Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/25238c-8eee-4403-9104-9ca947aa665a/1/5txK-j5UyTFMyu409WibvLOezGA.roa
File: 5txK-j5UyTFMyu409WibvLOezGA.roa (raw, json)
Hash identifier: +5R6/svQPc+pQyWmKV93PkyoCRQrwU4moIQ2msxxnTg=
Subject key identifier: E6:DC:4A:FA:3E:54:C9:31:4C:CA:EE:34:F5:68:9B:BC:B3:9E:CC:60
Certificate issuer: /CN=ef401a52e3fde699486e99678dbf48875329c33d
Certificate serial: 0193ED35B46E9FC4D815452E483967C5225C
Authority key identifier: EF:40:1A:52:E3:FD:E6:99:48:6E:99:67:8D:BF:48:87:53:29:C3:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/70AaUuP95plIbplnjb9Ih1Mpwz0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/25238c-8eee-4403-9104-9ca947aa665a/1/5txK-j5UyTFMyu409WibvLOezGA.roa
Signing time: Sun 22 Dec 2024 07:12:19 +0000
ROA not before: Sun 22 Dec 2024 07:12:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 50923
IP address blocks: 5.53.16.0/20 maxlen: 20
5.53.16.0/21 maxlen: 21
5.53.16.0/22 maxlen: 22
5.53.20.0/22 maxlen: 22
5.53.24.0/21 maxlen: 21
5.53.24.0/22 maxlen: 22
5.53.28.0/22 maxlen: 22
5.53.30.0/24 maxlen: 24
37.60.16.0/21 maxlen: 21
37.60.16.0/22 maxlen: 22
37.60.16.0/23 maxlen: 23
37.60.16.0/24 maxlen: 24
37.60.18.0/23 maxlen: 23
37.60.20.0/22 maxlen: 22
37.60.20.0/23 maxlen: 23
37.60.22.0/23 maxlen: 23
37.143.96.0/20 maxlen: 20
37.143.96.0/21 maxlen: 21
37.143.96.0/22 maxlen: 22
37.143.97.0/24 maxlen: 24
37.143.100.0/22 maxlen: 22
37.143.104.0/21 maxlen: 21
37.143.104.0/22 maxlen: 22
37.143.108.0/22 maxlen: 22
178.208.224.0/19 maxlen: 19
178.208.224.0/20 maxlen: 20
178.208.224.0/21 maxlen: 21
178.208.232.0/21 maxlen: 21
178.208.240.0/20 maxlen: 20
178.208.240.0/21 maxlen: 21
178.208.248.0/21 maxlen: 21
185.3.68.0/22 maxlen: 22
185.3.68.0/23 maxlen: 23
185.3.68.0/24 maxlen: 24
185.3.69.0/24 maxlen: 24
185.3.70.0/23 maxlen: 23
185.3.70.0/24 maxlen: 24
185.3.71.0/24 maxlen: 24
2a00:ae40::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 02 Jan 2025 13:50:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:ed:35:b4:6e:9f:c4:d8:15:45:2e:48:39:67:c5:22:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef401a52e3fde699486e99678dbf48875329c33d
Validity
Not Before: Dec 22 07:12:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e6dc4afa3e54c9314ccaee34f5689bbcb39ecc60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:fe:5c:5f:d9:78:9b:35:6b:cd:0f:11:07:4e:
85:04:75:92:e1:01:0c:6b:33:d4:37:06:e6:ed:f8:
40:04:6b:4f:32:7e:95:f3:e5:c8:26:fb:31:60:86:
c1:01:02:b4:af:9d:01:e4:e3:e9:25:3e:2b:1e:3c:
02:9d:46:65:9e:71:f2:46:64:2c:b0:d9:d4:71:66:
c9:b2:98:2b:fc:0c:38:17:11:cb:01:af:0d:31:4f:
a1:07:55:e3:cc:58:51:99:d2:b5:a5:8c:71:8a:4d:
8d:2b:6a:f5:54:e5:20:04:51:8d:1d:52:a8:d3:ca:
d1:f3:47:7c:46:4a:12:95:c1:75:a5:fc:f5:04:a5:
59:e7:cd:38:ca:07:ad:a7:56:7b:71:ce:38:f3:3f:
cd:b2:2f:e7:ec:c3:36:65:ea:6e:04:37:77:eb:d0:
0f:78:e0:e8:9c:1d:0d:3c:f8:dc:bb:41:76:93:51:
40:ee:2c:d8:87:00:dc:35:ad:cf:3f:9f:c5:8e:2c:
cb:5e:dd:46:20:cb:70:df:64:9a:c3:f8:0e:c2:80:
f3:bb:c9:04:bf:ad:b5:44:b4:41:1b:62:f2:39:60:
a5:1e:1e:d8:ab:f6:bb:75:7a:79:30:bd:82:3f:6f:
dc:75:2a:03:87:71:16:f7:7a:c2:51:b3:04:2c:88:
ef:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:DC:4A:FA:3E:54:C9:31:4C:CA:EE:34:F5:68:9B:BC:B3:9E:CC:60
X509v3 Authority Key Identifier:
keyid:EF:40:1A:52:E3:FD:E6:99:48:6E:99:67:8D:BF:48:87:53:29:C3:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/70AaUuP95plIbplnjb9Ih1Mpwz0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/25238c-8eee-4403-9104-9ca947aa665a/1/5txK-j5UyTFMyu409WibvLOezGA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/25238c-8eee-4403-9104-9ca947aa665a/1/70AaUuP95plIbplnjb9Ih1Mpwz0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.53.16.0/20
37.60.16.0/21
37.143.96.0/20
178.208.224.0/19
185.3.68.0/22
IPv6:
2a00:ae40::/32
Signature Algorithm: sha256WithRSAEncryption
79:09:11:3d:af:b2:84:3c:37:77:4b:29:8c:d1:84:14:5c:c0:
73:fc:26:db:e9:76:bd:c7:a9:d0:f9:e3:e7:02:6b:b5:3f:42:
38:ea:24:8f:66:88:36:2f:b6:76:d6:28:ab:95:ac:69:ed:2f:
37:db:54:9a:52:d6:4e:e0:99:57:5d:4b:36:fe:5a:f3:5f:d4:
7e:ab:db:b3:9d:2b:a9:52:85:66:bc:e2:87:4e:99:25:c9:b9:
d5:0f:f9:18:56:34:e3:dd:17:31:24:c4:a3:c2:bf:76:84:e4:
20:f8:f6:2c:6b:9e:bc:42:b7:9b:53:3a:6c:95:a4:cc:4b:eb:
8a:0c:00:7a:71:f5:7a:98:2f:ff:c4:86:ee:b4:e4:e5:b8:32:
8d:55:86:cc:fe:e1:19:fb:27:86:66:f7:3f:be:38:65:d8:72:
c5:fb:70:37:5a:65:1d:84:df:be:8c:32:73:88:42:a9:48:af:
e7:a3:f9:f8:2b:18:a2:88:31:0d:69:9c:c7:e5:dd:0c:5e:ae:
7b:11:01:44:61:26:55:53:19:56:78:56:2e:96:10:60:d4:5c:
1d:81:15:85:5a:0b:77:23:4d:39:41:d1:a0:af:9a:3e:19:25:
59:3a:67:a1:f1:c7:81:b2:52:44:a7:0a:8c:08:7a:78:24:74:
15:b3:22:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 06:45:34 2025 by rpki-client