Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/ee9TRkqvnPTGPT871lQIT3tS0Q0.roa
File: ee9TRkqvnPTGPT871lQIT3tS0Q0.roa (raw, json)
Hash identifier: DUqzbC21KddSG8DvXmdX6ZBiZzWaMbdV4WcLC8NZkWo=
Subject key identifier: 79:EF:53:46:4A:AF:9C:F4:C6:3D:3F:3B:D6:54:08:4F:7B:52:D1:0D
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 01951A380FF584299A065B75B3218766EF0D
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/ee9TRkqvnPTGPT871lQIT3tS0Q0.roa
Signing time: Tue 18 Feb 2025 18:00:36 +0000
ROA not before: Tue 18 Feb 2025 18:00:36 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 49581
IP address blocks: 5.83.134.0/24 maxlen: 24
5.83.145.0/24 maxlen: 24
5.175.143.0/24 maxlen: 24
5.231.25.0/24 maxlen: 24
5.231.26.0/24 maxlen: 24
89.106.71.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 03 Mar 2025 18:26:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:1a:38:0f:f5:84:29:9a:06:5b:75:b3:21:87:66:ef:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Feb 18 18:00:36 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=79ef53464aaf9cf4c63d3f3bd654084f7b52d10d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:e8:12:4f:3c:59:b0:e4:91:fa:11:f9:e7:11:
71:d9:09:52:e5:74:95:a2:c7:24:c2:60:f4:70:47:
79:a2:8b:43:f8:94:eb:d1:86:e3:d3:0c:cc:a7:b2:
d6:82:f6:d5:c9:68:ac:2c:da:a9:d3:e2:d0:71:7f:
ce:c1:7a:84:dd:25:c4:81:f1:2f:ba:21:a4:77:53:
cb:aa:ac:1f:d9:65:7a:79:78:13:d2:d5:f6:b5:bf:
d5:e3:65:ed:91:36:da:c7:d8:4a:eb:68:c4:d7:e5:
71:df:3b:ed:d2:87:7f:66:47:4a:71:65:db:d7:9d:
c5:d3:66:bf:45:5c:c5:15:f6:47:81:1a:da:36:c1:
d8:29:29:a3:6f:4a:02:2b:80:f6:3d:04:a5:d3:a3:
5b:6f:96:02:ba:6f:2c:47:8c:9a:9c:28:97:e7:4f:
53:07:b0:0d:25:c5:cd:5a:c1:2e:d0:43:19:bd:59:
52:4e:fb:fd:8b:cd:a4:36:9d:78:e0:ac:ea:ac:4b:
82:b9:5c:ef:91:25:b3:d5:83:d3:d1:f2:7b:6c:c5:
fb:e1:d4:ca:7c:66:4a:cd:97:88:98:f9:f2:f7:a5:
5a:19:05:0f:8d:f0:24:83:0f:cd:53:99:5f:59:ee:
5c:c6:10:b1:e2:bc:b3:48:c6:aa:01:73:a6:ee:0c:
0c:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:EF:53:46:4A:AF:9C:F4:C6:3D:3F:3B:D6:54:08:4F:7B:52:D1:0D
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/ee9TRkqvnPTGPT871lQIT3tS0Q0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.134.0/24
5.83.145.0/24
5.175.143.0/24
5.231.25.0-5.231.26.255
89.106.71.0/24
Signature Algorithm: sha256WithRSAEncryption
c8:d9:bb:5e:33:6b:3b:68:d0:15:9e:99:fe:bd:e0:25:c0:16:
96:c7:2d:d6:cf:48:b6:1a:0c:67:10:b2:12:27:1a:9f:4d:c1:
f3:f9:7d:ab:5e:61:6e:e7:fb:4d:e1:4b:94:3a:96:2c:a2:bb:
6f:02:29:c7:a9:9d:59:49:90:bf:71:12:08:51:2a:2c:41:49:
60:26:7d:0b:de:e3:5e:eb:4a:28:06:54:8b:cd:69:9c:40:8c:
c1:6a:84:63:9a:9c:1f:30:02:ad:51:01:8e:a4:fa:ed:70:66:
50:b5:cc:2d:14:ff:5f:e8:22:50:ad:59:3f:06:49:ff:ec:0f:
42:6c:9b:0f:9d:f8:3b:93:dd:1a:65:74:bf:cb:30:c9:fa:ce:
37:93:82:c1:b4:8e:00:e8:a5:4d:31:9b:25:8b:db:ab:5e:48:
54:ea:85:4a:a6:48:05:e3:89:60:16:3d:dc:23:27:76:6b:12:
a7:ec:ad:2a:cb:bc:4f:8a:77:3f:da:c9:d5:da:80:d4:b1:46:
81:f8:88:e8:a2:c8:4d:0d:fa:0c:6b:c7:66:dd:c3:65:a5:c7:
e6:1b:34:94:84:09:a4:86:88:61:0a:fb:90:a4:00:24:c3:71:
33:e0:50:c2:93:80:38:6a:e7:d0:b6:f4:79:e3:37:4c:6a:d1:
36:ef:17:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 03:20:24 2025 by rpki-client