Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/E5paojTCd4h20TCQN9ty5x-I2Jc.roa
File: E5paojTCd4h20TCQN9ty5x-I2Jc.roa (raw, json)
Hash identifier: WB3LiNvCa0VPLrwlNDgmg+cExxXTM710kLpm8KUw5Fc=
Subject key identifier: 13:9A:5A:A2:34:C2:77:88:76:D1:30:90:37:DB:72:E7:1F:88:D8:97
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 01936AEBF9D7526A1E5CB62CD90FC92E9C52
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/E5paojTCd4h20TCQN9ty5x-I2Jc.roa
Signing time: Wed 27 Nov 2024 00:01:09 +0000
ROA not before: Wed 27 Nov 2024 00:01:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 12586
IP address blocks: 5.83.128.0/19 maxlen: 32
5.83.128.0/20 maxlen: 32
5.83.138.0/24 maxlen: 24
5.83.151.0/24 maxlen: 32
5.83.153.0/24 maxlen: 24
5.83.154.0/24 maxlen: 24
5.83.156.0/24 maxlen: 24
5.83.157.0/24 maxlen: 24
5.175.128.0/24 maxlen: 32
5.175.129.0/24 maxlen: 32
5.175.130.0/24 maxlen: 32
5.175.131.0/24 maxlen: 32
5.175.133.0/24 maxlen: 32
5.175.218.0/24 maxlen: 32
5.175.219.0/24 maxlen: 32
5.175.220.0/24 maxlen: 32
5.175.225.0/24 maxlen: 32
5.175.226.0/24 maxlen: 32
5.175.227.0/24 maxlen: 32
5.175.228.0/24 maxlen: 32
5.175.229.0/24 maxlen: 32
5.175.230.0/24 maxlen: 32
5.175.231.0/24 maxlen: 32
5.175.232.0/24 maxlen: 32
5.175.235.0/24 maxlen: 32
5.175.240.0/24 maxlen: 32
5.175.241.0/24 maxlen: 32
5.175.242.0/24 maxlen: 32
5.175.243.0/24 maxlen: 32
5.175.244.0/24 maxlen: 32
5.175.251.0/24 maxlen: 32
5.175.252.0/24 maxlen: 32
5.175.253.0/24 maxlen: 32
5.175.254.0/24 maxlen: 32
5.175.255.0/24 maxlen: 32
5.230.0.0/15 maxlen: 32
5.230.6.0/24 maxlen: 32
5.230.11.0/24 maxlen: 32
5.230.102.0/24 maxlen: 32
5.230.224.0/24 maxlen: 32
5.231.24.0/24 maxlen: 24
5.231.233.0/24 maxlen: 32
77.90.0.0/18 maxlen: 32
77.90.29.0/24 maxlen: 24
83.243.80.0/21 maxlen: 32
85.93.0.0/19 maxlen: 32
85.93.20.0/24 maxlen: 32
85.118.160.0/21 maxlen: 32
87.239.128.0/21 maxlen: 32
89.106.64.0/19 maxlen: 32
89.144.0.0/18 maxlen: 32
94.103.160.0/20 maxlen: 32
94.249.128.0/17 maxlen: 32
95.215.32.0/22 maxlen: 32
178.18.144.0/20 maxlen: 32
178.18.151.0/24 maxlen: 32
185.13.156.0/22 maxlen: 32
185.47.140.0/24 maxlen: 32
185.47.141.0/24 maxlen: 32
185.121.71.0/24 maxlen: 32
193.28.251.0/24 maxlen: 32
195.110.14.0/23 maxlen: 32
217.69.160.0/20 maxlen: 32
2a00:12d8::/29 maxlen: 128
2a00:19d0::/29 maxlen: 128
2a00:cdc0::/32 maxlen: 128
2a01:bd40::/29 maxlen: 128
2a02:7a0::/29 maxlen: 128
2a02:2fc0::/29 maxlen: 128
Validation: Failed, certificate revoked on Wed 27 Nov 2024 05:12:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:6a:eb:f9:d7:52:6a:1e:5c:b6:2c:d9:0f:c9:2e:9c:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Nov 27 00:01:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=139a5aa234c2778876d1309037db72e71f88d897
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:f4:c9:85:bf:50:03:16:d7:f8:f1:db:92:ca:
19:71:55:a8:9b:f1:46:17:b0:8e:21:4d:5d:a5:d9:
ad:19:d7:94:02:64:17:b0:26:78:cb:0a:9c:10:6b:
60:6b:2f:c8:c6:55:b6:80:e7:e0:19:8f:24:99:06:
c2:a7:c7:76:d9:8b:43:1b:f9:ce:2e:5a:97:ce:4e:
d2:78:16:54:8b:33:ba:a9:66:4c:92:81:98:b6:12:
8a:cd:19:d8:8d:b9:4e:93:5b:07:01:67:23:07:cd:
c8:0b:df:21:90:25:a3:3b:8b:aa:3c:4d:58:31:2c:
76:f7:64:4d:29:05:fa:7f:83:88:75:1d:ce:a0:b8:
7f:7e:3b:74:54:f7:ef:89:6b:da:18:8e:d5:b6:e3:
af:a3:a8:de:68:3f:e4:a6:91:ff:1b:40:f0:a2:15:
2b:cf:d7:f5:36:15:4e:0c:84:07:33:58:68:8f:5d:
49:e0:51:21:84:6e:aa:d9:01:3e:e8:71:65:75:a4:
9a:d1:1f:dd:06:be:7d:a2:3e:a4:50:99:01:b6:78:
0f:dd:be:94:37:90:a6:85:c4:0b:cd:6b:da:9b:79:
17:24:1d:ad:b8:10:61:a0:9a:92:e3:4d:f8:a1:67:
06:b7:7a:42:5a:65:08:05:6d:6b:89:ef:6d:f2:38:
bc:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:9A:5A:A2:34:C2:77:88:76:D1:30:90:37:DB:72:E7:1F:88:D8:97
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/E5paojTCd4h20TCQN9ty5x-I2Jc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.128.0/19
5.175.128.0/22
5.175.133.0/24
5.175.218.0-5.175.220.255
5.175.225.0-5.175.232.255
5.175.235.0/24
5.175.240.0-5.175.244.255
5.175.251.0-5.175.255.255
5.230.0.0/15
77.90.0.0/18
83.243.80.0/21
85.93.0.0/19
85.118.160.0/21
87.239.128.0/21
89.106.64.0/19
89.144.0.0/18
94.103.160.0/20
94.249.128.0/17
95.215.32.0/22
178.18.144.0/20
185.13.156.0/22
185.47.140.0/23
185.121.71.0/24
193.28.251.0/24
195.110.14.0/23
217.69.160.0/20
IPv6:
2a00:12d8::/29
2a00:19d0::/29
2a00:cdc0::/32
2a01:bd40::/29
2a02:7a0::/29
2a02:2fc0::/29
Signature Algorithm: sha256WithRSAEncryption
9f:6e:8e:2d:4e:36:44:18:50:a0:de:b0:95:2b:a5:47:82:e6:
ed:1f:96:b8:de:f1:1d:65:14:10:dd:38:f8:47:3b:8a:b4:3c:
99:09:1e:c7:89:9d:73:5e:c2:5c:5d:0b:9b:ba:4c:cb:7c:ff:
d2:f9:18:aa:2c:e7:1d:ec:7e:71:ae:24:3a:8a:bf:e0:04:05:
8a:95:f5:75:3a:5e:83:a2:76:78:b6:f6:3f:7c:73:e0:68:0f:
66:74:7f:f9:94:36:f4:35:eb:a3:e7:f6:a1:2f:13:9c:20:2e:
3b:ec:7c:d0:72:2e:9f:85:bc:cf:0d:b9:50:16:5f:97:38:61:
28:c7:d2:dd:0d:d2:e9:b5:88:f1:b5:47:28:2c:08:fa:b0:8a:
97:e3:34:03:c5:43:4c:28:e7:c4:57:4f:68:55:47:12:11:81:
df:f3:86:80:8c:4a:d7:13:da:c5:9b:31:ed:49:56:4c:21:a1:
d6:de:84:ea:ec:46:2e:b7:64:c2:98:8b:4a:a9:d6:ff:df:76:
ff:58:4c:a4:9c:46:ed:4a:dc:e8:e6:ca:cb:c4:64:41:d8:58:
8b:70:63:2c:8d:91:8d:e1:8d:f2:98:08:c0:64:30:77:6b:bf:
b4:ca:dc:95:ea:f0:08:37:39:f7:86:a5:4e:3e:87:12:3e:1f:
d1:59:67:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 15 20:55:11 2025 by rpki-client