Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/DlzXpsea0sYqQKz0N6TDMFYq8LU.roa
File: DlzXpsea0sYqQKz0N6TDMFYq8LU.roa (raw, json)
Hash identifier: 5xmleNOWLVb/ZyEHuCgmSsP9n77dMmshYq5JWgBiPXw=
Subject key identifier: 0E:5C:D7:A6:C7:9A:D2:C6:2A:40:AC:F4:37:A4:C3:30:56:2A:F0:B5
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 0195F62A1DD225C1A78073002574942107C2
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/DlzXpsea0sYqQKz0N6TDMFYq8LU.roa
Signing time: Wed 02 Apr 2025 11:01:50 +0000
ROA not before: Wed 02 Apr 2025 11:01:50 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 58212
IP address blocks: 5.83.150.0/24 maxlen: 24
5.231.70.0/24 maxlen: 24
5.231.82.0/24 maxlen: 24
77.90.22.0/24 maxlen: 24
77.90.39.0/24 maxlen: 24
77.90.41.0/24 maxlen: 24
77.90.52.0/24 maxlen: 24
77.90.58.0/24 maxlen: 24
89.106.70.0/24 maxlen: 24
89.144.7.0/24 maxlen: 24
89.144.8.0/24 maxlen: 24
89.144.14.0/24 maxlen: 24
89.144.16.0/24 maxlen: 24
89.144.25.0/24 maxlen: 24
89.144.35.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 02 Apr 2025 15:16:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:f6:2a:1d:d2:25:c1:a7:80:73:00:25:74:94:21:07:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Apr 2 11:01:50 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0e5cd7a6c79ad2c62a40acf437a4c330562af0b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:a3:36:26:8d:bf:f0:af:88:0f:15:bf:55:be:
61:3a:aa:81:1b:1e:7b:7f:30:f4:b7:aa:b7:86:a9:
d6:af:64:bb:7a:5a:43:c2:c3:f9:92:ba:75:10:46:
83:2e:d9:f4:2d:51:0f:88:64:89:c4:90:1f:5d:6a:
e7:23:1a:b1:77:6b:95:a2:24:22:37:02:50:e6:b7:
c2:5e:63:90:fa:b3:3b:db:81:35:d8:0c:bb:73:f9:
fe:17:f9:9b:ee:f5:0f:9c:17:cc:6a:16:50:1c:2f:
61:32:63:dd:c3:7e:05:d7:36:19:2a:75:58:aa:cd:
47:b5:e2:23:f7:ac:24:0c:1d:bb:64:25:9d:82:04:
0a:2c:fa:ad:2d:4f:ae:3e:04:46:4b:1f:41:bd:df:
6e:45:09:88:97:45:c5:bc:28:7c:a5:3c:34:69:f2:
68:19:07:a8:27:aa:bb:81:26:36:42:03:bd:fa:bc:
23:87:ad:d4:a8:0a:2c:0f:34:46:21:38:e7:5d:7e:
e4:42:85:5e:95:1c:03:47:79:61:60:a9:17:61:f3:
eb:67:79:f4:c6:ae:ed:9f:51:2c:ef:6e:f7:66:9c:
4a:5e:7e:2a:ba:c4:14:fa:25:c7:7d:4a:1d:b9:1d:
21:da:0e:39:1d:c9:68:c6:72:f3:50:62:79:de:22:
36:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:5C:D7:A6:C7:9A:D2:C6:2A:40:AC:F4:37:A4:C3:30:56:2A:F0:B5
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/DlzXpsea0sYqQKz0N6TDMFYq8LU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.150.0/24
5.231.70.0/24
5.231.82.0/24
77.90.22.0/24
77.90.39.0/24
77.90.41.0/24
77.90.52.0/24
77.90.58.0/24
89.106.70.0/24
89.144.7.0-89.144.8.255
89.144.14.0/24
89.144.16.0/24
89.144.25.0/24
89.144.35.0/24
Signature Algorithm: sha256WithRSAEncryption
75:0a:85:a5:f3:02:ae:e6:75:35:8c:9c:8a:a3:eb:5e:55:9f:
e6:c9:0d:48:ee:06:26:3c:e4:d6:b9:64:d5:15:7f:ff:c0:31:
12:e5:59:06:96:6d:42:8f:a6:9b:94:fd:7d:83:bc:70:74:34:
7c:b9:f8:c9:48:fd:16:4c:47:3e:27:31:2c:5c:73:41:e9:cb:
1b:3c:e5:38:53:ee:59:70:21:c5:c7:0b:37:d7:ac:ef:de:8e:
ca:91:df:0e:ae:11:e1:3d:7a:f0:8c:7c:af:b4:b9:61:80:80:
d3:b3:d8:d1:5a:7c:4e:55:a9:2e:c9:a9:ad:e4:00:6b:6d:81:
c4:36:21:f1:ba:0e:19:07:81:61:65:87:1f:b7:66:b7:6d:79:
b6:0e:80:60:2e:e6:c4:7a:ac:05:88:f1:47:5a:17:23:60:10:
dc:b2:53:4c:27:84:0f:94:29:cc:72:b5:aa:c9:bb:a5:64:91:
71:d3:99:ee:b1:98:39:aa:56:d5:dc:d0:15:d7:d9:e2:12:07:
a0:7c:66:2c:43:ab:f2:7c:08:c8:7c:9c:bf:ad:af:69:d3:58:
b4:48:ce:47:15:d0:66:7e:4b:eb:ca:23:ed:fe:04:df:93:98:
62:b3:b8:ca:f9:09:0b:3b:1d:bf:13:38:33:66:dc:fa:93:c5:
71:04:14:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 02:26:54 2025 by rpki-client