Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/8wGSI57Ixnw_lyjRD6_0rKut86E.roa
File: 8wGSI57Ixnw_lyjRD6_0rKut86E.roa (raw, json)
Hash identifier: nr/9J5L+wiqgB03yhilWOAekvv2hkkGSgIjVYQcNYiY=
Subject key identifier: F3:01:92:23:9E:C8:C6:7C:3F:97:28:D1:0F:AF:F4:AC:AB:AD:F3:A1
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 0194DBFF4412B1A8AFBB4CF69C9643DCDDA1
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/8wGSI57Ixnw_lyjRD6_0rKut86E.roa
Signing time: Thu 06 Feb 2025 16:02:06 +0000
ROA not before: Thu 06 Feb 2025 16:02:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 58212
IP address blocks: 5.83.150.0/24 maxlen: 24
5.175.140.0/24 maxlen: 24
5.231.79.0/24 maxlen: 24
5.231.82.0/24 maxlen: 24
77.90.7.0/24 maxlen: 24
77.90.39.0/24 maxlen: 24
77.90.41.0/24 maxlen: 24
77.90.52.0/24 maxlen: 24
77.90.58.0/24 maxlen: 24
89.106.70.0/24 maxlen: 24
94.249.212.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 06 Feb 2025 18:15:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:db:ff:44:12:b1:a8:af:bb:4c:f6:9c:96:43:dc:dd:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Feb 6 16:02:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f30192239ec8c67c3f9728d10faff4acabadf3a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:ca:1b:c6:91:ba:ff:e0:50:ac:e7:4c:c9:d0:
5b:22:af:99:67:df:68:2a:79:51:64:58:1c:6d:e3:
9b:6c:2e:05:58:a0:ba:52:20:21:16:60:81:dd:2a:
da:9e:0d:b7:3a:af:df:c5:8a:e2:df:81:04:c6:f7:
3a:19:a8:c5:55:1d:4b:5f:c6:c2:73:48:e4:64:52:
5f:d2:63:7a:54:30:d8:29:a4:b1:c8:7e:4a:32:1f:
7f:f6:96:10:80:f8:30:ae:93:93:ef:4e:db:04:84:
c8:39:c0:92:ce:d0:71:2c:7d:a5:f7:c8:64:c2:59:
36:a1:cf:09:52:31:45:ad:2c:b5:1b:eb:fa:91:7a:
8c:2a:23:14:23:e1:06:68:8e:87:b6:8e:a6:71:66:
c6:d1:eb:85:b6:b2:fa:5f:25:43:7e:df:b3:8b:2d:
48:f0:2e:57:30:79:86:1a:92:90:2e:a1:45:5d:40:
a0:bb:5a:64:8d:b3:69:26:82:a0:ca:c7:12:99:87:
0c:bc:b7:6e:f8:04:5b:eb:60:a5:07:21:ef:c6:16:
a8:fc:fd:d4:b1:87:7d:0d:d6:fc:8f:ca:c2:ac:e5:
a9:94:b9:5e:da:e1:6c:ba:39:ee:75:46:d1:85:4f:
75:fd:84:f7:40:5b:9b:92:25:36:f8:31:5d:4a:3b:
46:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:01:92:23:9E:C8:C6:7C:3F:97:28:D1:0F:AF:F4:AC:AB:AD:F3:A1
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/8wGSI57Ixnw_lyjRD6_0rKut86E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.150.0/24
5.175.140.0/24
5.231.79.0/24
5.231.82.0/24
77.90.7.0/24
77.90.39.0/24
77.90.41.0/24
77.90.52.0/24
77.90.58.0/24
89.106.70.0/24
94.249.212.0/24
Signature Algorithm: sha256WithRSAEncryption
d1:16:fc:ab:7b:25:58:f4:42:f4:54:39:5b:63:78:1b:6d:3e:
96:6f:c3:26:8e:4c:30:79:73:9e:50:12:0e:69:4a:a4:0a:cd:
fc:36:05:ce:45:a3:2a:b4:0d:75:32:35:83:19:95:62:8a:e4:
06:98:92:7c:8b:90:4c:03:63:30:73:50:51:16:db:0a:35:35:
bb:e3:d6:67:a3:69:49:7e:c3:60:57:db:60:6c:99:96:fc:54:
27:1f:c4:17:82:d7:7a:02:61:9c:29:38:53:32:af:7d:c3:6d:
97:fd:98:e2:ff:aa:b1:56:e1:6d:e1:66:f9:0a:ca:c9:cf:b3:
ed:76:d2:2c:4b:ff:d4:68:8f:5c:ef:09:51:73:66:8f:f8:f4:
9b:ba:36:cf:0b:31:1b:a4:0e:07:32:97:bc:92:6a:7a:3a:62:
22:7d:6f:bf:3d:a1:eb:b3:52:4a:35:eb:4f:aa:6b:df:2e:8c:
49:91:8b:d5:70:73:76:fd:03:cc:cc:07:af:87:de:13:e3:dd:
c5:3c:a2:1b:2d:ca:bb:1e:45:5a:86:c5:86:2d:e1:96:0c:53:
ea:88:40:89:81:56:bf:a3:25:ae:9c:af:55:e1:6d:ee:05:ee:
d6:05:b8:e7:1f:ba:b7:8f:a7:08:76:8b:83:9d:45:01:1e:2a:
98:d7:6b:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 03:25:11 2025 by rpki-client