Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/3WFOg1BJX6LYgKMZVFlKxGLN64M.roa
File: 3WFOg1BJX6LYgKMZVFlKxGLN64M.roa (raw, json)
Hash identifier: h0MHwNEL15kXyUhqfhjtqNJFhqoezjk3B6mCbCY3AsU=
Subject key identifier: DD:61:4E:83:50:49:5F:A2:D8:80:A3:19:54:59:4A:C4:62:CD:EB:83
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 01944797D00DDB48E952FFADB17B4778FDD3
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/3WFOg1BJX6LYgKMZVFlKxGLN64M.roa
Signing time: Wed 08 Jan 2025 20:25:19 +0000
ROA not before: Wed 08 Jan 2025 20:25:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 16276
IP address blocks: 5.83.153.0/24 maxlen: 24
77.90.49.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 30 Jan 2025 02:57:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:47:97:d0:0d:db:48:e9:52:ff:ad:b1:7b:47:78:fd:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Jan 8 20:25:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=dd614e8350495fa2d880a31954594ac462cdeb83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:e6:1b:3f:88:b0:69:cc:3f:d1:18:5c:7e:2b:
7d:17:b7:a5:d6:65:da:39:d5:4f:8c:42:66:8f:77:
53:6a:7d:f2:4f:9a:9d:c8:c2:6b:a6:4e:00:19:c3:
ac:d6:25:b7:6c:68:c1:e3:6d:b6:ca:22:f5:25:af:
91:a3:41:d0:72:ae:64:36:34:8d:30:06:89:5b:22:
29:a3:ea:6b:04:37:f2:61:94:a7:18:b5:31:d3:79:
e0:08:d7:00:c3:c8:c2:3d:24:23:53:7f:e1:5f:75:
58:94:a9:20:8f:47:b9:24:93:f3:c7:d0:87:9d:17:
b8:97:29:f0:4b:2d:cc:3a:d4:a3:1d:39:8e:8a:69:
d7:04:e7:a0:a3:f2:27:90:dd:08:7b:2a:06:18:bc:
3c:de:7d:32:aa:33:c7:35:21:69:22:70:df:d2:62:
73:32:b3:f7:b9:d8:83:ca:b0:b8:e3:58:4c:4f:d7:
f7:1f:3a:af:f5:31:67:ff:1a:24:60:c3:30:68:91:
f7:73:30:a7:71:ad:4e:b9:60:d5:e1:91:36:17:64:
9a:42:5f:ae:ec:fa:76:b9:5e:89:f1:dd:f2:a7:bd:
f9:b9:ea:0b:8c:91:09:f4:5b:58:06:52:eb:99:7f:
0c:00:d7:95:b4:d0:d4:b1:f1:24:9f:9d:ee:53:00:
cd:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:61:4E:83:50:49:5F:A2:D8:80:A3:19:54:59:4A:C4:62:CD:EB:83
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/3WFOg1BJX6LYgKMZVFlKxGLN64M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.153.0/24
77.90.49.0/24
Signature Algorithm: sha256WithRSAEncryption
82:70:f3:00:c9:cf:50:09:b1:ba:e5:fe:ec:c9:77:fc:ab:31:
fe:79:3f:6c:a7:75:df:57:e2:bc:8e:54:24:da:4b:81:e5:3a:
61:28:51:48:82:81:05:ba:27:ba:c1:12:af:7f:e0:19:2d:32:
b2:72:aa:5e:e9:c6:ae:5f:52:10:96:cc:bb:7a:d1:f5:1c:05:
57:85:cd:08:ee:6c:45:15:5a:b3:4f:22:2a:61:81:b2:84:ee:
f0:ba:54:23:9f:a3:3e:54:3d:09:cc:28:07:f4:f5:ab:80:50:
fc:e2:a7:93:1d:db:0c:91:0d:4c:42:8f:00:53:f4:53:f2:53:
9e:29:bd:f4:b6:5a:8f:35:43:06:c8:a9:e7:7e:86:ee:cc:05:
26:b2:7c:05:1d:88:1b:ce:a3:77:75:c0:e4:50:02:07:86:48:
db:a7:8b:70:bd:92:16:1e:4f:f0:e2:f7:bd:4b:b9:ea:f3:95:
c2:7d:73:65:85:33:d6:4e:96:e0:39:5e:a1:2b:b9:1c:f6:37:
7a:d9:43:14:b7:d5:7f:18:c2:d7:36:05:75:65:40:ac:6d:fa:
94:a5:d3:de:dc:9f:4d:cb:b1:44:71:e2:61:90:ab:17:50:0e:
50:04:20:18:b1:0d:7c:3e:1a:a5:41:e1:7d:92:2a:fd:76:f5:
fa:2e:ba:57
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAZRHl9AN20jpUv+tsXtHeP3TMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNlNjA5NzY5ODY4NmUxNTU1ZjUxZjZjODgzYmM1YTU4NTQ5
YjIzNjIwHhcNMjUwMTA4MjAyNTE5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkZDYxNGU4MzUwNDk1ZmEyZDg4MGEzMTk1NDU5NGFjNDYyY2RlYjgzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjeYbP4iwacw/0Rhcfit9F7el1mXa
OdVPjEJmj3dTan3yT5qdyMJrpk4AGcOs1iW3bGjB4222yiL1Ja+Ro0HQcq5kNjSN
MAaJWyIpo+prBDfyYZSnGLUx03ngCNcAw8jCPSQjU3/hX3VYlKkgj0e5JJPzx9CH
nRe4lynwSy3MOtSjHTmOimnXBOego/InkN0IeyoGGLw83n0yqjPHNSFpInDf0mJz
MrP3udiDyrC441hMT9f3Hzqv9TFn/xokYMMwaJH3czCnca1OuWDV4ZE2F2SaQl+u
7Pp2uV6J8d3yp735ueoLjJEJ9FtYBlLrmX8MANeVtNDUsfEkn53uUwDNvQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFN1hToNQSV+i2ICjGVRZSsRizeuDMB8GA1UdIwQY
MBaAFD5gl2mGhuFVX1H2yIO8WlhUmyNiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGIt
ZTFiZDg4ZDNmZDA3LzEvM1dGT2cxQkpYNkxZZ0tNWlZGbEt4R0xONjRNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGItZTFiZDg4ZDNmZDA3
LzEvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQABVOZAwQA
TVoxMA0GCSqGSIb3DQEBCwUAA4IBAQCCcPMAyc9QCbG65f7syXf8qzH+eT9sp3Xf
V+K8jlQk2kuB5TphKFFIgoEFuie6wRKvf+AZLTKycqpe6cauX1IQlsy7etH1HAVX
hc0I7mxFFVqzTyIqYYGyhO7wulQjn6M+VD0JzCgH9PWrgFD84qeTHdsMkQ1MQo8A
U/RT8lOeKb30tlqPNUMGyKnnfobuzAUmsnwFHYgbzqN3dcDkUAIHhkjbp4twvZIW
Hk/w4ve9S7nq85XCfXNlhTPWTpbgOV6hK7kc9jd62UMUt9V/GMLXNgV1ZUCsbfqU
pdPe3J9Ny7FEceJhkKsXUA5QBCAYsQ18PhqlQeF9kir9dvX6LrpX
-----END CERTIFICATE-----
Generated at Sat Apr 12 03:25:21 2025 by rpki-client