Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/P7_luXxXbooOAGIvRqRGhARuTB8.roa
File: P7_luXxXbooOAGIvRqRGhARuTB8.roa (raw, json)
Hash identifier: zr9lttFaFXUsYrGengP88rWLmuGigZgdtdSxf76i01o=
Subject key identifier: 3F:BF:E5:B9:7C:57:6E:8A:0E:00:62:2F:46:A4:46:84:04:6E:4C:1F
Certificate issuer: /CN=bb830630f23b070a2b7bdf529f73948c97eacd40
Certificate serial: 01956BD9A33752DA6197E6168C65A0EC86DD
Authority key identifier: BB:83:06:30:F2:3B:07:0A:2B:7B:DF:52:9F:73:94:8C:97:EA:CD:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u4MGMPI7Bwore99Sn3OUjJfqzUA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/P7_luXxXbooOAGIvRqRGhARuTB8.roa
Signing time: Thu 06 Mar 2025 14:26:19 +0000
ROA not before: Thu 06 Mar 2025 14:26:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 44477
IP address blocks: 37.221.124.0/22 maxlen: 24
45.67.228.0/24 maxlen: 24
45.67.229.0/24 maxlen: 24
45.67.230.0/24 maxlen: 24
45.67.231.0/24 maxlen: 24
45.120.176.0/22 maxlen: 24
62.3.12.0/24 maxlen: 24
74.119.192.0/24 maxlen: 24
74.119.193.0/24 maxlen: 24
74.119.194.0/24 maxlen: 24
74.119.195.0/24 maxlen: 24
80.92.204.0/24 maxlen: 24
80.92.205.0/24 maxlen: 24
80.92.206.0/24 maxlen: 24
86.104.72.0/22 maxlen: 24
89.221.224.0/24 maxlen: 24
89.221.225.0/24 maxlen: 24
91.132.132.0/22 maxlen: 24
91.194.161.0/24 maxlen: 24
91.225.217.0/24 maxlen: 24
91.225.218.0/24 maxlen: 24
91.225.219.0/24 maxlen: 24
94.131.8.0/24 maxlen: 24
103.35.188.0/22 maxlen: 24
103.106.0.0/22 maxlen: 24
103.113.68.0/22 maxlen: 24
103.231.72.0/22 maxlen: 24
176.120.64.0/22 maxlen: 24
176.120.64.0/24 maxlen: 24
176.120.72.0/22 maxlen: 24
185.234.56.0/22 maxlen: 24
185.234.64.0/22 maxlen: 24
185.235.240.0/22 maxlen: 24
185.236.232.0/22 maxlen: 24
185.242.84.0/24 maxlen: 24
185.242.85.0/24 maxlen: 24
185.242.86.0/24 maxlen: 24
185.242.87.0/24 maxlen: 24
185.250.148.0/24 maxlen: 24
185.250.149.0/24 maxlen: 24
185.250.150.0/24 maxlen: 24
185.250.151.0/24 maxlen: 24
193.203.202.0/24 maxlen: 24
194.54.156.0/24 maxlen: 24
194.54.157.0/24 maxlen: 24
194.54.158.0/24 maxlen: 24
194.54.159.0/24 maxlen: 24
194.62.42.0/24 maxlen: 24
194.246.114.0/24 maxlen: 24
194.246.115.0/24 maxlen: 24
195.42.232.0/22 maxlen: 24
195.149.87.0/24 maxlen: 24
213.159.64.0/21 maxlen: 24
213.159.72.0/21 maxlen: 24
213.159.76.0/24 maxlen: 24
213.159.77.0/24 maxlen: 24
213.159.78.0/24 maxlen: 24
213.159.79.0/24 maxlen: 24
2a09:7c40::/32 maxlen: 32
2a09:7c41::/32 maxlen: 32
2a09:7c42::/32 maxlen: 32
2a09:7c43::/32 maxlen: 32
2a09:7c44::/32 maxlen: 32
2a09:7c45::/32 maxlen: 32
2a09:7c46::/32 maxlen: 32
2a09:7c47::/32 maxlen: 32
2a0b:cf45::/32 maxlen: 32
2a0b:cf46::/32 maxlen: 32
2a0b:cf47::/32 maxlen: 32
2a11:3805::/32 maxlen: 32
2a11:3c02::/32 maxlen: 32
2a11:3c03::/32 maxlen: 32
2a11:4c04::/32 maxlen: 32
2a11:4c05::/32 maxlen: 32
2a11:4c06::/32 maxlen: 32
2a14:2d80::/32 maxlen: 32
2a14:2d81::/32 maxlen: 32
2a14:2d82::/32 maxlen: 32
2a14:2d83::/32 maxlen: 32
2a14:2d85::/32 maxlen: 32
2a14:2d87::/32 maxlen: 32
2a14:2e80::/32 maxlen: 32
2a14:2f80::/32 maxlen: 32
2a14:3080::/32 maxlen: 32
2a14:3081::/32 maxlen: 32
2a14:3082::/32 maxlen: 32
2a14:3880::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 18 Mar 2025 12:14:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:6b:d9:a3:37:52:da:61:97:e6:16:8c:65:a0:ec:86:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb830630f23b070a2b7bdf529f73948c97eacd40
Validity
Not Before: Mar 6 14:26:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3fbfe5b97c576e8a0e00622f46a44684046e4c1f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:3d:af:94:20:72:23:0f:7f:87:6d:9f:20:d8:
c0:be:d3:99:fa:6d:2d:bc:80:9a:72:87:74:0f:cb:
38:6b:c0:f2:67:14:38:60:35:f5:27:0e:23:30:24:
13:f3:77:95:b9:03:4d:f1:0b:df:ca:92:6f:00:bc:
30:56:fc:12:93:42:02:bc:2f:14:dc:9e:c6:95:af:
0e:d8:9d:55:dd:f0:37:09:62:37:23:8c:6c:ca:4d:
30:4d:e0:2f:1e:b8:3f:39:dd:1f:7f:fb:42:6a:8b:
36:ed:a6:ef:d9:24:27:5b:db:96:ed:9c:6e:67:8c:
20:12:96:7a:98:25:36:21:58:50:e0:99:4a:ab:79:
36:3c:6a:43:6b:c9:41:23:47:da:28:b7:b9:29:e1:
a0:1b:dd:9d:8a:76:da:50:48:b2:5e:67:5a:a8:9f:
cd:3a:b0:03:eb:df:fd:4c:6e:80:a2:1f:43:5c:96:
7b:6d:94:ce:df:a3:d3:57:80:54:1c:e3:f6:75:97:
9e:c1:e6:1c:a5:eb:0a:36:1b:41:38:64:f6:1c:09:
58:ec:21:d7:dd:17:ec:b7:db:26:7f:48:a6:ea:d1:
76:3c:dc:e2:0f:7a:54:ef:45:9f:38:b7:42:55:75:
0a:d0:62:1f:69:6f:11:e0:39:58:e0:e8:66:6c:6d:
a2:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:BF:E5:B9:7C:57:6E:8A:0E:00:62:2F:46:A4:46:84:04:6E:4C:1F
X509v3 Authority Key Identifier:
keyid:BB:83:06:30:F2:3B:07:0A:2B:7B:DF:52:9F:73:94:8C:97:EA:CD:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u4MGMPI7Bwore99Sn3OUjJfqzUA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/P7_luXxXbooOAGIvRqRGhARuTB8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/u4MGMPI7Bwore99Sn3OUjJfqzUA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.221.124.0/22
45.67.228.0/22
45.120.176.0/22
62.3.12.0/24
74.119.192.0/22
80.92.204.0-80.92.206.255
86.104.72.0/22
89.221.224.0/23
91.132.132.0/22
91.194.161.0/24
91.225.217.0-91.225.219.255
94.131.8.0/24
103.35.188.0/22
103.106.0.0/22
103.113.68.0/22
103.231.72.0/22
176.120.64.0/22
176.120.72.0/22
185.234.56.0/22
185.234.64.0/22
185.235.240.0/22
185.236.232.0/22
185.242.84.0/22
185.250.148.0/22
193.203.202.0/24
194.54.156.0/22
194.62.42.0/24
194.246.114.0/23
195.42.232.0/22
195.149.87.0/24
213.159.64.0/20
IPv6:
2a09:7c40::/29
2a0b:cf45::-2a0b:cf47:ffff:ffff:ffff:ffff:ffff:ffff
2a11:3805::/32
2a11:3c02::/31
2a11:4c04::-2a11:4c06:ffff:ffff:ffff:ffff:ffff:ffff
2a14:2d80::/30
2a14:2d85::/32
2a14:2d87::/32
2a14:2e80::/32
2a14:2f80::/32
2a14:3080::-2a14:3082:ffff:ffff:ffff:ffff:ffff:ffff
2a14:3880::/32
Signature Algorithm: sha256WithRSAEncryption
6e:a0:94:47:4d:99:9c:58:58:81:f6:24:26:26:f4:5a:23:bc:
dc:35:81:63:e3:61:1c:8a:1f:9f:13:76:ec:15:c2:e6:49:2d:
f8:46:84:67:ec:48:9a:c2:70:b9:ea:8c:2e:ce:35:ec:69:0f:
7f:ba:47:45:21:a9:f3:96:e1:7d:1f:7c:d7:1c:36:d0:92:80:
d5:61:4d:76:82:4e:48:67:e1:69:f3:d6:b7:8f:3d:9a:36:c2:
c1:9b:08:ed:fe:b9:c2:83:30:37:fa:b2:39:08:08:cb:db:56:
bc:04:c1:8d:a2:8b:73:c8:da:1f:94:4a:db:1f:2b:17:a3:73:
be:c4:53:52:1b:b6:bd:eb:58:be:82:03:62:8a:d0:c2:09:83:
b2:6b:94:ee:7d:5a:2b:e5:c0:16:23:ff:c8:42:e0:63:43:eb:
bc:24:cf:0f:3c:99:8d:0e:cc:dd:3b:13:f1:ee:38:48:47:14:
34:09:26:3c:55:a3:3a:3c:3d:7f:58:5c:f4:a3:2c:8f:78:13:
7f:f7:28:3d:fc:7b:c8:81:3f:e7:24:3b:8f:2c:68:5f:0e:cf:
f6:31:b4:e4:18:f6:be:c7:0b:30:4a:2c:da:f9:f3:df:d4:ad:
53:7e:99:e1:46:e7:6c:ab:12:26:e7:4a:b4:f5:93:0e:31:4d:
e4:ad:6f:0f
-----BEGIN CERTIFICATE-----
MIIGQDCCBSigAwIBAgISAZVr2aM3Utphl+YWjGWg7IbdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJiODMwNjMwZjIzYjA3MGEyYjdiZGY1MjlmNzM5NDhjOTdl
YWNkNDAwHhcNMjUwMzA2MTQyNjE5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzZmJmZTViOTdjNTc2ZThhMGUwMDYyMmY0NmE0NDY4NDA0NmU0YzFmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0z2vlCByIw9/h22fINjAvtOZ+m0t
vICacod0D8s4a8DyZxQ4YDX1Jw4jMCQT83eVuQNN8QvfypJvALwwVvwSk0ICvC8U
3J7Gla8O2J1V3fA3CWI3I4xsyk0wTeAvHrg/Od0ff/tCaos27abv2SQnW9uW7Zxu
Z4wgEpZ6mCU2IVhQ4JlKq3k2PGpDa8lBI0faKLe5KeGgG92dinbaUEiyXmdaqJ/N
OrAD69/9TG6Aoh9DXJZ7bZTO36PTV4BUHOP2dZeeweYcpesKNhtBOGT2HAlY7CHX
3Rfst9smf0im6tF2PNziD3pU70WfOLdCVXUK0GIfaW8R4DlY4OhmbG2iUQIDAQAB
o4IDTDCCA0gwHQYDVR0OBBYEFD+/5bl8V26KDgBiL0akRoQEbkwfMB8GA1UdIwQY
MBaAFLuDBjDyOwcKK3vfUp9zlIyX6s1AMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdTRNR01QSTdCd29yZTk5U24zT1VqSmZxelVBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85ZS9mNzZlMjAtNTg1OS00MTVkLTg2YjMt
MTE5ZWZjYmIyMDIzLzEvUDdfbHVYeFhib29PQUdJdlJxUkdoQVJ1VEI4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85ZS9mNzZlMjAtNTg1OS00MTVkLTg2YjMtMTE5ZWZjYmIyMDIz
LzEvdTRNR01QSTdCd29yZTk5U24zT1VqSmZxelVBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBYAYIKwYBBQUHAQcBAf8EggFPMIIBSzCB0QQCAAEwgcoD
BAIl3XwDBAItQ+QDBAIteLADBAA+AwwDBAJKd8AwDAMEAlBczAMEAFBczgMEAlZo
SAMEAVnd4AMEAluEhAMEAFvCoTAMAwQAW+HZAwQCW+HYAwQAXoMIAwQCZyO8AwQC
Z2oAAwQCZ3FEAwQCZ+dIAwQCsHhAAwQCsHhIAwQCueo4AwQCuepAAwQCuevwAwQC
uezoAwQCufJUAwQCufqUAwQAwcvKAwQCwjacAwQAwj4qAwQBwvZyAwQCwyroAwQA
w5VXAwQE1Z9AMHUEAgACMG8DBQMqCXxAMA4DBQAqC89FAwUDKgvPQAMFACoROAUD
BQEqETwCMA4DBQIqEUwEAwUAKhFMBgMFAioULYADBQAqFC2FAwUAKhQthwMFACoU
LoADBQAqFC+AMA4DBQcqFDCAAwUAKhQwggMFACoUOIAwDQYJKoZIhvcNAQELBQAD
ggEBAG6glEdNmZxYWIH2JCYm9FojvNw1gWPjYRyKH58TduwVwuZJLfhGhGfsSJrC
cLnqjC7ONexpD3+6R0UhqfOW4X0ffNccNtCSgNVhTXaCTkhn4Wnz1rePPZo2wsGb
CO3+ucKDMDf6sjkICMvbVrwEwY2ii3PI2h+UStsfKxejc77EU1Ibtr3rWL6CA2KK
0MIJg7JrlO59WivlwBYj/8hC4GND67wkzw88mY0OzN07E/HuOEhHFDQJJjxVozo8
PX9YXPSjLI94E3/3KD38e8iBP+ckO48saF8Oz/YxtOQY9r7HCzBKLNr589/UrVN+
meFG52yrEibnSrT1kw4xTeStbw8=
-----END CERTIFICATE-----
Generated at Thu Apr 17 19:58:18 2025 by rpki-client