Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/b70658-e1dc-4944-a06b-1c680adf7a26/1/SoMIItvdXN_8stph1RUqyicdahk.roa
File: SoMIItvdXN_8stph1RUqyicdahk.roa (raw, json)
Hash identifier: mzlv05oD9WYFyd9mzm8KXVXK9Bc5FzznRCXh+WJlKxQ=
Subject key identifier: 4A:83:08:22:DB:DD:5C:DF:FC:B2:DA:61:D5:15:2A:CA:27:1D:6A:19
Certificate issuer: /CN=d3600cbafd26fee5064fc89f301dfc8e3c1d3ca5
Certificate serial: 019824041C52A9C4093A391566576A385537
Authority key identifier: D3:60:0C:BA:FD:26:FE:E5:06:4F:C8:9F:30:1D:FC:8E:3C:1D:3C:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/02AMuv0m_uUGT8ifMB38jjwdPKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/b70658-e1dc-4944-a06b-1c680adf7a26/1/SoMIItvdXN_8stph1RUqyicdahk.roa
Signing time: Sat 19 Jul 2025 18:48:25 +0000
ROA not before: Sat 19 Jul 2025 18:48:25 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 56910
IP address blocks: 31.177.56.0/21 maxlen: 24
86.106.173.0/24 maxlen: 24
91.220.184.0/24 maxlen: 24
185.4.236.0/22 maxlen: 24
185.36.232.0/22 maxlen: 24
185.109.16.0/22 maxlen: 24
188.214.127.0/24 maxlen: 24
2a04:3e00::/29 maxlen: 48
Validation: Failed, certificate revoked on Sat 19 Jul 2025 21:17:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:24:04:1c:52:a9:c4:09:3a:39:15:66:57:6a:38:55:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3600cbafd26fee5064fc89f301dfc8e3c1d3ca5
Validity
Not Before: Jul 19 18:48:25 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4a830822dbdd5cdffcb2da61d5152aca271d6a19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:d8:59:b4:5e:96:1a:b5:b7:36:e5:21:32:40:
19:da:d7:2a:5c:45:f1:3b:1f:4a:b9:96:de:50:f8:
ec:5e:98:77:cb:b1:d5:be:19:8b:fc:e1:b5:eb:19:
62:fe:39:b1:d3:53:ad:a8:dd:6f:60:a0:16:f3:0c:
7e:09:0c:25:e0:ab:d8:3c:8e:d8:3c:1f:db:15:92:
ff:d2:98:f7:fe:e0:72:83:f0:9b:0a:68:ed:6e:31:
43:5b:c3:2f:ba:e2:c4:cc:4f:0f:95:75:f8:f4:90:
f3:d5:79:40:54:8f:2e:fb:1b:a5:f8:70:c7:63:9f:
00:5b:df:5b:82:f6:44:35:fd:46:25:69:a7:39:b1:
b1:e0:2c:a0:74:2d:f2:31:21:83:1f:82:ae:43:11:
77:ea:10:8c:4b:6a:da:74:5f:e0:7b:40:62:58:65:
c9:3b:17:3c:7e:b7:f5:ee:44:e3:d9:01:4f:a5:98:
54:72:5c:f1:67:c4:36:79:95:d6:51:63:c0:f3:ae:
55:09:af:af:b2:f6:27:4c:df:5d:87:86:cf:ef:7f:
9d:9e:d5:7c:78:f4:7e:42:84:94:87:6a:1a:bd:e7:
92:ae:26:a8:fe:64:20:59:57:01:f2:03:56:9b:d9:
5b:52:ce:36:61:21:e1:14:a6:26:43:46:fa:67:f4:
19:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:83:08:22:DB:DD:5C:DF:FC:B2:DA:61:D5:15:2A:CA:27:1D:6A:19
X509v3 Authority Key Identifier:
keyid:D3:60:0C:BA:FD:26:FE:E5:06:4F:C8:9F:30:1D:FC:8E:3C:1D:3C:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/02AMuv0m_uUGT8ifMB38jjwdPKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/b70658-e1dc-4944-a06b-1c680adf7a26/1/SoMIItvdXN_8stph1RUqyicdahk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/b70658-e1dc-4944-a06b-1c680adf7a26/1/02AMuv0m_uUGT8ifMB38jjwdPKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.177.56.0/21
86.106.173.0/24
91.220.184.0/24
185.4.236.0/22
185.36.232.0/22
185.109.16.0/22
188.214.127.0/24
IPv6:
2a04:3e00::/29
Signature Algorithm: sha256WithRSAEncryption
42:df:94:fa:30:83:00:3e:bd:52:e1:82:cd:7c:53:1a:21:b3:
f2:66:96:b1:02:e2:dc:c6:e2:f1:b6:47:ac:a9:5e:19:56:ce:
5a:7e:62:41:82:61:a2:f9:9e:5f:4b:bd:95:ad:5a:6e:1f:11:
1a:c9:ed:9b:60:70:e0:0d:28:20:80:80:34:2b:13:95:9f:7b:
da:86:3e:bf:90:ce:55:44:1b:07:7f:f4:42:e1:97:08:45:94:
cd:59:ce:79:0b:fa:d3:e4:bb:47:ee:fa:03:e2:89:48:f5:fc:
4f:03:f1:8e:9a:de:77:8d:e2:c8:0c:b6:77:9e:0f:31:92:c4:
74:ad:b6:91:9c:cf:d9:eb:bd:50:4c:bc:f6:44:26:a1:76:7a:
98:69:c7:81:4c:22:ac:18:89:12:89:fb:fe:4e:7c:21:a5:c1:
4d:2a:25:06:1f:01:d6:ed:13:11:8b:c1:2f:c5:34:44:2e:12:
3e:67:de:f7:c8:89:52:08:93:b2:4c:11:3d:f9:11:04:9c:af:
fe:47:bc:6b:ce:65:99:9f:d0:0b:75:a4:19:5b:86:67:b4:6a:
82:cc:a3:d0:5c:d0:17:0b:a9:17:a2:b1:f6:d3:0b:e5:33:2f:
64:e0:f4:2a:70:d5:d7:47:5d:af:5c:64:34:5d:2b:64:ba:3c:
5e:46:ab:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 21 03:22:01 2025 by rpki-client