Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/c11c87-efbb-45e8-9b03-d525718aa44a/1/zG4cmE2N2A2nMuHP6UmxxjNVgrA.roa
File: zG4cmE2N2A2nMuHP6UmxxjNVgrA.roa (raw, json)
Hash identifier: xMjoDRnAd/h2OMZGhHsmbz4LyV9mOtCxmo3oj4VK/iw=
Subject key identifier: CC:6E:1C:98:4D:8D:D8:0D:A7:32:E1:CF:E9:49:B1:C6:33:55:82:B0
Certificate issuer: /CN=19ffff289f2dad0fc08456b0bad54d7ba449a492
Certificate serial: 019813612F200FDEBF0C3367A50A258BFEA0
Authority key identifier: 19:FF:FF:28:9F:2D:AD:0F:C0:84:56:B0:BA:D5:4D:7B:A4:49:A4:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gf__KJ8trQ_AhFawutVNe6RJpJI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/c11c87-efbb-45e8-9b03-d525718aa44a/1/zG4cmE2N2A2nMuHP6UmxxjNVgrA.roa
Signing time: Wed 16 Jul 2025 13:16:32 +0000
ROA not before: Wed 16 Jul 2025 13:16:32 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 13213
IP address blocks: 31.24.224.0/21 maxlen: 24
37.123.112.0/21 maxlen: 24
37.123.112.0/24 maxlen: 24
46.23.64.0/21 maxlen: 21
46.23.72.0/22 maxlen: 22
46.23.76.0/22 maxlen: 24
77.92.64.0/21 maxlen: 21
77.92.72.0/22 maxlen: 22
77.92.76.0/23 maxlen: 23
77.92.78.0/23 maxlen: 23
77.92.80.0/20 maxlen: 20
82.163.72.0/21 maxlen: 24
83.170.64.0/18 maxlen: 24
88.202.176.0/23 maxlen: 23
88.202.177.0/24 maxlen: 24
88.202.178.0/24 maxlen: 24
88.202.179.0/24 maxlen: 24
88.202.180.0/22 maxlen: 22
88.202.184.0/24 maxlen: 24
88.202.185.0/24 maxlen: 24
88.202.186.0/23 maxlen: 23
88.202.188.0/22 maxlen: 22
88.202.224.0/21 maxlen: 24
91.109.240.0/21 maxlen: 21
109.123.64.0/18 maxlen: 24
176.67.160.0/21 maxlen: 21
176.67.169.0/24 maxlen: 24
176.67.171.0/24 maxlen: 24
176.67.172.0/22 maxlen: 24
185.7.224.0/22 maxlen: 24
2a02:2498::/47 maxlen: 47
2a02:2498:4::/48 maxlen: 48
2a02:2498:5::/48 maxlen: 48
2a02:2498:16::/48 maxlen: 48
2a02:2498:1000::/36 maxlen: 36
2a02:2498:257b::/48 maxlen: 48
2a02:2498:53aa::/48 maxlen: 48
2a02:2498:6d7b::/48 maxlen: 48
2a02:2498:8000::/36 maxlen: 36
2a02:2498:9000::/36 maxlen: 36
2a02:2498:a000::/36 maxlen: 36
2a02:2498:b000::/36 maxlen: 36
2a02:2498:e000::/36 maxlen: 36
2a02:2498:e004::/48 maxlen: 48
2a02:2498:f000::/36 maxlen: 36
2a02:2498:f000::/48 maxlen: 48
2a02:2498:f001::/48 maxlen: 48
2a02:2498:f002::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 21 Jul 2025 15:48:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:13:61:2f:20:0f:de:bf:0c:33:67:a5:0a:25:8b:fe:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19ffff289f2dad0fc08456b0bad54d7ba449a492
Validity
Not Before: Jul 16 13:16:32 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=cc6e1c984d8dd80da732e1cfe949b1c6335582b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:e1:fb:c4:6a:c6:6d:11:c0:d2:f7:3f:7e:5a:
5e:81:a2:86:ba:28:7a:fc:c9:9b:2a:c5:b6:e6:91:
c6:cb:d3:88:82:31:02:e2:a3:84:d6:d6:c6:77:a9:
4c:be:35:0e:1e:3b:4c:1e:c9:e6:fd:17:ba:41:9a:
82:ee:08:96:8e:c5:89:e4:fa:39:82:fd:5f:81:1b:
e3:3d:2f:44:05:50:8b:2f:f6:dc:77:15:82:f2:e7:
e0:8d:33:01:4b:55:76:d8:62:16:4b:8b:18:3d:21:
f4:28:fe:2f:c3:2b:16:1e:b9:be:1f:90:e8:39:28:
e5:23:5a:d7:f8:2b:e4:01:19:d7:f5:e9:2c:57:22:
88:4e:8a:08:da:cf:bf:f7:b2:16:a0:41:52:0f:ec:
16:f3:c1:4d:26:14:33:d3:c9:ba:aa:04:22:e1:7a:
c6:79:90:e3:e4:b9:b5:0c:4a:68:b3:8c:ef:f8:ce:
48:dd:dd:6b:e8:1d:e7:a3:78:53:98:0a:23:d0:9e:
12:14:12:c6:97:12:38:c8:8e:de:46:ac:06:6f:95:
1f:70:ed:6d:64:3e:90:75:e2:11:e4:a0:7a:c2:2c:
8c:17:0c:ca:1e:13:d6:5d:87:5f:fb:84:1e:73:3b:
55:fd:92:60:f4:be:17:49:1e:06:30:ca:94:a2:91:
d6:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:6E:1C:98:4D:8D:D8:0D:A7:32:E1:CF:E9:49:B1:C6:33:55:82:B0
X509v3 Authority Key Identifier:
keyid:19:FF:FF:28:9F:2D:AD:0F:C0:84:56:B0:BA:D5:4D:7B:A4:49:A4:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gf__KJ8trQ_AhFawutVNe6RJpJI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/c11c87-efbb-45e8-9b03-d525718aa44a/1/zG4cmE2N2A2nMuHP6UmxxjNVgrA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/c11c87-efbb-45e8-9b03-d525718aa44a/1/Gf__KJ8trQ_AhFawutVNe6RJpJI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.24.224.0/21
37.123.112.0/21
46.23.64.0/20
77.92.64.0/19
82.163.72.0/21
83.170.64.0/18
88.202.176.0/20
88.202.224.0/21
91.109.240.0/21
109.123.64.0/18
176.67.160.0/21
176.67.169.0/24
176.67.171.0-176.67.175.255
185.7.224.0/22
IPv6:
2a02:2498::/47
2a02:2498:4::/47
2a02:2498:16::/48
2a02:2498:1000::/36
2a02:2498:257b::/48
2a02:2498:53aa::/48
2a02:2498:6d7b::/48
2a02:2498:8000::/34
2a02:2498:e000::/35
Signature Algorithm: sha256WithRSAEncryption
75:42:43:32:bb:52:a0:9b:b9:48:c5:26:3c:cc:c6:fa:f8:6b:
cd:0a:c3:b5:1f:2a:d1:87:80:32:5c:b2:51:32:3f:18:64:d9:
a2:b0:1e:9f:4e:63:65:fc:ff:d7:38:be:ce:19:1f:b7:c9:59:
20:c9:8b:0d:e5:31:0f:76:e2:82:c3:d0:24:e3:42:ab:46:e9:
e7:35:97:c9:5b:47:4a:09:b6:6c:0b:53:7c:9a:33:50:a8:dc:
a5:1c:5c:b5:cd:68:49:07:7c:04:f1:b3:86:80:5b:70:ab:c7:
eb:90:f1:0e:ef:d3:d0:c2:20:e7:51:7c:bd:9c:f5:cd:e6:1a:
37:22:8e:b6:9c:5f:bf:71:72:df:09:28:40:46:a9:d6:2e:03:
c7:a7:22:89:47:2e:29:02:ee:f9:6d:a0:5d:37:f6:39:50:2e:
3f:40:07:79:2d:35:40:71:e6:94:d2:55:36:0e:2d:bb:6f:6a:
a5:e7:39:88:c8:52:0e:6f:68:32:3b:df:b1:66:60:ca:e0:9d:
89:8c:8e:c2:f4:86:56:dc:f9:1d:82:a3:93:3c:a1:db:f7:69:
49:5f:8a:c5:2e:3d:1b:3e:72:ce:2e:6c:9b:3b:e8:fe:c3:5d:
99:cc:94:b9:25:92:87:15:18:22:6f:a3:ca:36:59:b7:2d:8f:
c4:02:6a:16
-----BEGIN CERTIFICATE-----
MIIFrDCCBJSgAwIBAgISAZgTYS8gD96/DDNnpQoli/6gMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE5ZmZmZjI4OWYyZGFkMGZjMDg0NTZiMGJhZDU0ZDdiYTQ0
OWE0OTIwHhcNMjUwNzE2MTMxNjMyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjYzZlMWM5ODRkOGRkODBkYTczMmUxY2ZlOTQ5YjFjNjMzNTU4MmIwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAveH7xGrGbRHA0vc/flpegaKGuih6
/MmbKsW25pHGy9OIgjEC4qOE1tbGd6lMvjUOHjtMHsnm/Re6QZqC7giWjsWJ5Po5
gv1fgRvjPS9EBVCLL/bcdxWC8ufgjTMBS1V22GIWS4sYPSH0KP4vwysWHrm+H5Do
OSjlI1rX+CvkARnX9eksVyKITooI2s+/97IWoEFSD+wW88FNJhQz08m6qgQi4XrG
eZDj5Lm1DEpos4zv+M5I3d1r6B3no3hTmAoj0J4SFBLGlxI4yI7eRqwGb5UfcO1t
ZD6QdeIR5KB6wiyMFwzKHhPWXYdf+4QecztV/ZJg9L4XSR4GMMqUopHWAQIDAQAB
o4ICuDCCArQwHQYDVR0OBBYEFMxuHJhNjdgNpzLhz+lJscYzVYKwMB8GA1UdIwQY
MBaAFBn//yifLa0PwIRWsLrVTXukSaSSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR2ZfX0tKOHRyUV9BaEZhd3V0Vk5lNlJKcEpJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNC9jMTFjODctZWZiYi00NWU4LTliMDMt
ZDUyNTcxOGFhNDRhLzEvekc0Y21FMk4yQTJuTXVIUDZVbXh4ak5WZ3JBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNC9jMTFjODctZWZiYi00NWU4LTliMDMtZDUyNTcxOGFhNDRh
LzEvR2ZfX0tKOHRyUV9BaEZhd3V0Vk5lNlJKcEpJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHNBggrBgEFBQcBBwEB/wSBvTCBujBiBAIAATBcAwQDHxjg
AwQDJXtwAwQELhdAAwQFTVxAAwQDUqNIAwQGU6pAAwQEWMqwAwQDWMrgAwQDW23w
AwQGbXtAAwQDsEOgAwQAsEOpMAwDBACwQ6sDBASwQ6ADBAK5B+AwVAQCAAIwTgMH
ASoCJJgAAAMHASoCJJgABAMHACoCJJgAFgMGBCoCJJgQAwcAKgIkmCV7AwcAKgIk
mFOqAwcAKgIkmG17AwYGKgIkmIADBgUqAiSY4DANBgkqhkiG9w0BAQsFAAOCAQEA
dUJDMrtSoJu5SMUmPMzG+vhrzQrDtR8q0YeAMlyyUTI/GGTZorAen05jZfz/1zi+
zhkft8lZIMmLDeUxD3bigsPQJONCq0bp5zWXyVtHSgm2bAtTfJozUKjcpRxctc1o
SQd8BPGzhoBbcKvH65DxDu/T0MIg51F8vZz1zeYaNyKOtpxfv3Fy3wkoQEap1i4D
x6ciiUcuKQLu+W2gXTf2OVAuP0AHeS01QHHmlNJVNg4tu29qpec5iMhSDm9oMjvf
sWZgyuCdiYyOwvSGVtz5HYKjkzyh2/dpSV+KxS49Gz5yzi5smzvo/sNdmcyUuSWS
hxUYIm+jyjZZty2PxAJqFg==
-----END CERTIFICATE-----
Generated at Sun Jul 27 04:56:41 2025 by rpki-client