Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/xg4wr_Amh7K7-Js7VoOEOaQFDDo.roa
File: xg4wr_Amh7K7-Js7VoOEOaQFDDo.roa (raw, json)
Hash identifier: yNZ0i+xZ0D15hCIAzaTtdvLeMLHaPmUKco35QjJcJts=
Subject key identifier: C6:0E:30:AF:F0:26:87:B2:BB:F8:9B:3B:56:83:84:39:A4:05:0C:3A
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 0194AF19BC020960E7BB59015694EFD950A4
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/xg4wr_Amh7K7-Js7VoOEOaQFDDo.roa
Signing time: Tue 28 Jan 2025 22:48:06 +0000
ROA not before: Tue 28 Jan 2025 22:48:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 43260
IP address blocks: 5.83.129.0/24 maxlen: 24
5.175.138.0/24 maxlen: 24
77.90.54.0/24 maxlen: 24
87.239.131.0/24 maxlen: 24
89.106.69.0/24 maxlen: 24
94.103.163.0/24 maxlen: 24
94.103.164.0/24 maxlen: 24
94.249.148.0/24 maxlen: 24
94.249.153.0/24 maxlen: 24
94.249.158.0/24 maxlen: 24
94.249.195.0/24 maxlen: 24
94.249.212.0/24 maxlen: 24
94.249.214.0/24 maxlen: 24
94.249.237.0/24 maxlen: 24
95.215.32.0/24 maxlen: 24
95.215.34.0/24 maxlen: 24
178.18.144.0/24 maxlen: 24
185.13.156.0/24 maxlen: 24
185.13.159.0/24 maxlen: 24
185.47.143.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 29 Jan 2025 03:08:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:af:19:bc:02:09:60:e7:bb:59:01:56:94:ef:d9:50:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Jan 28 22:48:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c60e30aff02687b2bbf89b3b56838439a4050c3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:98:a6:39:3c:79:24:32:6b:50:f1:f2:99:39:
cb:cc:f8:cb:63:55:3a:59:5e:4e:bc:be:d4:02:33:
6a:4d:af:40:66:9c:30:56:70:84:5e:0f:18:f7:5f:
d9:e2:51:46:1b:e0:a4:2c:6f:09:9b:63:11:12:82:
76:22:93:33:7b:9a:f8:47:30:ed:4a:a7:2a:51:30:
8d:8d:c4:94:69:3c:bc:c8:39:a7:7e:b5:93:32:3e:
ce:98:7b:d7:af:b6:2d:73:6d:4c:69:bd:ba:86:e7:
92:bd:8d:f6:ba:6b:ef:f2:02:b7:a0:83:54:42:db:
8a:b2:e7:6f:a1:d7:a6:65:76:a7:46:b0:c7:59:ca:
c0:6c:73:9b:9b:d8:76:05:f3:da:14:a8:16:85:f6:
97:30:d9:09:4a:3d:92:21:3e:db:53:7e:40:28:f2:
0d:b0:c7:79:67:4a:b3:17:bf:f3:07:aa:de:fa:dc:
ec:5e:46:c9:d8:da:b3:1a:ee:f5:d0:6d:f6:72:1f:
9b:bb:a3:02:00:c3:de:3a:e4:f9:19:c8:16:03:63:
e4:a9:a8:09:d4:ac:02:e2:5d:3a:44:c7:e8:ac:10:
74:22:08:4c:4a:60:e1:55:8f:90:14:c7:e3:99:e0:
5e:71:0b:99:68:6c:ad:13:b7:c0:00:f4:44:ff:97:
da:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:0E:30:AF:F0:26:87:B2:BB:F8:9B:3B:56:83:84:39:A4:05:0C:3A
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/xg4wr_Amh7K7-Js7VoOEOaQFDDo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.129.0/24
5.175.138.0/24
77.90.54.0/24
87.239.131.0/24
89.106.69.0/24
94.103.163.0-94.103.164.255
94.249.148.0/24
94.249.153.0/24
94.249.158.0/24
94.249.195.0/24
94.249.212.0/24
94.249.214.0/24
94.249.237.0/24
95.215.32.0/24
95.215.34.0/24
178.18.144.0/24
185.13.156.0/24
185.13.159.0/24
185.47.143.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:6a:20:44:df:04:3c:2d:23:29:87:a5:2e:da:c2:58:73:d5:
ba:94:0a:de:e9:d0:23:ed:6e:a3:e3:15:4b:ce:99:05:48:fd:
1a:eb:c5:06:23:31:b8:5a:2b:14:82:01:0d:94:e6:f1:bc:81:
84:12:c4:0d:55:c6:f0:ea:8f:f2:bd:0b:8e:91:98:ef:ce:69:
9a:87:3e:28:84:b3:23:13:aa:cf:00:bb:90:f0:8b:5d:c4:d4:
51:41:ae:1a:e6:7c:a5:2e:ad:f7:39:0d:e9:ba:31:66:e3:ee:
3d:3f:b2:e5:93:ff:12:88:3d:ea:e0:bf:4c:5d:65:c5:06:b7:
ad:a6:d1:3c:f3:c5:9a:b0:fb:e3:5b:bb:36:e6:71:dd:99:76:
cc:fc:9b:d1:4d:a6:4a:96:14:5f:91:70:ed:e5:87:91:f4:80:
a6:c2:df:70:fc:55:5c:e5:06:e3:ef:f8:47:99:e7:2e:bb:bd:
93:6f:60:d9:4c:0e:8b:36:3f:cb:aa:cf:05:0e:18:25:89:37:
2f:1e:fd:75:ee:de:5b:eb:5e:6b:bf:ef:70:65:fd:c1:f9:b5:
0f:3c:7a:40:06:19:57:1c:7e:82:74:28:55:f7:42:d2:d0:8d:
c4:e5:7f:2d:6c:41:45:2e:e4:65:d9:d5:4d:d7:3a:9f:c7:82:
7a:bd:19:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 02:32:13 2025 by rpki-client