad:d7:6f:62:6e:ce:6e:24:69:a8:46:9f:1d:73:92:de:
66:7f:ab:18:e7:e1:c6:06:f0:d2:af:1d:d3:1d:39:1a:70:23:
4b:4c:e7:54:72:01:49:3f:f2:52:b0:b6:16:94:d5:f9:11:23:
cb:99:c7:3d:59:51:8f:f3:bd:77:71:67:35:f4:59:bf:cd:8e:
4a:a6:89:3d:b2:fa:9e:ac:66:2d:26:f1:04:f7:29:6e:fd:1a:
5f:e4:5a:76:a7:11:d0:26:28:ae:03:2c:0f:ac:cd:76:02:2d:
de:28:2f:ba:1f:f5:c9:25:d9:ca:52:db:f0:ef:c3:bd:b4:6b:
1e:b5:9e:e4:aa:97:38:40:4f:95:f1:65:c8:77:86:fe:10:f6:
04:f7:ea:c1:59:7f:43:f3:2b:ef:ba:64:8d:b3:c2:65:4d:4c:
cd:dc:1a:b8:f4:2f:60:be:e6:39:dc:30:d8:e4:be:38:06:65:
80:bf:e8:74:b0:79:ee:84:a0:7d:76:05:f8:a2:b7:5f:9d:52:
50:4f:d5:47:db:ed:63:1e:2e:60:3d:e0:fc:fd:12:a3:fb:1c:
f2:c1:55:b4:6a:16:63:e9:75:f7:c6:75:73:7f:27:c8:e1:ac:
5c:e3:52:14:08:6b:29:97:65:b2:39:05:c6:da:d4:01:18:08:
9c:1b:53:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 26 20:07:06 2025 by rpki-client