Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/G5k7lePkWdEzqV3avq2hlu9e8jY.roa
File: G5k7lePkWdEzqV3avq2hlu9e8jY.roa (raw, json)
Hash identifier: ZwDMay6R/vDtYw2kTX+AybiNwAi4YGf9psX4wTQvDC4=
Subject key identifier: 1B:99:3B:95:E3:E4:59:D1:33:A9:5D:DA:BE:AD:A1:96:EF:5E:F2:36
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 0194FB533A66778E651BFA29C6FC49B8747C
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/G5k7lePkWdEzqV3avq2hlu9e8jY.roa
Signing time: Wed 12 Feb 2025 18:02:03 +0000
ROA not before: Wed 12 Feb 2025 18:02:03 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 43260
IP address blocks: 5.83.129.0/24 maxlen: 24
5.175.138.0/24 maxlen: 24
77.90.54.0/24 maxlen: 24
87.239.131.0/24 maxlen: 24
89.106.69.0/24 maxlen: 24
94.103.163.0/24 maxlen: 24
94.249.153.0/24 maxlen: 24
94.249.158.0/24 maxlen: 24
94.249.195.0/24 maxlen: 24
94.249.214.0/24 maxlen: 24
94.249.215.0/24 maxlen: 24
94.249.237.0/24 maxlen: 24
95.215.32.0/24 maxlen: 24
95.215.34.0/24 maxlen: 24
178.18.144.0/24 maxlen: 24
185.13.156.0/24 maxlen: 24
185.13.159.0/24 maxlen: 24
185.47.143.0/24 maxlen: 24
217.69.166.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 14 Feb 2025 05:06:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:fb:53:3a:66:77:8e:65:1b:fa:29:c6:fc:49:b8:74:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Feb 12 18:02:03 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1b993b95e3e459d133a95ddabeada196ef5ef236
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:09:cd:2c:49:39:7d:e2:7c:35:50:28:b0:76:
c7:5c:bc:e4:ce:d2:23:01:69:09:01:cd:a7:ab:4a:
4a:cb:cc:01:09:79:26:8f:ea:09:31:49:b9:be:70:
c0:40:f8:93:cc:9b:f7:aa:5a:18:6e:ed:2c:cd:69:
f4:46:76:18:d8:60:1c:39:76:46:5c:73:55:ed:52:
41:9d:49:18:59:77:af:d3:54:6e:05:e5:2a:30:ab:
c7:63:c2:78:fb:dd:20:e8:c7:1d:e6:65:77:83:02:
49:dd:63:a7:c2:58:51:ff:ac:14:c4:97:a0:98:82:
60:51:7b:fb:a8:d9:da:57:17:ef:7c:fd:5a:b2:08:
25:77:37:2a:cf:d6:2a:49:3d:44:0d:b1:a8:e8:4d:
f1:a7:b4:86:5c:a2:ae:ea:c3:2b:92:3d:32:49:b4:
c5:3a:37:34:1d:c6:a9:fb:41:ee:0f:df:4a:e2:59:
dc:d8:53:5b:93:ec:cf:d1:55:d4:1c:c1:cf:fd:71:
14:1a:99:1c:bd:23:1c:b1:1d:02:ed:96:45:45:42:
6f:00:b3:65:aa:f1:04:68:e5:c3:8c:62:86:cb:f7:
b4:c0:8c:4f:54:96:ac:43:d9:33:ae:c1:3f:0a:6f:
fb:4a:a8:3d:3f:6b:30:a5:0d:30:bc:41:91:dd:ff:
15:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:99:3B:95:E3:E4:59:D1:33:A9:5D:DA:BE:AD:A1:96:EF:5E:F2:36
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/G5k7lePkWdEzqV3avq2hlu9e8jY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.129.0/24
5.175.138.0/24
77.90.54.0/24
87.239.131.0/24
89.106.69.0/24
94.103.163.0/24
94.249.153.0/24
94.249.158.0/24
94.249.195.0/24
94.249.214.0/23
94.249.237.0/24
95.215.32.0/24
95.215.34.0/24
178.18.144.0/24
185.13.156.0/24
185.13.159.0/24
185.47.143.0/24
217.69.166.0/24
Signature Algorithm: sha256WithRSAEncryption
50:16:31:2c:a1:fc:c2:18:2f:80:da:e2:7b:ca:c2:e5:57:09:
5b:c8:78:a1:1a:6c:b5:93:71:4f:19:99:a2:ef:af:db:f7:d6:
bb:34:8f:98:4d:0b:1f:1f:79:d7:ad:d9:9c:9b:fc:a5:13:3b:
26:ed:43:df:d3:86:33:4c:f4:1b:c9:67:dc:10:83:b4:85:32:
5f:22:98:00:3b:36:2f:ac:de:00:3d:6e:2e:cf:d5:f9:b1:e4:
0d:48:48:c6:63:0b:95:e6:7a:e0:69:2e:23:84:05:63:59:f8:
39:82:ae:8b:3e:05:f1:24:54:3d:9e:e7:ea:4f:ac:76:20:c6:
4a:9a:f5:49:38:1d:c5:59:68:f9:44:e1:8a:a4:21:fa:7b:cd:
30:ba:c5:63:1f:a6:90:bf:04:1f:19:46:1f:b4:31:77:7f:80:
61:d2:38:d0:ec:dc:5b:5e:38:53:ef:05:3f:48:c7:d6:be:e4:
3a:17:7c:72:db:70:31:9a:fd:2d:61:1c:70:e8:8d:ac:6f:1d:
a0:c8:8b:18:88:cb:da:9b:df:91:23:3b:38:a0:89:88:bc:12:
fb:42:4e:5c:dc:94:fb:db:07:4e:53:e0:06:24:2e:9a:cd:d7:
02:ac:d2:47:15:7c:8d:43:dd:f7:ba:a1:29:6a:eb:58:94:25:
95:d6:14:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 03:25:17 2025 by rpki-client