Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/3b51b8-10c6-438b-a120-15f13e3f7d85/1/seHlK4yoKBdb62tkkuXaLzV2yfg.roa
File: seHlK4yoKBdb62tkkuXaLzV2yfg.roa (raw, json)
Hash identifier: ScsG6hNfwDAK7ZOi0XZluqhuLOKsE23/VLUsA8TDRFE=
Subject key identifier: B1:E1:E5:2B:8C:A8:28:17:5B:EB:6B:64:92:E5:DA:2F:35:76:C9:F8
Certificate issuer: /CN=d82cb43ca3c0c57816cee360478d0cf882207fd2
Certificate serial: 019423691807E6F5293A1E3F704F50C7C76B
Authority key identifier: D8:2C:B4:3C:A3:C0:C5:78:16:CE:E3:60:47:8D:0C:F8:82:20:7F:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2Cy0PKPAxXgWzuNgR40M-IIgf9I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/3b51b8-10c6-438b-a120-15f13e3f7d85/1/seHlK4yoKBdb62tkkuXaLzV2yfg.roa
Signing time: Wed 01 Jan 2025 19:47:57 +0000
ROA not before: Wed 01 Jan 2025 19:47:57 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 57858
IP address blocks: 5.34.240.0/24 maxlen: 24
5.34.241.0/24 maxlen: 24
5.34.242.0/24 maxlen: 24
5.34.243.0/24 maxlen: 24
5.34.244.0/24 maxlen: 24
5.34.245.0/24 maxlen: 24
5.34.246.0/24 maxlen: 24
5.34.247.0/24 maxlen: 24
5.153.233.0/24 maxlen: 24
5.153.234.0/24 maxlen: 24
5.153.235.0/24 maxlen: 24
5.153.237.0/24 maxlen: 24
5.153.238.0/24 maxlen: 24
5.157.0.0/24 maxlen: 24
5.157.1.0/24 maxlen: 24
5.157.5.0/24 maxlen: 24
5.157.7.0/24 maxlen: 24
5.157.9.0/24 maxlen: 24
5.157.10.0/24 maxlen: 24
5.157.12.0/24 maxlen: 24
5.157.15.0/24 maxlen: 24
5.157.16.0/24 maxlen: 24
5.157.18.0/24 maxlen: 24
5.157.20.0/24 maxlen: 24
5.157.25.0/24 maxlen: 24
5.157.28.0/24 maxlen: 24
5.157.35.0/24 maxlen: 24
5.157.36.0/24 maxlen: 24
5.157.39.0/24 maxlen: 24
5.157.40.0/24 maxlen: 24
5.157.44.0/24 maxlen: 24
5.157.46.0/24 maxlen: 24
5.157.47.0/24 maxlen: 24
5.157.48.0/24 maxlen: 24
5.157.49.0/24 maxlen: 24
5.157.50.0/24 maxlen: 24
5.157.52.0/24 maxlen: 24
5.157.54.0/24 maxlen: 24
37.72.187.0/24 maxlen: 24
37.72.188.0/24 maxlen: 24
37.72.189.0/24 maxlen: 24
37.72.190.0/24 maxlen: 24
37.72.191.0/24 maxlen: 24
37.203.208.0/24 maxlen: 24
37.203.210.0/24 maxlen: 24
37.203.211.0/24 maxlen: 24
37.203.212.0/24 maxlen: 24
37.203.213.0/24 maxlen: 24
37.203.214.0/24 maxlen: 24
46.29.248.0/23 maxlen: 23
46.29.250.0/23 maxlen: 23
46.29.252.0/24 maxlen: 24
46.29.253.0/24 maxlen: 24
46.29.254.0/24 maxlen: 24
46.29.255.0/24 maxlen: 24
91.108.176.0/24 maxlen: 24
91.108.177.0/24 maxlen: 24
91.108.178.0/24 maxlen: 24
91.108.179.0/24 maxlen: 24
91.108.180.0/24 maxlen: 24
91.108.181.0/24 maxlen: 24
91.108.182.0/24 maxlen: 24
130.185.152.0/24 maxlen: 24
130.185.154.0/24 maxlen: 24
130.185.155.0/24 maxlen: 24
130.185.156.0/24 maxlen: 24
130.185.157.0/24 maxlen: 24
130.185.158.0/24 maxlen: 24
130.185.159.0/24 maxlen: 24
151.237.176.0/24 maxlen: 24
151.237.177.0/24 maxlen: 24
151.237.178.0/24 maxlen: 24
151.237.179.0/24 maxlen: 24
151.237.180.0/24 maxlen: 24
151.237.181.0/24 maxlen: 24
151.237.182.0/24 maxlen: 24
151.237.183.0/24 maxlen: 24
151.237.184.0/24 maxlen: 24
151.237.185.0/24 maxlen: 24
151.237.187.0/24 maxlen: 24
151.237.189.0/24 maxlen: 24
151.237.190.0/24 maxlen: 24
151.237.191.0/24 maxlen: 24
176.61.136.0/24 maxlen: 24
176.61.137.0/24 maxlen: 24
176.61.138.0/24 maxlen: 24
176.61.139.0/24 maxlen: 24
176.61.140.0/24 maxlen: 24
176.61.141.0/24 maxlen: 24
176.61.142.0/24 maxlen: 24
176.61.143.0/24 maxlen: 24
178.216.48.0/24 maxlen: 24
178.216.49.0/24 maxlen: 24
178.216.50.0/24 maxlen: 24
178.216.51.0/24 maxlen: 24
178.216.52.0/24 maxlen: 24
178.216.53.0/24 maxlen: 24
178.216.54.0/24 maxlen: 24
178.216.55.0/24 maxlen: 24
185.3.132.0/24 maxlen: 24
185.3.133.0/24 maxlen: 24
185.3.134.0/24 maxlen: 24
185.3.135.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 30 Mar 2025 15:21:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:69:18:07:e6:f5:29:3a:1e:3f:70:4f:50:c7:c7:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d82cb43ca3c0c57816cee360478d0cf882207fd2
Validity
Not Before: Jan 1 19:47:57 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b1e1e52b8ca828175beb6b6492e5da2f3576c9f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:47:42:a7:7b:6c:78:1d:b9:8f:26:5d:cb:e8:
bf:94:2d:3e:49:15:e7:a1:13:d8:7b:b8:b9:c8:3d:
df:d5:ad:b4:41:cb:50:12:c2:d0:a9:97:98:58:55:
6f:f3:46:99:4d:82:96:67:e7:d7:65:32:c6:ad:37:
6f:a6:29:36:8b:50:22:35:ac:65:08:a7:94:d1:68:
d1:f1:f1:3e:98:3a:07:a2:24:11:12:5d:64:c2:7d:
54:8d:23:d1:61:a8:90:ac:35:c0:50:02:21:62:6e:
36:18:a0:d5:d7:96:b3:47:ec:71:eb:82:d6:6c:da:
15:b1:16:cb:69:a7:8e:89:32:5b:4e:e3:10:52:c5:
e3:93:61:be:5e:31:62:47:e5:b3:e4:1a:8f:7c:30:
16:97:9d:f9:ea:70:3c:1f:84:68:32:49:ff:53:56:
37:76:b6:9d:75:ef:28:8f:b4:3e:0f:0a:28:6a:f9:
ca:4a:df:a6:6e:8e:d2:72:b7:29:82:45:64:8c:cd:
60:b9:59:2b:dc:60:32:fc:7d:ed:a6:05:23:0f:b2:
6c:f2:45:61:7f:0c:3e:24:84:1d:fa:ae:dc:1b:28:
a4:12:be:8d:22:5c:b8:0d:aa:63:69:8d:39:9c:19:
a9:d2:26:6d:be:0d:a2:9b:16:8b:d4:7e:89:9b:ba:
ff:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:E1:E5:2B:8C:A8:28:17:5B:EB:6B:64:92:E5:DA:2F:35:76:C9:F8
X509v3 Authority Key Identifier:
keyid:D8:2C:B4:3C:A3:C0:C5:78:16:CE:E3:60:47:8D:0C:F8:82:20:7F:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2Cy0PKPAxXgWzuNgR40M-IIgf9I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/3b51b8-10c6-438b-a120-15f13e3f7d85/1/seHlK4yoKBdb62tkkuXaLzV2yfg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/3b51b8-10c6-438b-a120-15f13e3f7d85/1/2Cy0PKPAxXgWzuNgR40M-IIgf9I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.34.240.0/21
5.153.233.0-5.153.235.255
5.153.237.0-5.153.238.255
5.157.0.0/23
5.157.5.0/24
5.157.7.0/24
5.157.9.0-5.157.10.255
5.157.12.0/24
5.157.15.0-5.157.16.255
5.157.18.0/24
5.157.20.0/24
5.157.25.0/24
5.157.28.0/24
5.157.35.0-5.157.36.255
5.157.39.0-5.157.40.255
5.157.44.0/24
5.157.46.0-5.157.50.255
5.157.52.0/24
5.157.54.0/24
37.72.187.0-37.72.191.255
37.203.208.0/24
37.203.210.0-37.203.214.255
46.29.248.0/21
91.108.176.0-91.108.182.255
130.185.152.0/24
130.185.154.0-130.185.159.255
151.237.176.0-151.237.185.255
151.237.187.0/24
151.237.189.0-151.237.191.255
176.61.136.0/21
178.216.48.0/21
185.3.132.0/22
Signature Algorithm: sha256WithRSAEncryption
8b:b9:30:d5:98:d6:21:ea:83:05:8f:47:35:19:5d:23:2d:e0:
c5:17:4a:b7:0e:79:cf:5b:a2:0d:e0:56:db:0d:bd:fa:61:ed:
af:7d:83:b7:2e:9f:37:58:ec:b2:b1:32:b1:f7:23:e9:59:91:
53:7e:be:b3:4c:84:b8:a5:35:6e:5b:00:10:22:7b:43:e2:54:
03:4c:3b:01:f7:25:8d:09:36:d2:7d:d7:1f:66:ea:f6:9a:fc:
5b:c0:b4:b0:a5:9d:74:fa:b8:e7:1a:03:97:6e:4f:ae:11:17:
1a:99:85:48:a7:37:e6:d6:8e:4c:70:cb:61:c0:78:7d:7c:7f:
a8:54:da:42:45:d6:dd:5f:3c:b6:a7:f8:61:f4:0e:f6:63:63:
fd:4c:65:50:6d:d0:68:5e:10:a2:2b:54:ec:d5:78:a1:95:68:
a3:6b:74:f1:07:83:1e:eb:53:ae:58:b9:fa:9d:f5:6f:1a:a9:
e8:c1:28:f1:de:4f:96:bd:8b:00:b6:14:15:50:4e:38:4c:d0:
79:7d:fd:ae:dd:22:b2:27:e2:bb:c0:96:88:01:bf:91:e6:79:
82:e4:8f:42:fa:34:9f:fe:70:1d:cd:1b:c0:4b:99:1a:6b:5f:
89:69:1c:8b:7a:18:6d:fc:53:de:28:e3:e6:98:75:08:e2:9a:
af:54:6e:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:34:18 2025 by rpki-client