Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/uz0yem3DiZdzoZPRQ_1e6X_7t4E.roa
File: uz0yem3DiZdzoZPRQ_1e6X_7t4E.roa (raw, json)
Hash identifier: hB83WXxh0re5J8940lA3wF9gN2v5iTGic0Jfo3wtohY=
Subject key identifier: BB:3D:32:7A:6D:C3:89:97:73:A1:93:D1:43:FD:5E:E9:7F:FB:B7:81
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 0195DF3BC176026B79489BCD7E81D336CB7D
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/uz0yem3DiZdzoZPRQ_1e6X_7t4E.roa
Signing time: Sat 29 Mar 2025 00:09:50 +0000
ROA not before: Sat 29 Mar 2025 00:09:50 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 43260
IP address blocks: 5.83.129.0/24 maxlen: 24
5.175.138.0/24 maxlen: 24
77.90.54.0/24 maxlen: 24
87.239.131.0/24 maxlen: 24
94.103.163.0/24 maxlen: 24
94.249.195.0/24 maxlen: 24
94.249.215.0/24 maxlen: 24
95.215.32.0/24 maxlen: 24
95.215.34.0/24 maxlen: 24
178.18.144.0/24 maxlen: 24
185.13.156.0/24 maxlen: 24
217.69.166.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 29 Mar 2025 05:16:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:df:3b:c1:76:02:6b:79:48:9b:cd:7e:81:d3:36:cb:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Mar 29 00:09:50 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=bb3d327a6dc3899773a193d143fd5ee97ffbb781
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:1d:4f:ac:20:35:e2:75:fb:35:02:64:50:79:
e5:3c:8a:42:b9:07:08:31:fb:89:ba:9e:bb:81:58:
bd:6a:1f:2c:b1:6e:e3:e2:21:62:e1:14:2b:87:e7:
b0:e9:77:2b:4e:fb:73:98:8e:9c:3a:58:3e:f1:9e:
8d:78:f9:0a:4b:ad:0e:ed:6e:1f:59:fd:1f:d3:6b:
d8:54:fd:b0:e1:dc:65:00:8b:45:c4:47:f2:15:3e:
eb:e2:8a:5a:25:3f:91:3f:6b:8f:bc:b4:15:a2:dd:
68:05:24:20:c1:cf:ac:67:8f:3a:82:ac:13:0d:61:
2f:94:cd:0d:f5:7e:cb:33:d4:a7:6d:ee:66:ed:b2:
2c:44:39:31:97:43:17:97:2d:5f:de:68:a6:b0:69:
64:f2:36:9a:25:53:8c:a9:3d:72:a3:1a:7d:e9:19:
88:9e:03:c8:06:fe:75:e8:29:9a:a9:c3:4f:3f:19:
29:63:80:47:26:fc:4f:db:5c:2c:6e:67:de:1a:4e:
c8:da:87:71:4e:d8:02:94:aa:30:75:e5:e3:47:aa:
e3:86:f1:80:14:12:60:d4:12:f2:31:c8:11:45:ed:
25:77:f3:40:8f:e4:87:23:93:3a:ca:b0:5e:79:dc:
5a:3c:d3:21:87:cc:06:59:fd:b8:d1:ea:d6:a7:f7:
d5:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:3D:32:7A:6D:C3:89:97:73:A1:93:D1:43:FD:5E:E9:7F:FB:B7:81
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/uz0yem3DiZdzoZPRQ_1e6X_7t4E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.129.0/24
5.175.138.0/24
77.90.54.0/24
87.239.131.0/24
94.103.163.0/24
94.249.195.0/24
94.249.215.0/24
95.215.32.0/24
95.215.34.0/24
178.18.144.0/24
185.13.156.0/24
217.69.166.0/24
Signature Algorithm: sha256WithRSAEncryption
64:b8:49:1e:83:d5:9f:27:bb:ad:91:22:86:71:d6:64:b0:69:
32:b7:72:d4:1e:7a:0b:9d:98:40:02:4a:b5:6f:33:01:68:00:
10:2e:0d:4e:6f:bc:f6:45:ce:ce:0f:1e:54:7f:ce:00:29:18:
b3:d5:60:3c:28:81:16:12:39:ef:6d:69:ce:86:fb:ab:ca:47:
43:b3:56:66:03:34:ca:38:07:f5:a2:d5:f5:da:a6:da:a2:1f:
ca:81:f6:88:5b:ae:15:90:fb:e6:a8:86:50:ad:08:6e:dc:63:
9c:ba:6d:b4:48:c0:7d:29:5b:cb:b1:8e:5e:54:4e:5a:45:98:
00:bb:12:32:a0:c6:1b:7e:c6:51:9b:0b:c9:c4:68:8f:50:2d:
da:59:40:9e:59:66:0d:e3:22:4f:89:e2:23:5a:48:9c:a2:f1:
a0:58:89:8d:55:c6:02:e8:d8:35:e6:e8:e5:10:a2:51:2a:fc:
4d:84:8c:78:65:10:ab:ff:43:d4:b0:d6:73:cf:44:e5:11:4c:
c3:02:01:1d:e1:fd:7d:6c:42:d2:f4:58:d6:51:88:81:de:d9:
d1:dd:b2:54:81:66:89:0a:cf:37:6b:59:34:a4:8f:81:4f:ca:
6d:dd:8e:1a:c2:71:2c:c6:53:e7:4f:fe:1a:4c:9e:97:1f:96:
9a:27:b3:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 07:00:56 2025 by rpki-client