Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/z0lqQxwXbgJoY0r71pyoPjBm6Aw.roa
File: z0lqQxwXbgJoY0r71pyoPjBm6Aw.roa (raw, json)
Hash identifier: jn5Q1X/9jWWqC0NdOxVWa0J8K3w6If4Wz0dYP3bdGfQ=
Subject key identifier: CF:49:6A:43:1C:17:6E:02:68:63:4A:FB:D6:9C:A8:3E:30:66:E8:0C
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 019472AED0265C38EA36CD03A165577B6982
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/z0lqQxwXbgJoY0r71pyoPjBm6Aw.roa
Signing time: Fri 17 Jan 2025 05:14:06 +0000
ROA not before: Fri 17 Jan 2025 05:14:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 43260
IP address blocks: 5.83.129.0/24 maxlen: 24
5.175.138.0/24 maxlen: 24
87.239.130.0/24 maxlen: 24
87.239.131.0/24 maxlen: 24
89.106.69.0/24 maxlen: 24
94.103.164.0/24 maxlen: 24
94.249.153.0/24 maxlen: 24
94.249.158.0/24 maxlen: 24
94.249.195.0/24 maxlen: 24
94.249.212.0/24 maxlen: 24
94.249.214.0/24 maxlen: 24
94.249.215.0/24 maxlen: 24
94.249.237.0/24 maxlen: 24
95.215.34.0/24 maxlen: 24
178.18.144.0/24 maxlen: 24
185.13.156.0/24 maxlen: 24
185.13.159.0/24 maxlen: 24
185.47.143.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 17 Jan 2025 14:12:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:72:ae:d0:26:5c:38:ea:36:cd:03:a1:65:57:7b:69:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Jan 17 05:14:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=cf496a431c176e0268634afbd69ca83e3066e80c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:cd:e4:3f:79:47:52:c4:29:fb:9e:02:7d:4a:
0e:61:7c:08:db:f0:53:9a:20:7a:03:1b:0b:d0:77:
6a:f9:98:83:70:b2:97:d3:ab:fd:a0:21:8a:d3:11:
5e:c9:03:9c:df:e5:ad:19:35:4e:11:6a:d7:6c:0c:
63:6a:44:c9:02:56:c1:54:bc:e9:ea:8e:e2:70:85:
af:9b:0e:0b:2e:6f:5c:1e:91:51:ec:7e:20:a9:3f:
62:72:47:4b:73:7b:52:d8:a8:20:4b:09:a8:ae:8e:
72:66:35:0c:c7:8e:a7:00:20:35:81:31:05:ab:d1:
71:c2:36:2f:1c:59:13:df:35:77:2a:50:12:f3:a4:
47:c9:37:5b:2d:f6:a9:e0:73:30:c3:5b:24:36:3c:
b2:d2:38:bb:e4:1d:45:59:33:cb:1c:da:e8:90:44:
19:d0:04:eb:95:12:fa:45:4c:94:54:f9:a4:e0:99:
6a:0b:ff:ca:8a:aa:1d:13:76:26:4c:e0:71:b5:85:
4b:5e:82:c6:d0:a0:6e:aa:c2:22:25:90:c8:a0:63:
ac:5f:6b:b3:18:cb:04:97:ed:a1:a0:9d:44:47:f4:
0b:1a:53:e0:45:41:b0:b0:56:bd:8d:d1:04:c6:44:
dc:bc:61:47:1b:6e:40:e4:96:fa:e3:a0:b6:10:22:
eb:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:49:6A:43:1C:17:6E:02:68:63:4A:FB:D6:9C:A8:3E:30:66:E8:0C
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/z0lqQxwXbgJoY0r71pyoPjBm6Aw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.129.0/24
5.175.138.0/24
87.239.130.0/23
89.106.69.0/24
94.103.164.0/24
94.249.153.0/24
94.249.158.0/24
94.249.195.0/24
94.249.212.0/24
94.249.214.0/23
94.249.237.0/24
95.215.34.0/24
178.18.144.0/24
185.13.156.0/24
185.13.159.0/24
185.47.143.0/24
Signature Algorithm: sha256WithRSAEncryption
ec:d6:e0:f5:2a:82:2b:b0:60:8b:1e:4e:23:95:a5:39:f7:06:
d3:72:cd:34:de:18:71:94:6c:2d:37:21:59:a7:94:e5:04:f3:
2b:dd:a5:65:d0:c6:8b:76:b8:f9:ce:ac:11:f8:89:83:b2:bf:
bd:e3:41:d7:2f:e4:86:8e:5f:8b:72:da:74:95:3f:f0:f5:2e:
8e:82:b7:4d:fa:91:b7:04:06:8a:a3:61:f1:9c:08:25:7d:8c:
9e:fc:f0:60:d7:ce:c6:95:0d:19:c6:ed:ea:5f:a4:2a:0a:0c:
97:37:cc:c3:dc:34:17:ae:5b:b8:7c:be:3b:a6:61:d5:fb:59:
14:91:3e:85:3c:78:ae:b9:83:fe:4a:0a:0f:0a:5a:ce:f3:a1:
41:27:21:41:23:26:ce:41:1e:63:7c:13:db:d9:f5:71:c6:ae:
3d:09:17:25:c1:d9:a5:28:3d:47:bd:40:03:96:ce:3a:ad:d8:
b1:8f:8a:0e:47:ba:9c:40:8b:5b:ba:f4:fc:2c:de:3c:be:8d:
b1:9b:03:3b:6c:da:f5:bf:a1:3f:04:c8:9e:8a:05:96:5e:6c:
ce:ee:63:26:b5:1e:17:c7:e3:ab:01:08:53:6c:44:ff:0e:32:
20:1e:a9:58:cb:ea:95:cd:20:2c:d8:7e:36:fb:63:1b:ec:92:
be:b0:04:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 03:16:05 2025 by rpki-client