Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/_DQoM1HgKBctepUBCCkmSf-2VRA.roa
File: _DQoM1HgKBctepUBCCkmSf-2VRA.roa (raw, json)
Hash identifier: 7xxEMLnb79/njAcKdruOQnhE2t6lkuSoFwAgJ2bFM7E=
Subject key identifier: FC:34:28:33:51:E0:28:17:2D:7A:95:01:08:29:26:49:FF:B6:55:10
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 0194CBE7637D92F0B6EDF9F326CB71419987
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/_DQoM1HgKBctepUBCCkmSf-2VRA.roa
Signing time: Mon 03 Feb 2025 13:02:06 +0000
ROA not before: Mon 03 Feb 2025 13:02:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 12586
IP address blocks: 5.83.128.0/19 maxlen: 32
5.83.128.0/20 maxlen: 32
5.83.145.0/24 maxlen: 24
5.83.151.0/24 maxlen: 32
5.83.156.0/24 maxlen: 24
5.83.157.0/24 maxlen: 24
5.175.128.0/24 maxlen: 32
5.175.129.0/24 maxlen: 32
5.175.130.0/24 maxlen: 32
5.175.131.0/24 maxlen: 32
5.175.133.0/24 maxlen: 32
5.175.142.0/24 maxlen: 24
5.175.143.0/24 maxlen: 24
5.175.218.0/24 maxlen: 32
5.175.219.0/24 maxlen: 32
5.175.220.0/24 maxlen: 32
5.175.225.0/24 maxlen: 32
5.175.226.0/24 maxlen: 32
5.175.227.0/24 maxlen: 32
5.175.228.0/24 maxlen: 32
5.175.229.0/24 maxlen: 32
5.175.230.0/24 maxlen: 32
5.175.231.0/24 maxlen: 32
5.175.232.0/24 maxlen: 32
5.175.235.0/24 maxlen: 32
5.175.240.0/24 maxlen: 32
5.175.241.0/24 maxlen: 32
5.175.242.0/24 maxlen: 32
5.175.243.0/24 maxlen: 32
5.175.244.0/24 maxlen: 32
5.175.251.0/24 maxlen: 32
5.175.252.0/24 maxlen: 32
5.175.253.0/24 maxlen: 32
5.175.254.0/24 maxlen: 32
5.175.255.0/24 maxlen: 32
5.230.0.0/15 maxlen: 32
5.230.6.0/24 maxlen: 32
5.230.11.0/24 maxlen: 32
5.230.102.0/24 maxlen: 32
5.230.224.0/24 maxlen: 32
5.231.24.0/24 maxlen: 24
5.231.104.0/24 maxlen: 24
5.231.233.0/24 maxlen: 32
77.90.0.0/18 maxlen: 32
83.243.80.0/21 maxlen: 32
85.93.0.0/19 maxlen: 32
85.93.5.0/24 maxlen: 24
85.93.20.0/24 maxlen: 32
85.118.160.0/21 maxlen: 32
87.239.128.0/21 maxlen: 32
87.239.130.0/24 maxlen: 24
89.106.64.0/19 maxlen: 32
89.144.0.0/18 maxlen: 32
94.103.160.0/20 maxlen: 32
94.249.128.0/17 maxlen: 32
94.249.138.0/24 maxlen: 24
94.249.212.0/24 maxlen: 24
95.215.32.0/22 maxlen: 32
178.18.144.0/20 maxlen: 32
178.18.151.0/24 maxlen: 32
185.13.156.0/22 maxlen: 32
185.47.140.0/24 maxlen: 32
185.47.141.0/24 maxlen: 32
185.121.71.0/24 maxlen: 32
193.28.251.0/24 maxlen: 32
195.110.14.0/23 maxlen: 32
217.69.160.0/20 maxlen: 32
2a00:12d8::/29 maxlen: 128
2a00:19d0::/29 maxlen: 128
2a00:cdc0::/32 maxlen: 128
2a01:bd40::/29 maxlen: 128
2a02:7a0::/29 maxlen: 128
2a02:2fc0::/29 maxlen: 128
Validation: Failed, certificate revoked on Tue 04 Feb 2025 01:43:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:cb:e7:63:7d:92:f0:b6:ed:f9:f3:26:cb:71:41:99:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Feb 3 13:02:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=fc34283351e028172d7a950108292649ffb65510
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:46:70:64:17:cd:ba:9e:f5:1b:20:8f:0c:5b:
07:e0:7b:35:b3:6d:b8:ee:6f:77:85:c9:e9:e2:1c:
f1:a1:0e:43:eb:fc:16:39:68:64:8f:01:33:d3:14:
3f:28:02:a2:d9:76:73:d8:64:71:13:7f:83:90:20:
7c:13:87:7c:f0:c3:e9:8c:ba:8d:8c:12:27:3b:08:
36:e1:99:31:3a:c5:12:1a:0f:f6:aa:ec:be:53:06:
db:df:fd:dc:fc:8d:59:d1:22:64:b2:ed:36:43:e6:
07:8c:a1:bf:2d:84:05:15:85:19:3b:c6:07:6d:b4:
ec:e4:28:e4:d5:ca:15:ea:27:0f:bc:62:8b:cf:87:
f3:da:b8:89:0a:ca:ae:43:c0:40:75:f3:f4:a1:e5:
57:f9:07:7e:d7:89:e5:9c:17:6f:df:84:16:dd:45:
5e:d7:67:8b:08:31:e7:a0:8f:f0:f7:fc:6c:e2:ff:
23:fb:cb:9a:25:af:f9:25:3e:20:68:e9:74:f8:c3:
ff:34:a6:08:42:47:db:63:45:f7:1e:cd:cd:97:1e:
25:0f:3f:de:e7:e4:e6:b8:7c:23:49:51:b1:de:14:
ef:c1:71:5c:83:86:de:f3:d8:e2:19:24:a6:08:37:
53:d7:fb:4d:3e:2b:0d:e7:92:74:78:4f:71:bf:69:
e7:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:34:28:33:51:E0:28:17:2D:7A:95:01:08:29:26:49:FF:B6:55:10
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/_DQoM1HgKBctepUBCCkmSf-2VRA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.128.0/19
5.175.128.0/22
5.175.133.0/24
5.175.142.0/23
5.175.218.0-5.175.220.255
5.175.225.0-5.175.232.255
5.175.235.0/24
5.175.240.0-5.175.244.255
5.175.251.0-5.175.255.255
5.230.0.0/15
77.90.0.0/18
83.243.80.0/21
85.93.0.0/19
85.118.160.0/21
87.239.128.0/21
89.106.64.0/19
89.144.0.0/18
94.103.160.0/20
94.249.128.0/17
95.215.32.0/22
178.18.144.0/20
185.13.156.0/22
185.47.140.0/23
185.121.71.0/24
193.28.251.0/24
195.110.14.0/23
217.69.160.0/20
IPv6:
2a00:12d8::/29
2a00:19d0::/29
2a00:cdc0::/32
2a01:bd40::/29
2a02:7a0::/29
2a02:2fc0::/29
Signature Algorithm: sha256WithRSAEncryption
44:6a:be:1a:3f:a7:d5:6e:bb:a1:18:a7:02:05:3b:d8:5d:e7:
12:cc:86:9e:22:65:31:21:5c:4b:7e:0e:f4:08:62:96:48:be:
08:2f:62:66:6f:17:d5:e8:50:51:00:62:c5:30:b9:76:0c:50:
d3:df:22:78:92:7b:9a:34:7d:7e:a9:4a:b2:c8:5c:6d:60:3b:
ec:e2:9d:36:cd:7b:37:78:6c:3f:1d:be:ec:3f:93:38:23:8b:
f4:e1:71:6a:fe:7f:31:d6:a9:0d:6d:48:5f:75:e7:cd:20:ff:
56:9f:c7:c2:9a:08:4e:60:68:73:c3:f0:7e:37:c0:52:e0:8e:
9d:f1:c0:2f:81:3f:6c:a0:b9:2f:1c:2d:eb:82:92:e1:46:24:
41:54:47:e2:9e:e6:f2:1f:72:c7:27:e4:d8:af:3c:44:f5:23:
69:4a:8b:fe:10:45:a0:c4:e5:8a:8b:f7:b7:d9:f4:b9:0e:ab:
c8:31:d6:a1:59:34:02:ea:50:72:5a:5a:3e:d3:6b:16:a3:19:
65:0c:a9:5e:27:4a:3f:72:ff:0f:6c:25:4b:6f:50:e3:9d:bf:
8b:b4:3c:60:8d:c6:fa:11:ce:d3:50:09:0d:4b:54:de:66:61:
1a:29:f8:68:e9:5c:35:31:73:7f:b3:71:8f:87:35:82:42:d8:
c4:d3:f8:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 02:30:31 2025 by rpki-client