Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/72QZ33STqiLBgZMTf7YgKXQxvR0.roa
File: 72QZ33STqiLBgZMTf7YgKXQxvR0.roa (raw, json)
Hash identifier: z0wwx4Z8n13DwiT6LNNP7/2Z4xMYGq7LJwLFoMSolSI=
Subject key identifier: EF:64:19:DF:74:93:AA:22:C1:81:93:13:7F:B6:20:29:74:31:BD:1D
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 0194221FFD0038340EF738FF8E93A489A56C
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/72QZ33STqiLBgZMTf7YgKXQxvR0.roa
Signing time: Wed 01 Jan 2025 13:48:29 +0000
ROA not before: Wed 01 Jan 2025 13:48:29 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 43260
IP address blocks: 5.83.129.0/24 maxlen: 24
5.175.138.0/24 maxlen: 24
77.90.54.0/24 maxlen: 24
87.239.130.0/24 maxlen: 24
87.239.131.0/24 maxlen: 24
89.106.69.0/24 maxlen: 24
94.103.163.0/24 maxlen: 24
94.249.148.0/24 maxlen: 24
94.249.153.0/24 maxlen: 24
94.249.158.0/24 maxlen: 24
94.249.212.0/24 maxlen: 24
94.249.215.0/24 maxlen: 24
94.249.237.0/24 maxlen: 24
95.215.32.0/24 maxlen: 24
95.215.34.0/24 maxlen: 24
185.13.159.0/24 maxlen: 24
185.47.143.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 06 Jan 2025 05:13:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:1f:fd:00:38:34:0e:f7:38:ff:8e:93:a4:89:a5:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Jan 1 13:48:29 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ef6419df7493aa22c18193137fb620297431bd1d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:6b:b8:0b:7a:e6:34:e5:14:ce:92:1b:a2:e2:
5a:66:86:ec:9d:57:ca:29:e9:49:36:be:5f:f2:62:
c8:89:81:2d:4f:a4:c4:45:5d:c4:e4:1f:56:41:43:
a9:e1:74:be:18:5f:10:dc:f3:42:6b:58:46:2c:88:
c8:7f:74:32:e8:b5:50:6c:ce:13:89:49:f7:0f:4b:
02:6e:ee:ab:7e:9c:12:dd:28:2b:cc:54:7f:62:c1:
ba:44:ff:98:b3:90:77:1c:1a:51:06:a4:44:2a:44:
80:7d:3d:10:1b:f5:93:25:8e:40:5c:e8:c0:6a:6b:
ea:0f:00:60:60:e4:e1:5f:80:f9:c1:e0:76:f0:c9:
3a:60:28:94:d0:f3:e4:be:3c:4e:0e:15:a3:74:26:
35:cd:fa:4b:ba:e7:ac:3f:1a:c8:c4:89:b3:a7:f2:
35:96:1d:1b:0e:49:ed:75:29:89:a9:a4:e2:59:53:
11:88:0d:8a:30:42:28:ef:5b:86:4c:72:c2:19:ff:
8f:c6:f7:60:f6:83:25:d1:0c:e4:01:67:ba:76:79:
af:6b:0b:a9:6a:76:6e:c0:52:55:20:13:f3:39:da:
07:8b:ae:d3:94:8f:fc:51:a2:43:92:63:c1:a0:bb:
f7:95:30:65:c6:bd:49:cc:f3:2a:78:0f:5a:0e:81:
04:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:64:19:DF:74:93:AA:22:C1:81:93:13:7F:B6:20:29:74:31:BD:1D
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/72QZ33STqiLBgZMTf7YgKXQxvR0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.129.0/24
5.175.138.0/24
77.90.54.0/24
87.239.130.0/23
89.106.69.0/24
94.103.163.0/24
94.249.148.0/24
94.249.153.0/24
94.249.158.0/24
94.249.212.0/24
94.249.215.0/24
94.249.237.0/24
95.215.32.0/24
95.215.34.0/24
185.13.159.0/24
185.47.143.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:85:35:0c:8d:8a:e5:9a:17:9a:b7:8c:5b:b8:bf:af:23:88:
4a:e3:d8:8b:7f:a9:c5:68:07:44:c0:21:b5:18:33:05:a0:2c:
2d:ff:fe:62:9c:27:03:82:2c:b5:9f:95:a1:23:c7:4b:f6:22:
95:1a:a4:f1:3e:34:fe:fc:53:25:e4:1f:cb:d9:23:3c:c1:83:
cb:c7:95:ab:0a:27:17:bb:d8:14:c7:ff:b8:97:de:d1:68:a0:
23:4d:af:41:10:fd:4f:79:d1:5c:31:e7:5d:08:f0:30:e2:6e:
43:7c:8c:93:79:91:2a:b9:f0:30:06:68:26:b5:35:e6:ba:b3:
ff:f5:eb:97:7d:ba:cc:fe:13:71:1e:8b:22:b2:6e:0d:a2:51:
38:ba:6a:ac:db:ce:14:43:81:8a:2e:32:18:ff:9f:54:5b:25:
1f:fa:37:6c:8a:dd:ae:e7:79:fb:fe:55:df:0b:25:f9:87:2a:
47:4d:57:d9:be:b5:24:90:e1:94:c4:80:1e:f7:85:f1:b3:79:
90:fb:3c:63:8b:d2:41:36:f6:97:f7:60:8e:fa:0c:65:e0:d0:
62:0d:c9:bb:c2:bb:41:ad:ec:9f:98:a8:15:04:de:5e:5f:5f:
5e:5e:90:1c:85:cb:78:e9:4b:98:c1:29:0c:61:51:b1:1b:ec:
aa:88:f5:45
-----BEGIN CERTIFICATE-----
MIIFVzCCBD+gAwIBAgISAZQiH/0AODQO9zj/jpOkiaVsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNlNjA5NzY5ODY4NmUxNTU1ZjUxZjZjODgzYmM1YTU4NTQ5
YjIzNjIwHhcNMjUwMTAxMTM0ODI5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlZjY0MTlkZjc0OTNhYTIyYzE4MTkzMTM3ZmI2MjAyOTc0MzFiZDFkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl2u4C3rmNOUUzpIbouJaZobsnVfK
KelJNr5f8mLIiYEtT6TERV3E5B9WQUOp4XS+GF8Q3PNCa1hGLIjIf3Qy6LVQbM4T
iUn3D0sCbu6rfpwS3SgrzFR/YsG6RP+Ys5B3HBpRBqREKkSAfT0QG/WTJY5AXOjA
amvqDwBgYOThX4D5weB28Mk6YCiU0PPkvjxODhWjdCY1zfpLuuesPxrIxImzp/I1
lh0bDkntdSmJqaTiWVMRiA2KMEIo71uGTHLCGf+Pxvdg9oMl0QzkAWe6dnmvawup
anZuwFJVIBPzOdoHi67TlI/8UaJDkmPBoLv3lTBlxr1JzPMqeA9aDoEEfwIDAQAB
o4ICYzCCAl8wHQYDVR0OBBYEFO9kGd90k6oiwYGTE3+2ICl0Mb0dMB8GA1UdIwQY
MBaAFD5gl2mGhuFVX1H2yIO8WlhUmyNiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGIt
ZTFiZDg4ZDNmZDA3LzEvNzJRWjMzU1RxaUxCZ1pNVGY3WWdLWFF4dlIwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGItZTFiZDg4ZDNmZDA3
LzEvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHkGCCsGAQUFBwEHAQH/BGowaDBmBAIAATBgAwQABVOBAwQA
Ba+KAwQATVo2AwQBV++CAwQAWWpFAwQAXmejAwQAXvmUAwQAXvmZAwQAXvmeAwQA
XvnUAwQAXvnXAwQAXvntAwQAX9cgAwQAX9ciAwQAuQ2fAwQAuS+PMA0GCSqGSIb3
DQEBCwUAA4IBAQB9hTUMjYrlmheat4xbuL+vI4hK49iLf6nFaAdEwCG1GDMFoCwt
//5inCcDgiy1n5WhI8dL9iKVGqTxPjT+/FMl5B/L2SM8wYPLx5WrCicXu9gUx/+4
l97RaKAjTa9BEP1PedFcMeddCPAw4m5DfIyTeZEqufAwBmgmtTXmurP/9euXfbrM
/hNxHosism4NolE4umqs284UQ4GKLjIY/59UWyUf+jdsit2u53n7/lXfCyX5hypH
TVfZvrUkkOGUxIAe94Xxs3mQ+zxji9JBNvaX92CO+gxl4NBiDcm7wrtBreyfmKgV
BN5eX19eXpAchct46UuYwSkMYVGxG+yqiPVF
-----END CERTIFICATE-----
Generated at Sat Apr 12 03:12:56 2025 by rpki-client