Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/o0BxeIr4tiXQfazPWllAEtZI9Ao.roa
File: o0BxeIr4tiXQfazPWllAEtZI9Ao.roa (raw, json)
Hash identifier: /tKaXgzsGiU9+xaYvFwoA6saiF2ZaBdg8C2CKYvbGeo=
Subject key identifier: A3:40:71:78:8A:F8:B6:25:D0:7D:AC:CF:5A:59:40:12:D6:48:F4:0A
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 0194F3674CFEDEFACB5722DDD7FCBFA75446
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/o0BxeIr4tiXQfazPWllAEtZI9Ao.roa
Signing time: Tue 11 Feb 2025 05:07:00 +0000
ROA not before: Tue 11 Feb 2025 05:07:00 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 43260
IP address blocks: 5.83.129.0/24 maxlen: 24
77.90.54.0/24 maxlen: 24
87.239.131.0/24 maxlen: 24
89.106.69.0/24 maxlen: 24
94.103.163.0/24 maxlen: 24
94.249.153.0/24 maxlen: 24
94.249.158.0/24 maxlen: 24
94.249.195.0/24 maxlen: 24
94.249.214.0/24 maxlen: 24
94.249.215.0/24 maxlen: 24
94.249.237.0/24 maxlen: 24
95.215.32.0/24 maxlen: 24
95.215.34.0/24 maxlen: 24
178.18.144.0/24 maxlen: 24
185.13.156.0/24 maxlen: 24
185.13.159.0/24 maxlen: 24
185.47.143.0/24 maxlen: 24
217.69.166.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Feb 2025 18:02:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:f3:67:4c:fe:de:fa:cb:57:22:dd:d7:fc:bf:a7:54:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Feb 11 05:07:00 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a34071788af8b625d07daccf5a594012d648f40a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:44:82:4f:b2:06:e9:53:57:16:4b:30:c3:a0:
c4:71:2d:07:93:83:9a:cb:0f:92:90:a0:0a:25:da:
ef:c1:c0:86:ac:7f:0d:d2:ef:14:26:2c:c3:fb:3d:
67:8f:e7:df:9b:09:ee:6f:4d:16:48:5c:ba:9d:8e:
e8:f2:5d:53:91:79:f3:b5:18:ec:9e:71:11:1f:46:
ac:e1:c9:dd:ba:42:68:ca:5c:7f:b1:ed:28:08:7d:
4e:f4:d1:6c:7e:d1:2c:07:57:3b:4c:a9:bb:d4:8a:
2b:7b:89:09:83:e1:c7:33:72:07:92:2a:33:bf:7a:
30:94:39:92:94:8a:80:0a:7c:3a:6a:a5:5d:b4:54:
9c:75:d1:00:47:98:b3:3e:3a:4b:c6:43:2e:82:48:
50:ad:d8:a5:fb:78:78:a6:76:91:f3:44:48:58:82:
e0:bf:4b:e6:1d:f7:13:a2:2b:aa:27:20:80:32:0a:
3d:1e:78:e4:7f:ca:4f:f8:64:ca:36:03:e9:05:3b:
7a:05:4c:5b:3e:6b:87:e2:f2:0c:4d:1e:9b:69:39:
d0:98:6d:09:35:6a:69:2f:5b:71:79:ca:13:06:e1:
36:e0:47:4d:6a:29:76:5b:40:9a:63:94:c0:e3:dc:
58:74:b6:37:8e:87:3b:5e:1a:f7:aa:9b:bd:a7:00:
64:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:40:71:78:8A:F8:B6:25:D0:7D:AC:CF:5A:59:40:12:D6:48:F4:0A
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/o0BxeIr4tiXQfazPWllAEtZI9Ao.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.129.0/24
77.90.54.0/24
87.239.131.0/24
89.106.69.0/24
94.103.163.0/24
94.249.153.0/24
94.249.158.0/24
94.249.195.0/24
94.249.214.0/23
94.249.237.0/24
95.215.32.0/24
95.215.34.0/24
178.18.144.0/24
185.13.156.0/24
185.13.159.0/24
185.47.143.0/24
217.69.166.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:9e:04:18:32:55:63:f8:28:15:f3:ad:0d:31:63:d2:f1:f3:
32:f2:3e:5e:6e:73:eb:8c:a4:a4:43:77:51:ad:53:a4:26:1a:
47:c4:14:e2:d2:d9:80:11:ab:a0:91:25:02:90:8e:60:c3:7a:
ec:c6:11:37:48:4b:99:51:de:63:06:fa:e8:79:00:bf:e1:26:
29:91:65:c3:4e:48:17:37:43:3a:d7:78:70:61:a8:25:76:c8:
a5:66:52:3c:e3:fa:b5:83:c7:cb:97:85:dc:ef:99:d2:da:26:
7d:3e:b8:61:a4:2d:62:94:73:10:07:a2:9f:bc:54:88:a1:eb:
25:e3:5e:17:ce:95:e8:2b:64:b3:e7:33:2c:f7:de:9f:9c:e4:
21:6b:07:c1:27:37:cc:f4:e2:48:32:b7:db:ba:63:68:10:df:
de:c4:3a:e1:04:2b:c3:9e:a3:0f:75:2d:84:bd:cf:47:ff:53:
c0:9f:6f:36:8a:8d:d0:aa:17:94:d9:dd:f1:c4:65:00:3b:a1:
9a:d7:1c:06:7c:65:28:ff:17:d9:15:aa:28:c9:1a:20:6b:4b:
fc:07:7a:4e:b8:75:07:c9:21:64:a2:0a:de:28:ec:f4:8a:7e:
21:d2:55:1d:ba:23:c7:74:7e:8d:41:74:bd:a0:55:f0:e5:ae:
5b:21:16:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 03:20:38 2025 by rpki-client