Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/c22dc9-c7ba-4156-a79c-15e90bf87fab/1/aiXygopzsmY0V6AbgXvuIwsZ_xc.roa
File: aiXygopzsmY0V6AbgXvuIwsZ_xc.roa (raw, json)
Hash identifier: Ykl4p/CPVOCaYL3VkSbMOFLg1jqmi1515N7QlAx8meQ=
Subject key identifier: 6A:25:F2:82:8A:73:B2:66:34:57:A0:1B:81:7B:EE:23:0B:19:FF:17
Certificate issuer: /CN=e0dee1b06ba24a676213f976a4b50c129dcb2b73
Certificate serial: 0195A9561032AA9EC9A44056F3B394CCB6C1
Authority key identifier: E0:DE:E1:B0:6B:A2:4A:67:62:13:F9:76:A4:B5:0C:12:9D:CB:2B:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4N7hsGuiSmdiE_l2pLUMEp3LK3M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/c22dc9-c7ba-4156-a79c-15e90bf87fab/1/aiXygopzsmY0V6AbgXvuIwsZ_xc.roa
Signing time: Tue 18 Mar 2025 12:59:04 +0000
ROA not before: Tue 18 Mar 2025 12:59:04 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 719
IP address blocks: 31.7.16.0/20 maxlen: 20
46.182.112.0/21 maxlen: 21
62.142.0.0/16 maxlen: 16
62.148.192.0/19 maxlen: 19
62.216.96.0/19 maxlen: 19
62.240.64.0/19 maxlen: 19
62.248.128.0/17 maxlen: 17
77.109.192.0/18 maxlen: 18
80.81.160.0/19 maxlen: 19
80.88.176.0/20 maxlen: 20
80.186.0.0/16 maxlen: 16
80.248.96.0/19 maxlen: 19
81.197.0.0/16 maxlen: 16
81.209.0.0/17 maxlen: 17
82.103.192.0/18 maxlen: 18
82.118.192.0/19 maxlen: 19
82.141.64.0/18 maxlen: 18
82.215.192.0/18 maxlen: 18
83.245.128.0/17 maxlen: 17
84.230.0.0/15 maxlen: 15
85.76.0.0/14 maxlen: 14
85.156.0.0/16 maxlen: 16
85.157.0.0/16 maxlen: 16
85.217.0.0/17 maxlen: 17
88.112.0.0/14 maxlen: 14
91.152.0.0/13 maxlen: 13
94.22.0.0/16 maxlen: 16
109.232.80.0/21 maxlen: 21
139.97.0.0/16 maxlen: 16
178.251.56.0/21 maxlen: 21
192.77.120.0/22 maxlen: 22
192.102.36.0/24 maxlen: 24
192.102.37.0/24 maxlen: 24
192.102.38.0/24 maxlen: 24
192.102.39.0/24 maxlen: 24
192.102.40.0/24 maxlen: 24
192.102.41.0/24 maxlen: 24
192.102.42.0/24 maxlen: 24
192.102.49.0/24 maxlen: 24
192.102.50.0/24 maxlen: 24
192.126.1.0/24 maxlen: 24
192.126.23.0/24 maxlen: 24
192.126.24.0/24 maxlen: 24
192.126.35.0/24 maxlen: 24
192.126.44.0/24 maxlen: 24
192.126.46.0/24 maxlen: 24
192.163.32.0/19 maxlen: 19
192.163.64.0/18 maxlen: 18
192.163.128.0/19 maxlen: 19
193.64.0.0/15 maxlen: 15
193.65.129.0/24 maxlen: 24
193.66.0.0/16 maxlen: 16
193.94.0.0/16 maxlen: 16
193.142.51.0/24 maxlen: 24
193.184.0.0/15 maxlen: 15
193.199.0.0/16 maxlen: 16
193.229.0.0/16 maxlen: 16
194.86.0.0/16 maxlen: 16
194.86.35.0/24 maxlen: 24
194.136.0.0/16 maxlen: 16
194.157.0.0/16 maxlen: 16
194.188.0.0/16 maxlen: 16
194.211.0.0/16 maxlen: 16
194.240.0.0/15 maxlen: 15
195.16.192.0/19 maxlen: 19
195.74.0.0/19 maxlen: 19
195.170.128.0/19 maxlen: 19
195.197.0.0/16 maxlen: 16
195.218.64.0/19 maxlen: 19
195.236.0.0/15 maxlen: 15
195.238.192.0/19 maxlen: 19
195.255.0.0/16 maxlen: 16
212.38.224.0/19 maxlen: 19
212.50.192.0/19 maxlen: 19
212.54.0.0/19 maxlen: 19
212.63.0.0/19 maxlen: 19
212.226.0.0/16 maxlen: 16
212.246.0.0/16 maxlen: 16
213.130.224.0/19 maxlen: 19
213.161.32.0/19 maxlen: 19
213.169.0.0/19 maxlen: 19
213.192.128.0/18 maxlen: 18
213.250.64.0/18 maxlen: 18
217.24.96.0/20 maxlen: 20
217.25.96.0/20 maxlen: 20
217.77.192.0/20 maxlen: 20
217.152.0.0/16 maxlen: 16
2001:670::/29 maxlen: 32
2001:998::/29 maxlen: 32
2001:9f0::/29 maxlen: 32
2001:1658::/29 maxlen: 32
2a00:1dd0::/29 maxlen: 32
Validation: Failed, certificate revoked on Wed 19 Mar 2025 13:25:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:a9:56:10:32:aa:9e:c9:a4:40:56:f3:b3:94:cc:b6:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e0dee1b06ba24a676213f976a4b50c129dcb2b73
Validity
Not Before: Mar 18 12:59:04 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6a25f2828a73b2663457a01b817bee230b19ff17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:40:ed:b0:10:61:be:1b:d2:59:03:7a:a1:41:
ea:e6:8e:f7:c1:5f:d8:d6:57:6f:48:71:e7:37:ac:
70:a9:00:f1:b0:c4:58:71:94:17:a9:69:c1:80:5d:
91:13:16:c2:d0:24:a4:fe:41:f7:7e:be:f4:86:38:
2e:db:0e:50:7c:15:f2:79:6a:9f:8d:a4:36:e5:9f:
7b:95:d6:5e:d2:65:0a:52:fa:e0:cf:21:80:72:c8:
87:b3:88:04:bf:bb:2f:ad:d6:31:03:39:32:0c:8c:
89:01:9b:29:57:8c:22:4f:a6:37:f4:78:f6:c7:2f:
15:1f:fa:ba:58:8c:76:37:9f:d4:14:3a:49:64:0c:
e0:5c:6d:43:ca:85:e3:35:9a:58:c0:5e:15:ed:07:
dd:77:a2:38:52:81:5b:73:43:87:1f:ba:84:ac:2f:
ef:44:dd:ac:69:3d:43:0a:06:c6:1a:b4:21:ce:50:
31:42:8e:25:bb:b5:8c:d6:95:b8:b2:1f:d9:4d:43:
1f:7e:db:55:6b:ae:b2:1f:4f:22:49:3c:c9:0a:91:
ef:b2:7f:7a:f9:d2:36:71:d4:a3:a4:45:8f:2a:55:
e8:f5:6d:e2:25:b7:cb:1a:6f:d9:39:6a:78:ef:08:
bd:9c:53:8f:9a:1e:b9:80:c8:70:6c:df:c4:a8:c1:
d6:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:25:F2:82:8A:73:B2:66:34:57:A0:1B:81:7B:EE:23:0B:19:FF:17
X509v3 Authority Key Identifier:
keyid:E0:DE:E1:B0:6B:A2:4A:67:62:13:F9:76:A4:B5:0C:12:9D:CB:2B:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4N7hsGuiSmdiE_l2pLUMEp3LK3M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/c22dc9-c7ba-4156-a79c-15e90bf87fab/1/aiXygopzsmY0V6AbgXvuIwsZ_xc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/c22dc9-c7ba-4156-a79c-15e90bf87fab/1/4N7hsGuiSmdiE_l2pLUMEp3LK3M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.7.16.0/20
46.182.112.0/21
62.142.0.0/16
62.148.192.0/19
62.216.96.0/19
62.240.64.0/19
62.248.128.0/17
77.109.192.0/18
80.81.160.0/19
80.88.176.0/20
80.186.0.0/16
80.248.96.0/19
81.197.0.0/16
81.209.0.0/17
82.103.192.0/18
82.118.192.0/19
82.141.64.0/18
82.215.192.0/18
83.245.128.0/17
84.230.0.0/15
85.76.0.0/14
85.156.0.0/15
85.217.0.0/17
88.112.0.0/14
91.152.0.0/13
94.22.0.0/16
109.232.80.0/21
139.97.0.0/16
178.251.56.0/21
192.77.120.0/22
192.102.36.0-192.102.42.255
192.102.49.0-192.102.50.255
192.126.1.0/24
192.126.23.0-192.126.24.255
192.126.35.0/24
192.126.44.0/24
192.126.46.0/24
192.163.32.0-192.163.159.255
193.64.0.0-193.66.255.255
193.94.0.0/16
193.142.51.0/24
193.184.0.0/15
193.199.0.0/16
193.229.0.0/16
194.86.0.0/16
194.136.0.0/16
194.157.0.0/16
194.188.0.0/16
194.211.0.0/16
194.240.0.0/15
195.16.192.0/19
195.74.0.0/19
195.170.128.0/19
195.197.0.0/16
195.218.64.0/19
195.236.0.0/15
195.238.192.0/19
195.255.0.0/16
212.38.224.0/19
212.50.192.0/19
212.54.0.0/19
212.63.0.0/19
212.226.0.0/16
212.246.0.0/16
213.130.224.0/19
213.161.32.0/19
213.169.0.0/19
213.192.128.0/18
213.250.64.0/18
217.24.96.0/20
217.25.96.0/20
217.77.192.0/20
217.152.0.0/16
IPv6:
2001:670::/29
2001:998::/29
2001:9f0::/29
2001:1658::/29
2a00:1dd0::/29
Signature Algorithm: sha256WithRSAEncryption
a2:da:2f:d8:93:d3:23:1a:43:dc:9e:17:4c:37:b4:ee:c5:fa:
f9:bc:aa:af:d6:93:fc:38:03:c6:dd:17:1b:29:af:f0:be:36:
fb:ce:bf:9f:f1:44:21:70:53:93:70:c7:73:fe:1c:31:6c:7d:
83:1f:38:da:b2:6b:7e:2d:64:19:90:c9:3e:86:33:37:31:65:
90:95:5f:00:d4:91:c1:bb:c5:f3:11:05:ee:fd:14:7a:92:15:
4c:5f:f7:6d:bf:66:fd:01:32:19:65:05:39:6c:84:08:5e:ae:
90:af:89:88:4c:d2:b5:34:93:6e:c1:30:48:2c:de:77:62:92:
5e:09:a5:55:52:a0:e1:94:12:05:92:23:59:b5:8b:64:97:17:
37:2b:4e:fd:73:b8:f3:35:a1:70:e1:58:cf:53:16:bd:2b:9c:
db:66:eb:ea:0c:ad:ea:0a:97:71:1a:a6:d0:09:96:03:6b:92:
11:de:a5:54:a0:86:80:6d:85:20:e0:bb:ab:63:89:d4:dc:b0:
73:9c:e5:86:37:61:fe:68:c3:ae:50:b1:e1:21:c9:32:55:71:
12:d4:ab:22:31:e1:f5:9f:40:d2:4a:54:60:8a:6c:dd:b2:0f:
b2:ec:6b:1b:99:27:4c:7e:fb:17:65:f6:de:42:86:6c:9b:c7:
59:76:a2:e9
-----BEGIN CERTIFICATE-----
MIIG7jCCBdagAwIBAgISAZWpVhAyqp7JpEBW87OUzLbBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUwZGVlMWIwNmJhMjRhNjc2MjEzZjk3NmE0YjUwYzEyOWRj
YjJiNzMwHhcNMjUwMzE4MTI1OTA0WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2YTI1ZjI4MjhhNzNiMjY2MzQ1N2EwMWI4MTdiZWUyMzBiMTlmZjE3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv0DtsBBhvhvSWQN6oUHq5o73wV/Y
1ldvSHHnN6xwqQDxsMRYcZQXqWnBgF2RExbC0CSk/kH3fr70hjgu2w5QfBXyeWqf
jaQ25Z97ldZe0mUKUvrgzyGAcsiHs4gEv7svrdYxAzkyDIyJAZspV4wiT6Y39Hj2
xy8VH/q6WIx2N5/UFDpJZAzgXG1DyoXjNZpYwF4V7Qfdd6I4UoFbc0OHH7qErC/v
RN2saT1DCgbGGrQhzlAxQo4lu7WM1pW4sh/ZTUMffttVa66yH08iSTzJCpHvsn96
+dI2cdSjpEWPKlXo9W3iJbfLGm/ZOWp47wi9nFOPmh65gMhwbN/EqMHWiwIDAQAB
o4ID+jCCA/YwHQYDVR0OBBYEFGol8oKKc7JmNFegG4F77iMLGf8XMB8GA1UdIwQY
MBaAFODe4bBrokpnYhP5dqS1DBKdyytzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNE43aHNHdWlTbWRpRV9sMnBMVU1FcDNMSzNNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMC9jMjJkYzktYzdiYS00MTU2LWE3OWMt
MTVlOTBiZjg3ZmFiLzEvYWlYeWdvcHpzbVkwVjZBYmdYdnVJd3NaX3hjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMC9jMjJkYzktYzdiYS00MTU2LWE3OWMtMTVlOTBiZjg3ZmFi
LzEvNE43aHNHdWlTbWRpRV9sMnBMVU1FcDNMSzNNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIICDgYIKwYBBQUHAQcBAf8EggH9MIIB+TCCAcoEAgABMIIB
wgMEBB8HEAMEAy62cAMDAD6OAwQFPpTAAwQFPthgAwQFPvBAAwQHPviAAwQGTW3A
AwQFUFGgAwQEUFiwAwMAULoDBAVQ+GADAwBRxQMEB1HRAAMEBlJnwAMEBVJ2wAME
BlKNQAMEBlLXwAMEB1P1gAMDAVTmAwMCVUwDAwFVnAMEB1XZAAMDAlhwAwMDW5gD
AwBeFgMEA23oUAMDAIthAwQDsvs4AwQCwE14MAwDBALAZiQDBADAZiowDAMEAMBm
MQMEAMBmMgMEAMB+ATAMAwQAwH4XAwQAwH4YAwQAwH4jAwQAwH4sAwQAwH4uMAwD
BAXAoyADBAXAo4AwCgMDBsFAAwMAwUIDAwDBXgMEAMGOMwMDAcG4AwMAwccDAwDB
5QMDAMJWAwMAwogDAwDCnQMDAMK8AwMAwtMDAwHC8AMEBcMQwAMEBcNKAAMEBcOq
gAMDAMPFAwQFw9pAAwMBw+wDBAXD7sADAwDD/wMEBdQm4AMEBdQywAMEBdQ2AAME
BdQ/AAMDANTiAwMA1PYDBAXVguADBAXVoSADBAXVqQADBAbVwIADBAbV+kADBATZ
GGADBATZGWADBATZTcADAwDZmDApBAIAAjAjAwUDIAEGcAMFAyABCZgDBQMgAQnw
AwUDIAEWWAMFAyoAHdAwDQYJKoZIhvcNAQELBQADggEBAKLaL9iT0yMaQ9yeF0w3
tO7F+vm8qq/Wk/w4A8bdFxspr/C+NvvOv5/xRCFwU5Nwx3P+HDFsfYMfONqya34t
ZBmQyT6GMzcxZZCVXwDUkcG7xfMRBe79FHqSFUxf922/Zv0BMhllBTlshAherpCv
iYhM0rU0k27BMEgs3ndikl4JpVVSoOGUEgWSI1m1i2SXFzcrTv1zuPM1oXDhWM9T
Fr0rnNtm6+oMreoKl3EaptAJlgNrkhHepVSghoBthSDgu6tjidTcsHOc5YY3Yf5o
w65QseEhyTJVcRLUqyIx4fWfQNJKVGCKbN2yD7LsaxuZJ0x++xdl9t5Chmybx1l2
ouk=
-----END CERTIFICATE-----
Generated at Sat Apr 19 12:32:46 2025 by rpki-client