Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/TmD6xrWN8a9ZuMcSNnalNobTc6Y.roa
File: TmD6xrWN8a9ZuMcSNnalNobTc6Y.roa (raw, json)
Hash identifier: B1IgkaXASBIi/tzjiN5B+DH6QbMzebqXOBNV8mocVeM=
Subject key identifier: 4E:60:FA:C6:B5:8D:F1:AF:59:B8:C7:12:36:76:A5:36:86:D3:73:A6
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 0194DCD1D5A80EDDB87E48ADA6EE84953998
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/TmD6xrWN8a9ZuMcSNnalNobTc6Y.roa
Signing time: Thu 06 Feb 2025 19:52:06 +0000
ROA not before: Thu 06 Feb 2025 19:52:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 43260
IP address blocks: 5.83.129.0/24 maxlen: 24
5.175.138.0/24 maxlen: 24
77.90.54.0/24 maxlen: 24
87.239.131.0/24 maxlen: 24
89.106.69.0/24 maxlen: 24
94.103.163.0/24 maxlen: 24
94.103.164.0/24 maxlen: 24
94.249.148.0/24 maxlen: 24
94.249.153.0/24 maxlen: 24
94.249.158.0/24 maxlen: 24
94.249.195.0/24 maxlen: 24
94.249.214.0/24 maxlen: 24
94.249.215.0/24 maxlen: 24
94.249.237.0/24 maxlen: 24
95.215.32.0/24 maxlen: 24
95.215.34.0/24 maxlen: 24
178.18.144.0/24 maxlen: 24
185.13.156.0/24 maxlen: 24
185.13.159.0/24 maxlen: 24
185.47.143.0/24 maxlen: 24
217.69.166.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 07 Feb 2025 02:02:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:dc:d1:d5:a8:0e:dd:b8:7e:48:ad:a6:ee:84:95:39:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Feb 6 19:52:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4e60fac6b58df1af59b8c7123676a53686d373a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:df:6e:9f:51:05:0a:af:11:a3:4f:56:a2:14:
f1:7e:2e:1f:c9:24:77:f9:0e:59:10:8f:93:65:21:
8d:30:91:70:40:d0:e5:e3:6b:c5:eb:e2:14:30:de:
ad:f3:92:d4:97:61:fe:1d:11:c9:26:59:75:fb:fa:
70:cd:a9:03:75:d1:f4:a4:5f:a6:88:6c:42:ef:d4:
c0:c6:db:d4:e0:8d:01:71:00:1d:11:71:b0:ff:57:
b5:ea:d9:1b:a5:37:bb:88:94:e9:0d:59:ff:06:53:
10:75:94:a9:57:28:c3:e7:93:18:ba:cd:7a:b6:26:
5a:83:f9:41:64:76:6b:fc:10:87:b8:fc:38:53:7c:
ac:58:13:74:27:88:21:26:89:83:52:fb:16:90:ae:
32:f0:94:66:13:7c:92:52:5e:c8:01:27:34:d1:ed:
ab:f6:19:84:f7:fb:9e:7f:8b:32:51:54:87:0d:48:
79:4b:cc:dd:85:cc:8e:f6:37:95:0f:eb:cb:d7:c5:
33:d8:07:aa:ad:29:da:9e:e3:cf:a8:93:c1:8a:9a:
42:ca:c6:a2:02:0f:2e:ec:f8:f0:4f:5b:a2:0c:c3:
13:c7:01:cf:16:cc:5e:90:01:5d:b9:8d:b0:ea:c8:
cb:30:44:23:c6:ae:58:77:17:20:a8:31:3a:79:3d:
dc:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:60:FA:C6:B5:8D:F1:AF:59:B8:C7:12:36:76:A5:36:86:D3:73:A6
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/TmD6xrWN8a9ZuMcSNnalNobTc6Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.129.0/24
5.175.138.0/24
77.90.54.0/24
87.239.131.0/24
89.106.69.0/24
94.103.163.0-94.103.164.255
94.249.148.0/24
94.249.153.0/24
94.249.158.0/24
94.249.195.0/24
94.249.214.0/23
94.249.237.0/24
95.215.32.0/24
95.215.34.0/24
178.18.144.0/24
185.13.156.0/24
185.13.159.0/24
185.47.143.0/24
217.69.166.0/24
Signature Algorithm: sha256WithRSAEncryption
ec:90:d8:5e:72:4d:8b:61:41:2e:7e:e5:5c:ae:f0:12:f7:50:
03:a4:96:07:0e:cd:e2:a1:22:33:01:da:14:c6:e7:93:cf:22:
e8:8b:75:3f:cb:d8:64:9d:a0:09:2d:bd:78:02:aa:20:f5:89:
87:12:d9:a2:b7:84:23:16:93:b6:28:cd:75:d3:4d:e4:b0:c4:
7c:27:92:56:c1:20:32:87:77:0f:ff:db:bc:22:84:e3:b2:48:
7b:db:64:0a:17:3b:88:b3:6c:fc:32:fe:2e:8c:76:29:09:a9:
aa:fe:a0:34:08:fd:f9:45:85:f5:c5:38:b9:90:cd:30:f2:e7:
e6:30:9a:0f:18:90:3e:e1:c3:84:35:29:2f:98:d7:99:55:81:
4b:70:91:87:aa:2f:05:bb:5f:5e:f6:b2:85:85:e1:0a:f9:9c:
a4:77:b2:2e:30:b0:ff:fc:c3:6f:d0:37:e2:fb:79:43:25:de:
e2:cc:fc:79:5e:15:ef:7e:3c:5a:c0:f0:21:6e:06:78:27:06:
02:ef:b3:f8:38:e0:3c:29:de:a6:d0:0b:bb:56:f2:45:e7:3d:
c0:b7:3b:98:04:f9:c7:ad:72:c3:17:ea:db:d7:6b:2f:48:8c:
54:1d:5c:b2:85:96:d6:c2:ec:6e:0e:89:ca:ee:53:87:33:09:
0c:e6:f2:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 03:12:58 2025 by rpki-client