Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/5N0gWMb_qSU4xa0DtB4fuynITeI.roa
File: 5N0gWMb_qSU4xa0DtB4fuynITeI.roa (raw, json)
Hash identifier: r1YdBu8RH4T1LH5EZEJIS7HHu1M1t7JQGhmZagwIk/A=
Subject key identifier: E4:DD:20:58:C6:FF:A9:25:38:C5:AD:03:B4:1E:1F:BB:29:C8:4D:E2
Certificate issuer: /CN=bb830630f23b070a2b7bdf529f73948c97eacd40
Certificate serial: 01982F6ACFB74E941B9826120ADFA19AABDF
Authority key identifier: BB:83:06:30:F2:3B:07:0A:2B:7B:DF:52:9F:73:94:8C:97:EA:CD:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u4MGMPI7Bwore99Sn3OUjJfqzUA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/5N0gWMb_qSU4xa0DtB4fuynITeI.roa
Signing time: Mon 21 Jul 2025 23:56:25 +0000
ROA not before: Mon 21 Jul 2025 23:56:25 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 209847
IP address blocks: 94.131.13.0/24 maxlen: 24
94.131.14.0/24 maxlen: 24
94.131.104.0/24 maxlen: 24
103.113.69.0/24 maxlen: 24
103.231.72.0/24 maxlen: 24
103.231.73.0/24 maxlen: 24
146.19.170.0/24 maxlen: 24
176.120.67.0/24 maxlen: 24
185.242.84.0/24 maxlen: 24
213.159.69.0/24 maxlen: 24
2a09:7c43::/32 maxlen: 32
2a0b:cf43::/32 maxlen: 32
2a11:3803::/32 maxlen: 32
2a11:3c01::/32 maxlen: 32
2a11:4c00::/32 maxlen: 32
2a11:4c04::/32 maxlen: 32
2a11:7e06::/32 maxlen: 32
2a14:3081::/32 maxlen: 32
2a14:3086::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 23 Jul 2025 08:41:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:2f:6a:cf:b7:4e:94:1b:98:26:12:0a:df:a1:9a:ab:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb830630f23b070a2b7bdf529f73948c97eacd40
Validity
Not Before: Jul 21 23:56:25 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e4dd2058c6ffa92538c5ad03b41e1fbb29c84de2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:89:76:79:e7:c1:f2:42:60:be:0b:2a:ce:ea:
bd:e3:57:45:45:88:75:e8:01:bb:7f:88:44:28:c4:
52:d7:85:fa:e4:80:b2:89:37:53:36:5e:93:cd:fd:
21:7f:0b:0d:9e:3f:5b:42:a8:b9:4f:cf:2a:32:8a:
92:1a:41:c7:a0:46:9c:7e:1b:6c:4e:22:82:e8:0f:
0d:73:9b:54:ab:5f:eb:4d:39:65:41:33:fd:a3:a1:
0c:a3:3b:75:51:dd:8c:f9:37:14:78:cd:a9:a5:60:
fd:06:21:6a:f2:14:d6:38:18:a5:80:e7:8c:42:07:
31:7e:85:0b:1b:02:32:f2:6f:ca:db:3d:56:37:a7:
9a:3e:d7:bc:03:b7:de:39:c5:3a:e1:97:34:1d:7f:
ac:3e:96:06:10:4c:1a:e2:d9:6e:1e:f4:b6:85:dd:
ba:90:4a:47:a6:69:e1:07:67:54:a6:68:e2:5b:11:
e5:b1:6b:d6:d2:dd:db:e9:a1:41:cf:38:34:90:d5:
5f:4b:52:23:a8:a9:3e:c0:20:93:5a:57:55:69:fd:
fc:32:0d:d1:5f:cd:c2:cc:22:da:31:54:ae:0b:bc:
6f:01:fe:f4:e2:cd:56:4b:19:36:56:7e:8b:1e:e9:
d8:75:78:cd:6c:d1:07:f7:75:c9:4f:b4:99:5d:f8:
c5:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:DD:20:58:C6:FF:A9:25:38:C5:AD:03:B4:1E:1F:BB:29:C8:4D:E2
X509v3 Authority Key Identifier:
keyid:BB:83:06:30:F2:3B:07:0A:2B:7B:DF:52:9F:73:94:8C:97:EA:CD:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u4MGMPI7Bwore99Sn3OUjJfqzUA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/5N0gWMb_qSU4xa0DtB4fuynITeI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/u4MGMPI7Bwore99Sn3OUjJfqzUA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.131.13.0-94.131.14.255
94.131.104.0/24
103.113.69.0/24
103.231.72.0/23
146.19.170.0/24
176.120.67.0/24
185.242.84.0/24
213.159.69.0/24
IPv6:
2a09:7c43::/32
2a0b:cf43::/32
2a11:3803::/32
2a11:3c01::/32
2a11:4c00::/32
2a11:4c04::/32
2a11:7e06::/32
2a14:3081::/32
2a14:3086::/32
Signature Algorithm: sha256WithRSAEncryption
33:0d:a6:35:f9:a6:05:6b:ea:06:39:0a:d8:ab:fe:fe:f6:1f:
d4:49:03:dd:75:51:a5:a2:c1:92:e4:9f:b9:9e:80:4b:13:2f:
b5:6a:f6:d4:54:4b:e8:b6:a6:d2:f1:fe:78:9e:d7:42:25:8a:
44:2a:0d:23:47:a5:66:f7:e9:81:d9:4a:fd:0f:6f:7a:47:a4:
4b:cf:cf:a0:d1:cb:d2:b7:15:95:8c:41:d9:84:59:b1:af:dd:
ca:92:b4:72:a6:31:c6:8e:7c:b3:18:93:90:40:48:19:be:b0:
19:f5:3b:bc:e0:b4:ec:fe:45:ee:c5:4f:65:66:0b:f6:94:80:
62:db:a2:23:cb:43:df:99:87:8d:be:b6:1c:b8:5a:ac:df:d8:
1a:2f:b1:4a:21:bc:e0:88:7a:50:4d:0b:e5:32:f8:da:ec:bc:
97:6a:58:0b:42:ea:2f:83:ba:21:44:cc:4a:0e:40:db:dc:a4:
cb:ea:11:82:7d:5c:58:41:cc:1b:3f:e0:53:0e:5d:ea:d2:d3:
49:18:35:90:fe:7e:65:23:cc:86:59:98:50:dc:75:c4:7b:c0:
af:20:7d:4a:d2:ca:41:27:db:2f:45:8c:f0:11:26:b0:9c:b9:
4c:92:0e:70:bc:b6:8b:17:25:fa:03:18:f0:36:61:92:84:de:
0c:ab:f9:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 24 23:31:47 2025 by rpki-client