Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/0HMIBZmPIW7csOOSdeXJ3_UwqW4.roa
File: 0HMIBZmPIW7csOOSdeXJ3_UwqW4.roa (raw, json)
Hash identifier: v0JnILQuJuD8nE6OloxoowoXf7Brnu58YDsUdGRxUmY=
Subject key identifier: D0:73:08:05:99:8F:21:6E:DC:B0:E3:92:75:E5:C9:DF:F5:30:A9:6E
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 01947845C8333EC2D4F2D1A456927EB9F44D
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/0HMIBZmPIW7csOOSdeXJ3_UwqW4.roa
Signing time: Sat 18 Jan 2025 07:17:06 +0000
ROA not before: Sat 18 Jan 2025 07:17:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 43260
IP address blocks: 5.83.129.0/24 maxlen: 24
5.175.138.0/24 maxlen: 24
77.90.54.0/24 maxlen: 24
87.239.130.0/24 maxlen: 24
87.239.131.0/24 maxlen: 24
89.106.69.0/24 maxlen: 24
94.103.164.0/24 maxlen: 24
94.249.148.0/24 maxlen: 24
94.249.153.0/24 maxlen: 24
94.249.158.0/24 maxlen: 24
94.249.195.0/24 maxlen: 24
94.249.212.0/24 maxlen: 24
94.249.214.0/24 maxlen: 24
94.249.215.0/24 maxlen: 24
94.249.237.0/24 maxlen: 24
95.215.32.0/24 maxlen: 24
95.215.34.0/24 maxlen: 24
178.18.144.0/24 maxlen: 24
185.13.156.0/24 maxlen: 24
185.13.159.0/24 maxlen: 24
185.47.143.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 19 Jan 2025 05:13:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:78:45:c8:33:3e:c2:d4:f2:d1:a4:56:92:7e:b9:f4:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Jan 18 07:17:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d0730805998f216edcb0e39275e5c9dff530a96e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:5b:ec:00:53:a2:05:d0:d9:7a:5f:2d:0e:e4:
58:ad:42:b6:8c:d2:36:9c:e5:7b:4d:c0:4e:c7:f2:
dc:fb:00:08:fa:1e:da:2a:4c:44:88:35:34:24:96:
df:e4:9a:fc:55:44:9e:f3:88:95:ba:bb:21:a9:4c:
d3:c7:bc:51:26:c4:c5:1a:6e:8b:9b:e9:c1:d8:c5:
a1:e6:af:70:59:75:86:69:a4:ac:13:71:ee:7b:1a:
dc:df:80:04:3e:f4:e6:17:5b:d2:07:51:80:83:c6:
a7:d3:08:b0:c5:7a:e9:f8:de:60:48:11:9e:5f:c3:
49:b3:c9:df:ad:77:6e:41:6e:03:43:b5:57:1e:1d:
e0:ef:97:e4:fc:de:6f:1b:5f:5d:d4:36:31:06:9d:
93:10:89:14:54:42:ff:67:32:45:ef:07:fc:a1:ee:
56:2c:10:5e:65:e7:3f:85:a3:03:a7:3f:8b:d0:15:
9a:af:b6:96:7b:c9:8b:7e:23:df:a2:c3:ab:93:f5:
9b:4d:6c:10:1c:25:ea:28:d4:7d:b6:e1:d2:85:0d:
7e:c6:ed:c3:c1:72:4c:60:38:9d:ed:70:c6:85:7a:
18:c5:a8:b5:7e:59:64:2d:c2:96:4e:d7:1c:e9:25:
7e:f2:13:94:47:7f:88:77:22:da:ac:8d:2c:d5:98:
d6:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:73:08:05:99:8F:21:6E:DC:B0:E3:92:75:E5:C9:DF:F5:30:A9:6E
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/0HMIBZmPIW7csOOSdeXJ3_UwqW4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.129.0/24
5.175.138.0/24
77.90.54.0/24
87.239.130.0/23
89.106.69.0/24
94.103.164.0/24
94.249.148.0/24
94.249.153.0/24
94.249.158.0/24
94.249.195.0/24
94.249.212.0/24
94.249.214.0/23
94.249.237.0/24
95.215.32.0/24
95.215.34.0/24
178.18.144.0/24
185.13.156.0/24
185.13.159.0/24
185.47.143.0/24
Signature Algorithm: sha256WithRSAEncryption
c9:53:e6:cf:81:59:c0:b3:e5:17:bf:5c:62:ff:19:b8:b4:2e:
e8:da:27:88:3e:94:4d:24:37:ee:16:e9:04:24:7f:97:c6:fa:
c5:43:6d:24:44:79:9f:e1:7f:f0:63:92:c4:a4:d3:cc:5a:1c:
66:ca:18:7b:e9:53:b2:1d:cc:29:9c:b5:8f:2b:46:b3:4a:cb:
57:e1:dd:97:2b:5a:34:4d:c6:a0:7c:08:5b:bc:53:93:3c:0e:
9d:1d:7a:a2:58:9e:80:c3:9e:fc:0c:61:1f:8b:71:9d:d6:c2:
d7:36:64:f4:fa:35:60:43:85:8e:1e:62:3a:78:f6:c8:36:dc:
17:a1:70:f4:84:58:f7:f2:7e:91:fc:2f:78:76:f6:57:f0:44:
eb:36:c8:ff:e2:ec:c1:4f:a6:e1:cd:87:01:65:27:ea:ab:00:
b6:13:98:f6:ea:c1:86:cf:ce:9c:1c:51:83:79:af:e6:37:35:
b5:ac:eb:4e:c3:cd:39:48:46:72:48:ea:6a:15:37:12:b2:7e:
81:62:8e:2d:35:55:c8:12:53:25:37:a3:f7:67:70:7c:05:ee:
e2:1d:ce:4a:c7:0f:e8:5a:ac:ce:a5:46:20:0d:17:7e:c1:7f:
33:ac:6f:ca:7e:bc:a0:fe:69:14:4b:bd:4d:20:39:59:a4:61:
46:e3:ca:cf
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sat Apr 12 02:26:42 2025 by rpki-client