Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/acVtG1QF24mTQfAVDjSmQcjq8y8.roa
File: acVtG1QF24mTQfAVDjSmQcjq8y8.roa (raw, json)
Hash identifier: 6qJOgLbrJ77G90TWKbowcR70iuk06xXyXkzTHA6wJdc=
Subject key identifier: 69:C5:6D:1B:54:05:DB:89:93:41:F0:15:0E:34:A6:41:C8:EA:F3:2F
Certificate issuer: /CN=e5bd7923afdbae87d07b2308dd389d9cf082ed6d
Certificate serial: 019557C5DE953B607D9ADCAB5D1D6A9E7E16
Authority key identifier: E5:BD:79:23:AF:DB:AE:87:D0:7B:23:08:DD:38:9D:9C:F0:82:ED:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5b15I6_brofQeyMI3TidnPCC7W0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/acVtG1QF24mTQfAVDjSmQcjq8y8.roa
Signing time: Sun 02 Mar 2025 16:52:20 +0000
ROA not before: Sun 02 Mar 2025 16:52:20 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 36007
IP address blocks: 45.91.171.0/24 maxlen: 24
91.202.170.0/24 maxlen: 24
91.223.169.0/24 maxlen: 24
103.45.245.0/24 maxlen: 24
103.45.246.0/24 maxlen: 24
103.240.147.0/24 maxlen: 24
103.241.66.0/24 maxlen: 24
103.241.67.0/24 maxlen: 24
185.47.172.0/24 maxlen: 24
185.53.209.0/24 maxlen: 24
185.139.228.0/24 maxlen: 24
185.144.156.0/22 maxlen: 22
193.168.172.0/24 maxlen: 24
193.168.175.0/24 maxlen: 24
2a06:c5c0:1500::/48 maxlen: 48
2a06:c5c0:1600::/48 maxlen: 48
2a06:c5c0:1700::/48 maxlen: 48
2a07:3b80::/48 maxlen: 48
2a07:3b80:8::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 12 Mar 2025 15:37:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:57:c5:de:95:3b:60:7d:9a:dc:ab:5d:1d:6a:9e:7e:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5bd7923afdbae87d07b2308dd389d9cf082ed6d
Validity
Not Before: Mar 2 16:52:20 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=69c56d1b5405db899341f0150e34a641c8eaf32f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:d2:0d:d0:e9:44:03:5d:22:da:d9:90:6b:20:
bc:0c:e6:06:8e:c5:42:2d:c2:15:93:9c:99:4e:02:
a1:42:d1:2d:5e:3a:cb:52:e9:4e:40:fd:69:63:85:
84:f5:01:fe:42:33:64:46:4f:5c:fb:91:c8:aa:5e:
c9:9a:81:55:f6:fe:58:70:04:17:33:10:fd:0d:04:
10:58:1b:d6:dc:42:2a:9b:f3:d7:56:bd:2b:c4:18:
18:d1:73:b5:c8:74:a5:2f:37:72:7b:76:66:e4:a6:
f9:d9:1b:75:a5:6b:4d:a5:57:33:68:7d:fc:03:47:
dc:9c:e4:92:30:40:4f:3b:02:33:4c:95:85:18:7d:
82:69:dd:98:e4:3f:d5:6a:18:41:9b:95:4d:fd:ab:
f5:4a:6c:59:78:56:87:84:a0:fa:25:3c:34:c9:a5:
a1:05:67:6d:a4:91:80:e0:40:87:7f:b6:fc:7e:f8:
07:b0:47:1e:47:9f:91:2f:d0:15:ea:08:cc:64:ba:
00:c4:3c:9d:e6:6a:17:1e:98:e6:63:76:55:39:f6:
9c:c9:20:df:fe:c3:d8:80:1b:f2:5a:81:9e:97:00:
71:ec:55:80:ba:c6:ef:fb:4e:e6:d9:f9:08:cb:5e:
f3:a6:1c:85:18:c0:15:c9:46:0b:8f:5d:25:67:a5:
e9:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:C5:6D:1B:54:05:DB:89:93:41:F0:15:0E:34:A6:41:C8:EA:F3:2F
X509v3 Authority Key Identifier:
keyid:E5:BD:79:23:AF:DB:AE:87:D0:7B:23:08:DD:38:9D:9C:F0:82:ED:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b15I6_brofQeyMI3TidnPCC7W0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/acVtG1QF24mTQfAVDjSmQcjq8y8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/5b15I6_brofQeyMI3TidnPCC7W0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.91.171.0/24
91.202.170.0/24
91.223.169.0/24
103.45.245.0-103.45.246.255
103.240.147.0/24
103.241.66.0/23
185.47.172.0/24
185.53.209.0/24
185.139.228.0/24
185.144.156.0/22
193.168.172.0/24
193.168.175.0/24
IPv6:
2a06:c5c0:1500::/48
2a06:c5c0:1600::/48
2a06:c5c0:1700::/48
2a07:3b80::/48
2a07:3b80:8::/48
Signature Algorithm: sha256WithRSAEncryption
37:1c:bf:c3:b2:67:dd:1b:15:47:45:bc:5d:e3:b2:e3:63:df:
98:d6:e8:47:40:2f:d2:d6:4b:ea:78:87:48:b9:e1:90:57:b2:
ff:10:c7:05:05:3a:12:37:2e:91:bc:84:4b:dc:ae:40:fb:c6:
a9:14:44:05:53:8f:80:58:6c:ca:77:8a:66:0c:ec:2a:14:5e:
97:a3:64:94:38:e9:cc:39:d6:f6:01:a9:b8:29:69:ce:8d:9c:
d9:a1:0f:2f:ff:77:36:41:41:46:81:69:44:8e:95:ab:0c:a6:
36:04:6f:31:c2:32:53:14:43:c2:84:cb:36:9c:54:5b:dd:8f:
81:72:ea:60:fb:98:25:50:5b:44:d7:1c:88:f7:fe:01:b2:f8:
c8:bc:a4:c2:37:39:f0:67:0c:1e:e5:6c:1f:57:19:45:a9:66:
4c:b2:86:98:73:af:2a:5f:12:56:0a:34:f4:cf:33:e2:bf:55:
fd:6b:ab:c2:90:43:85:2e:ae:6e:06:2e:bb:58:d6:3c:84:86:
a8:fb:98:7f:2d:e0:8c:c6:b6:2a:ed:a0:60:bb:4f:f4:79:30:
bd:c1:61:29:64:77:43:96:7a:69:76:ac:f4:7e:24:53:13:bf:
c4:dd:f6:3c:35:1a:8d:80:74:a2:c4:02:52:5e:6b:71:2f:34:
74:6e:85:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 14 00:26:56 2025 by rpki-client