Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/j3W1fLYpdrEhJeRVtBQMe79kWGw.roa
File: j3W1fLYpdrEhJeRVtBQMe79kWGw.roa (raw, json)
Hash identifier: 9hEDzbNbh8LoSCzX6GJt4Wc4A0SuQcUAgCGR9+fm3Ac=
Subject key identifier: 8F:75:B5:7C:B6:29:76:B1:21:25:E4:55:B4:14:0C:7B:BF:64:58:6C
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 01956A3DA65EC46AD7D744EFC5CCD6EDC0E9
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/j3W1fLYpdrEhJeRVtBQMe79kWGw.roa
Signing time: Thu 06 Mar 2025 06:56:20 +0000
ROA not before: Thu 06 Mar 2025 06:56:20 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 58212
IP address blocks: 5.83.150.0/24 maxlen: 24
5.175.142.0/24 maxlen: 24
5.175.220.0/24 maxlen: 24
5.231.82.0/24 maxlen: 24
77.90.7.0/24 maxlen: 24
77.90.39.0/24 maxlen: 24
77.90.41.0/24 maxlen: 24
77.90.52.0/24 maxlen: 24
77.90.58.0/24 maxlen: 24
89.106.70.0/24 maxlen: 24
89.144.25.0/24 maxlen: 24
89.144.34.0/24 maxlen: 24
89.144.35.0/24 maxlen: 24
89.144.60.0/24 maxlen: 24
94.249.212.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 07 Mar 2025 05:07:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:6a:3d:a6:5e:c4:6a:d7:d7:44:ef:c5:cc:d6:ed:c0:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Mar 6 06:56:20 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8f75b57cb62976b12125e455b4140c7bbf64586c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:e3:c5:7b:e6:73:a1:44:75:8a:85:f6:e9:b7:
72:97:1e:2e:41:aa:84:a1:d2:45:82:5f:d0:ac:15:
ae:0d:df:f9:59:95:ac:91:de:6f:d7:87:ce:bd:da:
27:09:84:57:c2:0d:e7:71:a4:49:bb:d1:cb:e3:c3:
e3:28:bc:f6:e1:ad:10:ac:19:1b:7e:a9:b1:6a:b5:
68:15:e1:94:66:fc:b5:0a:68:16:04:c7:84:23:14:
42:71:97:6b:d6:19:75:5f:7e:0b:f6:18:a9:1c:ac:
18:6a:37:00:63:67:5d:16:8d:54:32:c7:2e:bd:d2:
9f:50:f3:65:71:7f:62:57:e4:14:c5:ec:27:7b:8c:
87:fa:a4:f8:9b:a6:6a:c6:cc:eb:9c:da:bd:01:d3:
c9:67:8c:4b:6c:bd:af:46:0d:b7:4f:aa:0d:2b:ba:
67:3f:9b:a3:8d:91:53:c4:67:31:b5:09:6c:0d:44:
e8:0e:3d:2c:1f:ad:dd:ca:9f:68:16:98:12:60:e5:
99:94:af:1e:e3:bc:c3:8c:89:4c:26:f1:e6:f6:d2:
1e:e4:77:e4:cb:a8:7a:1e:64:5f:3d:4c:30:c1:54:
46:23:2a:b2:f0:33:34:38:bb:1a:92:d9:48:6f:4b:
83:47:b6:08:9c:4f:46:f8:cd:ab:7c:27:2f:6d:67:
97:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:75:B5:7C:B6:29:76:B1:21:25:E4:55:B4:14:0C:7B:BF:64:58:6C
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/j3W1fLYpdrEhJeRVtBQMe79kWGw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.150.0/24
5.175.142.0/24
5.175.220.0/24
5.231.82.0/24
77.90.7.0/24
77.90.39.0/24
77.90.41.0/24
77.90.52.0/24
77.90.58.0/24
89.106.70.0/24
89.144.25.0/24
89.144.34.0/23
89.144.60.0/24
94.249.212.0/24
Signature Algorithm: sha256WithRSAEncryption
36:45:c8:46:7b:d8:83:10:c2:93:7f:6f:67:9e:b6:cf:86:1e:
aa:d3:22:c9:07:fe:c3:fc:fc:cf:c8:e9:61:b9:28:5f:ce:52:
d9:99:0a:0f:e5:55:b6:72:5f:3f:6b:ce:d4:d8:37:cb:f6:66:
f3:d4:34:72:aa:a0:bc:66:2a:3e:e2:af:49:db:49:e1:b0:a7:
73:a0:24:c8:5c:74:28:5f:0c:69:0a:5a:8e:72:67:32:c8:88:
c2:51:97:2a:c1:8d:d9:7d:a1:7c:b5:1a:50:40:4b:82:f1:95:
3b:a1:2d:4e:73:04:b4:4e:e9:e1:86:d4:a1:3b:87:45:46:e2:
da:0f:98:3c:21:0e:7b:77:5f:9b:58:5d:04:9b:5e:aa:a7:c9:
dd:16:14:b1:5f:4c:fb:d7:a6:bf:72:a8:4a:98:eb:c8:55:90:
fe:89:ba:ca:ae:68:fc:02:28:71:b9:e6:ac:53:95:38:95:bb:
4c:e7:13:77:13:87:02:a6:96:46:d2:9f:0b:95:7f:fb:55:69:
94:1f:32:73:61:40:a9:ed:b3:d9:83:20:9e:0f:8a:e9:04:a9:
27:28:c7:52:7a:24:b7:ef:e1:4d:c7:af:f0:a7:f5:c2:1e:25:
6b:41:4b:7c:31:e7:f4:fb:5e:5b:1c:d3:fb:25:48:f2:3a:f7:
72:04:c8:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 03:16:01 2025 by rpki-client