Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/eFk2PYXO9wWondeALU6_fZPF8Xs.roa
File: eFk2PYXO9wWondeALU6_fZPF8Xs.roa (raw, json)
Hash identifier: 5pePjeopWReWBlJrVbc1UsQIv5xi1NfoV5SxTQKozNw=
Subject key identifier: 78:59:36:3D:85:CE:F7:05:A8:9D:D7:80:2D:4E:BF:7D:93:C5:F1:7B
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 01968E727F6C305A680EF7CA473731228ACC
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/eFk2PYXO9wWondeALU6_fZPF8Xs.roa
Signing time: Fri 02 May 2025 00:43:10 +0000
ROA not before: Fri 02 May 2025 00:43:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 47263
IP address blocks: 5.231.47.0/24 maxlen: 24
77.90.37.0/24 maxlen: 24
89.144.60.0/24 maxlen: 24
94.103.164.0/24 maxlen: 32
Validation: Failed, certificate revoked on Tue 06 May 2025 04:24:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:8e:72:7f:6c:30:5a:68:0e:f7:ca:47:37:31:22:8a:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: May 2 00:43:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7859363d85cef705a89dd7802d4ebf7d93c5f17b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:0e:77:07:9c:c4:6a:2d:ed:a4:82:48:38:c5:
d5:03:88:1f:a4:5f:6e:86:b2:1d:f9:88:a4:c3:ed:
a4:2b:59:b8:a6:6d:d4:94:ef:26:44:9a:50:36:0a:
c9:59:8b:14:b2:2e:ca:26:e6:bd:56:be:42:5b:48:
1b:a0:0a:1a:46:da:b5:86:e5:2e:77:3b:7e:db:c0:
0e:f4:90:8a:a3:f7:81:49:3c:0e:2f:7b:35:d8:82:
51:ae:d8:2a:d3:b8:b2:b5:fa:0f:0f:eb:1e:c0:39:
c9:7b:b0:02:5e:05:da:51:89:84:f7:42:aa:ca:01:
cf:51:df:e1:8d:b0:67:0f:20:51:b3:ee:33:ad:39:
6e:6c:c8:a5:1c:a1:da:09:f5:24:f9:08:5e:f4:7f:
13:08:0a:ae:0f:0f:4d:ac:20:c7:e9:dd:0d:fe:8f:
98:85:14:98:5e:e7:dd:51:03:66:2c:d8:da:59:40:
7a:e9:d7:95:47:78:d5:ee:74:d8:bb:78:e3:8b:51:
77:4c:55:bf:01:d1:54:bc:09:ed:b1:26:48:dc:f9:
89:6c:ab:e7:d6:3d:18:78:d0:02:8c:d3:d2:36:86:
e9:79:7a:6c:1a:1c:92:a4:9d:22:b1:8a:36:47:83:
d7:c5:d0:44:3c:f9:de:0e:10:25:58:f5:f0:8f:53:
e8:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:59:36:3D:85:CE:F7:05:A8:9D:D7:80:2D:4E:BF:7D:93:C5:F1:7B
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/eFk2PYXO9wWondeALU6_fZPF8Xs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.231.47.0/24
77.90.37.0/24
89.144.60.0/24
94.103.164.0/24
Signature Algorithm: sha256WithRSAEncryption
ce:37:db:77:c8:d2:34:30:fc:4b:78:96:6f:2b:a9:24:bc:d1:
86:71:0b:eb:6a:43:55:1f:0b:17:af:f9:e4:c5:c5:f5:13:9f:
04:de:f7:ff:eb:63:8c:3b:a9:cf:1d:8d:70:e6:61:ee:3b:a4:
2b:7c:59:11:06:d7:25:58:ee:ff:ef:98:80:11:da:2c:4a:55:
1e:6e:7e:13:4c:4b:e9:29:40:2d:08:f3:c5:b5:d3:d1:f8:21:
6a:e2:08:2d:c2:2c:36:58:57:8c:7a:a5:81:49:1b:7c:fa:2e:
6f:f2:27:00:e5:eb:2f:ea:ba:cd:08:e2:60:0e:ea:04:98:d7:
9c:ca:02:d8:ed:84:c9:8f:b9:29:5e:f5:5c:ac:e0:14:b0:9e:
b0:04:31:9a:86:3e:8e:6b:03:94:14:c6:4f:f8:82:54:48:31:
42:ea:57:ee:bf:48:f9:09:0b:e6:dc:78:ef:17:36:15:a6:b6:
79:27:8f:14:1b:3b:48:50:15:83:bf:7f:4d:09:5a:3f:e4:52:
2a:63:57:2b:fa:8f:20:76:f9:10:1d:14:e6:1d:77:c6:38:33:
9d:cc:c4:fe:30:1c:12:30:4d:37:40:59:c3:13:d9:f4:63:a8:
7f:a1:4c:cd:b1:9e:c6:4e:ae:4c:2a:e4:64:75:99:c5:6d:a3:
36:47:3f:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 6 20:51:09 2025 by rpki-client