Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/HWNyrNXMck_0D4TRtcLaQ4D-Ago.roa
File: HWNyrNXMck_0D4TRtcLaQ4D-Ago.roa (raw, json)
Hash identifier: T+4iJdp7ujpJIu3HQInvrFHmNp9WSm4duVh7yLvAhj8=
Subject key identifier: 1D:63:72:AC:D5:CC:72:4F:F4:0F:84:D1:B5:C2:DA:43:80:FE:02:0A
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 0194221FFDBA05B914ACF782A0E02E14D9B1
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/HWNyrNXMck_0D4TRtcLaQ4D-Ago.roa
Signing time: Wed 01 Jan 2025 13:48:29 +0000
ROA not before: Wed 01 Jan 2025 13:48:29 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 44477
IP address blocks: 5.83.148.0/24 maxlen: 24
5.175.132.0/24 maxlen: 24
5.175.137.0/24 maxlen: 24
5.175.250.0/24 maxlen: 24
5.230.5.0/24 maxlen: 24
5.230.9.0/24 maxlen: 24
5.231.23.0/24 maxlen: 24
5.231.32.0/24 maxlen: 24
5.231.36.0/24 maxlen: 24
5.231.41.0/24 maxlen: 24
5.231.44.0/24 maxlen: 24
5.231.60.0/24 maxlen: 24
5.231.63.0/24 maxlen: 24
5.231.69.0/24 maxlen: 24
5.231.76.0/24 maxlen: 24
5.231.80.0/24 maxlen: 24
178.18.146.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 21 Feb 2025 11:24:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:1f:fd:ba:05:b9:14:ac:f7:82:a0:e0:2e:14:d9:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Jan 1 13:48:29 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1d6372acd5cc724ff40f84d1b5c2da4380fe020a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:71:81:bd:13:0d:a7:13:f0:f2:16:b5:3b:e6:
99:e2:a9:d7:47:4a:25:bf:ae:a5:b8:e7:98:9b:bc:
1d:5a:1b:81:74:4f:8e:46:cb:00:43:2f:7f:7b:ae:
f0:f1:aa:b9:28:08:f1:36:25:6d:7e:43:96:1b:6a:
58:3d:dc:0a:06:9f:e5:90:3a:bd:c0:11:21:b4:ae:
a8:c7:2e:6a:2c:5e:b8:e8:76:e1:90:de:00:f2:e9:
92:0b:2d:45:8d:c5:31:d3:51:e3:5d:7f:a8:fb:ee:
55:cc:fc:24:80:5a:52:fe:5a:ce:52:14:a2:85:3a:
3c:13:83:04:58:4c:8d:3a:8c:bd:38:ec:12:b1:43:
bb:bb:19:49:1c:6e:2f:e3:2e:2d:14:a3:3e:03:83:
91:ee:d5:19:b9:97:8a:16:67:b4:8c:3c:d9:e7:fe:
16:5f:19:2a:4e:6e:78:ed:13:47:6e:12:98:34:a9:
27:ca:23:4c:1f:1d:ce:63:6e:79:4e:88:7d:0e:de:
85:dc:ff:c4:2f:92:df:c8:b4:ce:c8:d0:51:5d:f6:
02:7a:5a:e2:91:99:b4:a6:5b:8f:0f:59:6f:48:90:
f8:bd:19:a6:24:66:2b:9c:ff:37:da:0f:18:4f:ca:
01:c3:5c:c8:2c:f4:66:5b:40:d6:df:05:ec:6b:4d:
cb:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:63:72:AC:D5:CC:72:4F:F4:0F:84:D1:B5:C2:DA:43:80:FE:02:0A
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/HWNyrNXMck_0D4TRtcLaQ4D-Ago.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.148.0/24
5.175.132.0/24
5.175.137.0/24
5.175.250.0/24
5.230.5.0/24
5.230.9.0/24
5.231.23.0/24
5.231.32.0/24
5.231.36.0/24
5.231.41.0/24
5.231.44.0/24
5.231.60.0/24
5.231.63.0/24
5.231.69.0/24
5.231.76.0/24
5.231.80.0/24
178.18.146.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:29:29:27:c9:e2:fa:25:01:db:e9:41:47:0a:25:e1:e9:53:
9f:6c:a0:ae:85:de:08:19:7d:b4:5b:12:d5:93:db:cb:d3:e7:
59:56:37:05:56:af:7a:cc:f3:6e:76:c4:ce:fc:e0:a4:bc:90:
cd:ac:91:c4:26:1f:30:67:e4:9c:cf:c7:ce:80:e8:1b:84:b1:
40:bf:9b:0a:59:be:98:73:e8:5f:ec:f8:74:d1:01:ce:f4:0b:
d9:f9:00:8d:d0:72:08:f3:7d:92:4f:72:83:a4:7e:f3:8f:c6:
f3:b0:d0:54:09:4c:fd:1e:8d:b8:61:f7:2a:65:37:72:7e:ee:
e1:63:ed:e2:fa:3d:67:18:f3:b0:03:86:68:41:34:f2:64:04:
0c:b8:2c:41:7a:50:59:64:3a:6f:29:45:14:6d:c3:45:d2:88:
8e:20:ba:64:ea:95:e7:d6:6b:5a:79:7a:9a:15:4d:60:28:db:
da:1e:3a:a3:f2:5c:3a:66:74:7e:96:b9:87:61:be:f6:7c:8d:
70:76:48:da:15:05:57:88:c6:4c:0d:1e:b2:a5:60:09:97:03:
f1:39:b1:b9:2c:da:1e:97:22:0a:15:1e:74:2d:e0:2b:2c:cf:
1e:61:08:d1:41:fe:57:8b:f6:70:da:52:66:18:19:b2:16:d6:
2e:28:80:79
-----BEGIN CERTIFICATE-----
MIIFXTCCBEWgAwIBAgISAZQiH/26BbkUrPeCoOAuFNmxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNlNjA5NzY5ODY4NmUxNTU1ZjUxZjZjODgzYmM1YTU4NTQ5
YjIzNjIwHhcNMjUwMTAxMTM0ODI5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxZDYzNzJhY2Q1Y2M3MjRmZjQwZjg0ZDFiNWMyZGE0MzgwZmUwMjBhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzXGBvRMNpxPw8ha1O+aZ4qnXR0ol
v66luOeYm7wdWhuBdE+ORssAQy9/e67w8aq5KAjxNiVtfkOWG2pYPdwKBp/lkDq9
wBEhtK6oxy5qLF646HbhkN4A8umSCy1FjcUx01HjXX+o++5VzPwkgFpS/lrOUhSi
hTo8E4MEWEyNOoy9OOwSsUO7uxlJHG4v4y4tFKM+A4OR7tUZuZeKFme0jDzZ5/4W
XxkqTm547RNHbhKYNKknyiNMHx3OY255Toh9Dt6F3P/EL5LfyLTOyNBRXfYCelri
kZm0pluPD1lvSJD4vRmmJGYrnP832g8YT8oBw1zILPRmW0DW3wXsa03LIQIDAQAB
o4ICaTCCAmUwHQYDVR0OBBYEFB1jcqzVzHJP9A+E0bXC2kOA/gIKMB8GA1UdIwQY
MBaAFD5gl2mGhuFVX1H2yIO8WlhUmyNiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGIt
ZTFiZDg4ZDNmZDA3LzEvSFdOeXJOWE1ja18wRDRUUnRjTGFRNEQtQWdvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGItZTFiZDg4ZDNmZDA3
LzEvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMH8GCCsGAQUFBwEHAQH/BHAwbjBsBAIAATBmAwQABVOUAwQA
Ba+EAwQABa+JAwQABa/6AwQABeYFAwQABeYJAwQABecXAwQABecgAwQABeckAwQA
BecpAwQABecsAwQABec8AwQABec/AwQABedFAwQABedMAwQABedQAwQAshKSMA0G
CSqGSIb3DQEBCwUAA4IBAQA6KSknyeL6JQHb6UFHCiXh6VOfbKCuhd4IGX20WxLV
k9vL0+dZVjcFVq96zPNudsTO/OCkvJDNrJHEJh8wZ+Scz8fOgOgbhLFAv5sKWb6Y
c+hf7Ph00QHO9AvZ+QCN0HII832ST3KDpH7zj8bzsNBUCUz9Ho24YfcqZTdyfu7h
Y+3i+j1nGPOwA4ZoQTTyZAQMuCxBelBZZDpvKUUUbcNF0oiOILpk6pXn1mtaeXqa
FU1gKNvaHjqj8lw6ZnR+lrmHYb72fI1wdkjaFQVXiMZMDR6ypWAJlwPxObG5LNoe
lyIKFR50LeArLM8eYQjRQf5Xi/Zw2lJmGBmyFtYuKIB5
-----END CERTIFICATE-----
Generated at Sat Apr 12 03:16:09 2025 by rpki-client