Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/JOMGCve88x-fhUeYthAhBjvLV-4.roa
File: JOMGCve88x-fhUeYthAhBjvLV-4.roa (raw, json)
Hash identifier: +SrAY1E/wWjSJhzA1hWnmwh5eJvivEjVpQH7I8eeJl0=
Subject key identifier: 24:E3:06:0A:F7:BC:F3:1F:9F:85:47:98:B6:10:21:06:3B:CB:57:EE
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 0194FD33E0E167B00C81EC49CDBC7E9B9528
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/JOMGCve88x-fhUeYthAhBjvLV-4.roa
Signing time: Thu 13 Feb 2025 02:47:03 +0000
ROA not before: Thu 13 Feb 2025 02:47:03 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 49581
IP address blocks: 5.83.134.0/24 maxlen: 24
5.231.25.0/24 maxlen: 24
5.231.26.0/24 maxlen: 24
89.106.71.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 14 Feb 2025 07:02:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:fd:33:e0:e1:67:b0:0c:81:ec:49:cd:bc:7e:9b:95:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Feb 13 02:47:03 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=24e3060af7bcf31f9f854798b61021063bcb57ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:10:ff:72:a4:18:d2:44:af:7e:c3:76:8c:3c:
fc:52:d1:ee:71:ba:3f:ea:ab:2b:2b:82:a9:76:a8:
64:50:ff:ab:f7:33:39:ba:ad:82:fd:80:9e:49:94:
68:71:8f:d2:90:d3:10:d3:0a:b3:9b:bd:10:87:09:
b6:0e:7c:15:2b:46:12:af:44:74:0c:a2:1f:a1:7c:
72:fd:d2:33:e3:f2:ab:20:fb:d1:1b:ed:4e:b1:e6:
f4:23:46:b2:cb:0d:b7:6e:84:67:56:04:a9:1b:8e:
be:b5:43:c1:4a:41:c2:be:46:a7:56:23:ee:ec:55:
1a:43:c5:23:75:48:d0:fb:e8:af:6e:7b:8d:a9:a6:
c4:26:a4:a1:92:af:aa:64:d1:ff:6e:ba:8a:05:27:
23:7f:43:56:7c:39:26:49:ee:6e:10:8a:af:19:02:
2e:93:06:70:43:43:c8:2f:88:bd:55:05:f1:82:dd:
66:5d:6c:d9:d6:fd:d3:23:6a:a4:37:52:2d:6b:c7:
a7:2b:70:ff:1a:4b:95:12:fc:98:37:fd:94:c8:d7:
a1:b1:cb:85:bb:36:3d:12:80:17:85:d5:b8:7e:2f:
df:69:77:0f:36:4f:ea:8e:4a:40:4c:b6:06:5b:bf:
52:34:99:b2:0d:44:8e:b5:29:18:12:39:af:0b:3f:
8e:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:E3:06:0A:F7:BC:F3:1F:9F:85:47:98:B6:10:21:06:3B:CB:57:EE
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/JOMGCve88x-fhUeYthAhBjvLV-4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.134.0/24
5.231.25.0-5.231.26.255
89.106.71.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:20:b3:9e:78:7d:a7:4f:fc:5f:d3:5f:33:08:48:87:29:8f:
5b:48:e8:f1:06:0d:18:25:3a:0a:17:b0:5d:78:37:5a:06:17:
28:88:6c:bc:a2:5f:94:8f:95:0e:9e:47:0c:78:30:a6:7d:6a:
cc:55:9a:49:e0:29:06:bf:00:95:b6:03:f2:73:f6:cc:14:74:
dc:1c:fc:a6:07:f4:b6:5f:57:a5:2c:22:90:9b:5f:0a:a6:94:
50:ac:7e:88:86:b0:13:80:88:43:0a:9b:a9:3b:3b:19:50:ad:
2c:3c:e8:ea:7e:e1:d5:f0:30:c7:4a:e7:4c:54:30:1a:ca:05:
7b:9d:41:1a:e0:a0:79:e0:4b:e2:c5:01:39:ce:3c:7c:48:7d:
32:c1:99:b0:9a:2f:2d:03:4a:b3:c5:84:f9:26:54:b8:ce:19:
b3:10:f7:f3:ba:64:c9:5e:56:dc:24:83:99:57:2f:34:2f:f4:
a8:e7:a0:69:70:f4:f5:1e:45:d2:2c:db:8e:51:04:44:e8:39:
78:9a:f3:2d:93:96:a6:59:7a:30:62:be:83:1d:3f:c1:ce:fd:
f4:40:62:a1:4b:93:a8:0e:7a:9d:46:63:c6:df:64:be:90:d0:
05:3f:ea:b7:c4:0e:a8:98:70:ce:77:04:68:af:da:03:9a:4f:
a2:c3:5e:5c
-----BEGIN CERTIFICATE-----
MIIFETCCA/mgAwIBAgISAZT9M+DhZ7AMgexJzbx+m5UoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNlNjA5NzY5ODY4NmUxNTU1ZjUxZjZjODgzYmM1YTU4NTQ5
YjIzNjIwHhcNMjUwMjEzMDI0NzAzWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyNGUzMDYwYWY3YmNmMzFmOWY4NTQ3OThiNjEwMjEwNjNiY2I1N2VlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqhD/cqQY0kSvfsN2jDz8UtHucbo/
6qsrK4KpdqhkUP+r9zM5uq2C/YCeSZRocY/SkNMQ0wqzm70Qhwm2DnwVK0YSr0R0
DKIfoXxy/dIz4/KrIPvRG+1Oseb0I0ayyw23boRnVgSpG46+tUPBSkHCvkanViPu
7FUaQ8UjdUjQ++ivbnuNqabEJqShkq+qZNH/brqKBScjf0NWfDkmSe5uEIqvGQIu
kwZwQ0PIL4i9VQXxgt1mXWzZ1v3TI2qkN1Ita8enK3D/GkuVEvyYN/2UyNehscuF
uzY9EoAXhdW4fi/faXcPNk/qjkpATLYGW79SNJmyDUSOtSkYEjmvCz+OmwIDAQAB
o4ICHTCCAhkwHQYDVR0OBBYEFCTjBgr3vPMfn4VHmLYQIQY7y1fuMB8GA1UdIwQY
MBaAFD5gl2mGhuFVX1H2yIO8WlhUmyNiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGIt
ZTFiZDg4ZDNmZDA3LzEvSk9NR0N2ZTg4eC1maFVlWXRoQWhCanZMVi00LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGItZTFiZDg4ZDNmZDA3
LzEvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDMGCCsGAQUFBwEHAQH/BCQwIjAgBAIAATAaAwQABVOGMAwD
BAAF5xkDBAAF5xoDBABZakcwDQYJKoZIhvcNAQELBQADggEBAA0gs554fadP/F/T
XzMISIcpj1tI6PEGDRglOgoXsF14N1oGFyiIbLyiX5SPlQ6eRwx4MKZ9asxVmkng
KQa/AJW2A/Jz9swUdNwc/KYH9LZfV6UsIpCbXwqmlFCsfoiGsBOAiEMKm6k7OxlQ
rSw86Op+4dXwMMdK50xUMBrKBXudQRrgoHngS+LFATnOPHxIfTLBmbCaLy0DSrPF
hPkmVLjOGbMQ9/O6ZMleVtwkg5lXLzQv9KjnoGlw9PUeRdIs245RBEToOXia8y2T
lqZZejBivoMdP8HO/fRAYqFLk6gOep1GY8bfZL6Q0AU/6rfEDqiYcM53BGiv2gOa
T6LDXlw=
-----END CERTIFICATE-----
Generated at Sat Apr 12 03:16:01 2025 by rpki-client