Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/gve1JTtwNVWHgdbGrAKdqCwRA3I.roa
File: gve1JTtwNVWHgdbGrAKdqCwRA3I.roa (raw, json)
Hash identifier: 0C+of4LhM19j7Ol2HO5jSyhP2Bx/GxwbYDouW7uTaRc=
Subject key identifier: 82:F7:B5:25:3B:70:35:55:87:81:D6:C6:AC:02:9D:A8:2C:11:03:72
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 0195F5110BD5C3C0F4FB81BBA76E2D7BE6D8
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/gve1JTtwNVWHgdbGrAKdqCwRA3I.roa
Signing time: Wed 02 Apr 2025 05:54:49 +0000
ROA not before: Wed 02 Apr 2025 05:54:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 58212
IP address blocks: 5.83.150.0/24 maxlen: 24
5.231.70.0/24 maxlen: 24
5.231.82.0/24 maxlen: 24
77.90.22.0/24 maxlen: 24
77.90.39.0/24 maxlen: 24
77.90.41.0/24 maxlen: 24
77.90.52.0/24 maxlen: 24
77.90.58.0/24 maxlen: 24
89.106.70.0/24 maxlen: 24
89.144.7.0/24 maxlen: 24
89.144.8.0/24 maxlen: 24
89.144.16.0/24 maxlen: 24
89.144.25.0/24 maxlen: 24
89.144.35.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 02 Apr 2025 11:01:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:f5:11:0b:d5:c3:c0:f4:fb:81:bb:a7:6e:2d:7b:e6:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Apr 2 05:54:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=82f7b5253b7035558781d6c6ac029da82c110372
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:f4:24:5b:72:cc:00:22:b5:60:e3:c8:31:b0:
40:e8:b2:64:ff:a6:eb:79:21:4b:d8:8d:58:90:d8:
8e:3a:fc:5b:3b:92:6c:a8:03:d2:09:75:74:6e:d5:
97:54:e7:30:a7:4a:aa:9d:de:6e:e8:e9:c5:8c:87:
36:1d:ba:c3:b2:44:67:74:a1:55:2b:48:95:d2:4f:
97:8d:0f:95:fc:da:58:f8:91:ff:82:d9:e5:f2:6a:
7f:94:f9:dd:d3:f1:9b:6d:63:6d:a1:84:23:e6:a5:
02:fc:b9:ba:b1:b3:49:02:4c:9f:bd:48:94:25:06:
94:b9:a8:58:22:99:5b:06:f5:a0:9e:d9:58:d8:17:
9a:e7:b9:74:20:b3:c9:81:db:04:f3:ea:d8:49:39:
36:9b:83:83:84:6e:35:9c:9b:89:00:92:09:20:4a:
9b:b2:27:9f:a3:67:2c:28:d7:27:87:f6:ff:e8:ac:
40:be:af:8a:a8:d3:70:31:f7:aa:d4:3b:fc:0f:56:
ae:7e:d8:5b:cf:f1:8c:35:fb:7f:42:86:bd:d7:9c:
69:9f:d6:5b:65:a1:7c:95:d9:91:cf:6a:4a:45:90:
d2:dd:7e:5c:80:f1:7e:27:f2:e1:55:b1:9b:85:32:
2b:4e:53:ab:ca:0e:9d:23:f3:33:ff:c1:0c:d5:71:
5f:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:F7:B5:25:3B:70:35:55:87:81:D6:C6:AC:02:9D:A8:2C:11:03:72
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/gve1JTtwNVWHgdbGrAKdqCwRA3I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.150.0/24
5.231.70.0/24
5.231.82.0/24
77.90.22.0/24
77.90.39.0/24
77.90.41.0/24
77.90.52.0/24
77.90.58.0/24
89.106.70.0/24
89.144.7.0-89.144.8.255
89.144.16.0/24
89.144.25.0/24
89.144.35.0/24
Signature Algorithm: sha256WithRSAEncryption
e0:f6:30:68:58:21:c2:96:41:26:04:29:b8:32:a6:7b:eb:7e:
3a:0a:26:df:25:f3:21:7a:a0:4a:f1:ef:b5:eb:ec:ab:71:56:
6f:35:ee:69:c2:d3:62:e6:77:69:9c:6d:8e:33:50:bd:b4:5f:
4e:1f:41:1f:09:2f:23:8e:60:b9:10:97:48:9b:f1:6d:81:d4:
b4:a9:3f:d5:c5:2e:1b:6a:d9:16:b7:56:50:56:b4:cf:50:91:
16:6f:3e:77:e0:e1:dc:3e:c5:13:6d:b7:1a:5d:ba:62:e6:06:
80:6f:ca:a1:77:3a:92:ab:8b:3e:81:03:15:3b:08:52:d7:ff:
d0:5c:a7:fe:00:6c:01:f3:a3:84:d4:0b:b4:58:37:e3:21:e4:
df:26:c3:9a:02:47:af:06:fd:d9:41:cf:e7:2e:62:ff:a0:cc:
27:bb:30:0e:e2:b3:20:25:8b:02:a5:92:e7:c0:9f:83:a2:d3:
0c:cc:74:16:74:59:57:0f:2b:46:92:9f:f8:65:d8:1d:46:a9:
15:48:60:91:46:2a:8c:1d:5e:c4:ad:0c:ce:4e:54:78:6f:05:
8d:dd:ab:7c:dd:20:a5:28:f3:79:b9:67:25:76:9c:fa:91:9c:
66:c3:08:46:e1:23:fe:f2:ce:47:31:2a:63:bf:9d:f1:7f:7e:
22:86:5f:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 02:34:27 2025 by rpki-client