Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/RmxP8lvH1EggnZ0JSJgL_k7I908.roa
File: RmxP8lvH1EggnZ0JSJgL_k7I908.roa (raw, json)
Hash identifier: C8wnjO/votFp7Cyjlsgn0tMwMiq8pPhDNeCXnn+wQlk=
Subject key identifier: 46:6C:4F:F2:5B:C7:D4:48:20:9D:9D:09:48:98:0B:FE:4E:C8:F7:4F
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 0193D767C74085FD2495A264A509506A4DCF
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/RmxP8lvH1EggnZ0JSJgL_k7I908.roa
Signing time: Wed 18 Dec 2024 01:35:22 +0000
ROA not before: Wed 18 Dec 2024 01:35:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43260
IP address blocks: 5.83.129.0/24 maxlen: 24
5.175.138.0/24 maxlen: 24
77.90.54.0/24 maxlen: 24
87.239.131.0/24 maxlen: 24
89.106.69.0/24 maxlen: 24
94.103.163.0/24 maxlen: 24
94.249.138.0/24 maxlen: 24
94.249.148.0/24 maxlen: 24
94.249.153.0/24 maxlen: 24
94.249.212.0/24 maxlen: 24
94.249.237.0/24 maxlen: 24
95.215.32.0/24 maxlen: 24
95.215.34.0/24 maxlen: 24
185.13.159.0/24 maxlen: 24
185.47.143.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 18 Dec 2024 02:05:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:d7:67:c7:40:85:fd:24:95:a2:64:a5:09:50:6a:4d:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Dec 18 01:35:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=466c4ff25bc7d448209d9d0948980bfe4ec8f74f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:d8:42:e0:61:9d:a0:8c:e4:df:db:42:38:36:
54:1a:fd:5a:ee:ab:88:ba:a2:2a:d9:cb:26:95:fc:
0f:f7:f0:5a:1d:27:71:ab:a2:ed:5b:a0:45:7d:0f:
41:d9:d9:55:33:4b:f2:3d:d9:60:e3:89:56:b5:56:
6d:54:4b:db:5f:66:68:0f:aa:c8:fa:5b:e7:3e:fc:
88:cf:b2:60:f6:74:6e:4f:d0:f1:e2:7f:b6:a6:09:
a0:22:d5:35:89:fd:ec:90:09:4d:65:50:af:a5:10:
4f:7e:80:6e:e5:8d:f4:5f:27:3b:8d:95:c7:3c:70:
ee:84:d1:a9:85:5e:a2:20:06:c3:db:c4:d4:45:65:
87:a2:41:d5:76:ef:9f:a3:09:c7:15:11:59:20:9f:
4f:f2:7f:b0:b2:38:76:e2:e9:21:b7:d6:3e:7d:71:
47:e2:89:6e:2c:65:b3:db:71:ab:a3:08:64:00:63:
b2:10:01:b3:29:7f:b4:0c:dd:9a:dd:35:84:84:2b:
a2:4d:7f:c3:a4:08:f3:5a:67:b0:8a:71:77:f8:56:
cb:f9:a6:1a:06:31:59:c0:ae:93:21:93:25:ef:1b:
a9:c8:65:5f:96:00:fc:6e:8e:ce:37:92:ff:9f:13:
1d:83:b5:e8:ec:9e:02:fe:ef:4c:14:65:d2:c3:49:
9f:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:6C:4F:F2:5B:C7:D4:48:20:9D:9D:09:48:98:0B:FE:4E:C8:F7:4F
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/RmxP8lvH1EggnZ0JSJgL_k7I908.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.129.0/24
5.175.138.0/24
77.90.54.0/24
87.239.131.0/24
89.106.69.0/24
94.103.163.0/24
94.249.138.0/24
94.249.148.0/24
94.249.153.0/24
94.249.212.0/24
94.249.237.0/24
95.215.32.0/24
95.215.34.0/24
185.13.159.0/24
185.47.143.0/24
Signature Algorithm: sha256WithRSAEncryption
d7:ea:da:a1:0c:7f:b4:f8:44:5a:80:55:b8:bf:50:62:e4:aa:
7c:ab:ce:08:6b:1e:9a:a7:a9:59:98:d4:76:d6:d8:ce:9c:81:
98:2a:43:11:51:64:45:d7:44:0b:47:b6:a1:0c:84:3b:f7:ca:
24:95:01:c5:61:81:66:cf:3c:89:72:f6:d8:50:b8:0d:e3:38:
9a:79:46:90:8a:7e:1c:55:c0:f2:de:45:2e:bd:d3:71:a4:97:
7e:20:46:d0:2a:25:1b:a7:80:be:50:0e:ea:b8:57:35:1d:20:
a4:24:a0:24:be:41:e9:33:f2:33:da:ea:c0:dd:a5:e4:1f:25:
1e:ef:79:2f:2a:52:d6:7a:fc:e1:78:fd:29:e6:39:8e:da:d0:
47:c7:ff:c9:a0:c6:a4:dc:9e:5e:52:43:a6:a4:2b:13:ed:51:
be:4f:53:a1:53:67:4e:25:c6:b7:22:42:0a:90:84:c0:14:d6:
81:b0:43:3d:91:5e:e1:2b:e2:cb:3e:c4:c5:a2:82:a7:f0:7f:
17:b7:7b:5b:f7:e5:af:7b:0b:81:34:c1:e5:43:19:a6:a4:99:
7d:a7:06:1d:ba:ea:b4:4f:be:9d:02:24:db:9b:dc:09:5a:ef:
3e:44:36:d4:dc:ea:ee:15:8a:97:1a:5b:72:89:e0:a3:a3:c4:
1c:33:1f:c3
-----BEGIN CERTIFICATE-----
MIIFUTCCBDmgAwIBAgISAZPXZ8dAhf0klaJkpQlQak3PMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNlNjA5NzY5ODY4NmUxNTU1ZjUxZjZjODgzYmM1YTU4NTQ5
YjIzNjIwHhcNMjQxMjE4MDEzNTIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0NjZjNGZmMjViYzdkNDQ4MjA5ZDlkMDk0ODk4MGJmZTRlYzhmNzRmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA19hC4GGdoIzk39tCODZUGv1a7quI
uqIq2csmlfwP9/BaHSdxq6LtW6BFfQ9B2dlVM0vyPdlg44lWtVZtVEvbX2ZoD6rI
+lvnPvyIz7Jg9nRuT9Dx4n+2pgmgItU1if3skAlNZVCvpRBPfoBu5Y30Xyc7jZXH
PHDuhNGphV6iIAbD28TURWWHokHVdu+fownHFRFZIJ9P8n+wsjh24ukht9Y+fXFH
4oluLGWz23GrowhkAGOyEAGzKX+0DN2a3TWEhCuiTX/DpAjzWmewinF3+FbL+aYa
BjFZwK6TIZMl7xupyGVflgD8bo7ON5L/nxMdg7Xo7J4C/u9MFGXSw0mflQIDAQAB
o4ICXTCCAlkwHQYDVR0OBBYEFEZsT/Jbx9RIIJ2dCUiYC/5OyPdPMB8GA1UdIwQY
MBaAFD5gl2mGhuFVX1H2yIO8WlhUmyNiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGIt
ZTFiZDg4ZDNmZDA3LzEvUm14UDhsdkgxRWdnblowSlNKZ0xfazdJOTA4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGItZTFiZDg4ZDNmZDA3
LzEvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHMGCCsGAQUFBwEHAQH/BGQwYjBgBAIAATBaAwQABVOBAwQA
Ba+KAwQATVo2AwQAV++DAwQAWWpFAwQAXmejAwQAXvmKAwQAXvmUAwQAXvmZAwQA
XvnUAwQAXvntAwQAX9cgAwQAX9ciAwQAuQ2fAwQAuS+PMA0GCSqGSIb3DQEBCwUA
A4IBAQDX6tqhDH+0+ERagFW4v1Bi5Kp8q84Iax6ap6lZmNR21tjOnIGYKkMRUWRF
10QLR7ahDIQ798oklQHFYYFmzzyJcvbYULgN4ziaeUaQin4cVcDy3kUuvdNxpJd+
IEbQKiUbp4C+UA7quFc1HSCkJKAkvkHpM/Iz2urA3aXkHyUe73kvKlLWevzheP0p
5jmO2tBHx//JoMak3J5eUkOmpCsT7VG+T1OhU2dOJca3IkIKkITAFNaBsEM9kV7h
K+LLPsTFooKn8H8Xt3tb9+WvewuBNMHlQxmmpJl9pwYduuq0T76dAiTbm9wJWu8+
RDbU3OruFYqXGltyieCjo8QcMx/D
-----END CERTIFICATE-----
Generated at Sat Apr 12 03:15:59 2025 by rpki-client