Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/TVE3ptZqLUwVWD5fviL2H_72eM4.roa
File: TVE3ptZqLUwVWD5fviL2H_72eM4.roa (raw, json)
Hash identifier: Bk+CYLkzXttZlUaFZhwlftlL6BYI4PkOfXuo4naHkeI=
Subject key identifier: 4D:51:37:A6:D6:6A:2D:4C:15:58:3E:5F:BE:22:F6:1F:FE:F6:78:CE
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 01943A0822EBBC36988793802298B5D73088
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/TVE3ptZqLUwVWD5fviL2H_72eM4.roa
Signing time: Mon 06 Jan 2025 05:13:19 +0000
ROA not before: Mon 06 Jan 2025 05:13:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 43260
IP address blocks: 5.83.129.0/24 maxlen: 24
5.175.138.0/24 maxlen: 24
77.90.54.0/24 maxlen: 24
87.239.130.0/24 maxlen: 24
87.239.131.0/24 maxlen: 24
89.106.69.0/24 maxlen: 24
94.103.163.0/24 maxlen: 24
94.249.153.0/24 maxlen: 24
94.249.158.0/24 maxlen: 24
94.249.212.0/24 maxlen: 24
94.249.215.0/24 maxlen: 24
94.249.237.0/24 maxlen: 24
95.215.32.0/24 maxlen: 24
95.215.34.0/24 maxlen: 24
185.13.159.0/24 maxlen: 24
185.47.143.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 08 Jan 2025 23:35:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:3a:08:22:eb:bc:36:98:87:93:80:22:98:b5:d7:30:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Jan 6 05:13:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4d5137a6d66a2d4c15583e5fbe22f61ffef678ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:85:8c:94:3d:e5:ae:8d:47:74:de:bd:19:d6:
c5:da:21:55:e2:93:bd:6d:9f:d7:7e:3d:a9:3b:66:
5c:1e:30:40:66:18:5b:4f:cc:78:49:2a:21:e5:e8:
67:c3:e6:b9:2b:21:c1:4e:34:66:09:d3:84:15:fa:
0f:aa:2d:00:04:cf:40:da:23:23:4b:18:20:2c:42:
86:7d:62:fa:2f:65:71:d8:2c:57:0b:5b:02:23:ce:
bf:76:e8:39:3b:97:64:a5:22:63:dd:82:7e:41:21:
f9:51:35:79:25:f8:7a:94:7b:72:8c:ec:07:63:ed:
ae:95:80:a2:29:bf:ac:fa:fd:dc:ff:24:c5:27:11:
87:24:4a:38:d8:7a:c9:f8:cd:33:36:61:c6:c4:ac:
02:45:b5:0d:45:fb:16:8e:2a:50:ee:6b:ec:fc:eb:
1f:af:83:ed:44:e6:c0:d5:7f:e2:42:b2:b6:7e:5a:
6e:e6:d1:50:20:fb:c8:13:5e:95:1b:0e:cf:a8:d8:
3d:63:eb:12:c1:14:86:3c:51:45:63:d4:09:ec:c3:
4d:de:c9:a8:fa:f8:9a:a8:ab:52:86:18:ab:9c:14:
52:66:e5:4d:11:15:dd:89:7b:59:7c:56:4d:b1:7d:
f4:60:52:67:8c:1c:50:d4:01:31:7b:a6:5e:d8:04:
0a:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:51:37:A6:D6:6A:2D:4C:15:58:3E:5F:BE:22:F6:1F:FE:F6:78:CE
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/TVE3ptZqLUwVWD5fviL2H_72eM4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.129.0/24
5.175.138.0/24
77.90.54.0/24
87.239.130.0/23
89.106.69.0/24
94.103.163.0/24
94.249.153.0/24
94.249.158.0/24
94.249.212.0/24
94.249.215.0/24
94.249.237.0/24
95.215.32.0/24
95.215.34.0/24
185.13.159.0/24
185.47.143.0/24
Signature Algorithm: sha256WithRSAEncryption
36:d5:51:5b:ca:09:c8:ff:4d:a4:f7:63:ee:1f:43:74:8c:cd:
1b:02:59:93:38:2f:79:ba:f8:0d:ad:71:c1:5f:15:64:82:9a:
88:15:98:12:39:98:91:90:ea:b9:b3:87:9f:1b:c0:ce:92:ed:
79:3f:05:dd:9f:be:2d:8f:f6:16:1a:2b:5f:f3:03:ea:f3:eb:
7c:0b:bb:4c:fa:03:3e:05:13:8c:29:73:9d:50:8d:85:f3:44:
fd:e0:87:70:43:8e:31:d2:eb:96:35:bc:d6:68:9a:fc:d6:69:
ae:cc:e2:99:c4:3f:6a:0e:7d:4b:ce:52:99:a9:12:67:90:41:
7f:57:20:77:ff:27:c2:08:e0:03:21:a8:23:9b:e8:16:e1:89:
a2:34:f3:5b:72:04:1d:e2:95:55:6c:d4:ca:f0:cb:7b:50:66:
14:ee:b1:71:c1:dc:07:fe:5f:4a:df:6f:5c:ef:ae:6f:4a:81:
df:cd:5c:d5:d5:0b:a2:ba:81:2c:73:58:5d:5f:c3:99:34:94:
86:62:a9:53:05:d1:0b:7e:3c:ad:fa:03:3f:e6:a0:1d:ef:25:
06:e1:f6:26:6e:e9:5a:65:ce:ef:ca:61:35:38:54:f1:68:9b:
37:f8:76:85:6b:74:d0:18:7a:b9:20:0b:34:e3:73:29:0c:56:
ea:1f:29:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 02:27:57 2025 by rpki-client