Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/M2SRnwp4MoIC3aUdOwiQfcB1Sak.roa
File: M2SRnwp4MoIC3aUdOwiQfcB1Sak.roa (raw, json)
Hash identifier: 6MLBM1oGEijANZo2uuF15PRyoV/3cyrVc0qtKwbXLwQ=
Subject key identifier: 33:64:91:9F:0A:78:32:82:02:DD:A5:1D:3B:08:90:7D:C0:75:49:A9
Certificate issuer: /CN=60661758ce330622470a39ae8d6ef4a2044f83c4
Certificate serial: 01979B737105EF6A3CCB1851FB8C060FBCF4
Authority key identifier: 60:66:17:58:CE:33:06:22:47:0A:39:AE:8D:6E:F4:A2:04:4F:83:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGYXWM4zBiJHCjmujW70ogRPg8Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/M2SRnwp4MoIC3aUdOwiQfcB1Sak.roa
Signing time: Mon 23 Jun 2025 06:22:03 +0000
ROA not before: Mon 23 Jun 2025 06:22:03 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 24852
IP address blocks: 79.132.160.0/20 maxlen: 20
84.55.32.0/24 maxlen: 24
84.55.33.0/24 maxlen: 24
84.55.34.0/23 maxlen: 23
84.55.36.0/23 maxlen: 23
84.55.48.0/21 maxlen: 21
84.55.56.0/23 maxlen: 23
84.55.58.0/23 maxlen: 23
84.55.60.0/23 maxlen: 23
84.55.62.0/23 maxlen: 23
88.223.0.0/20 maxlen: 20
88.223.24.0/21 maxlen: 21
88.223.32.0/19 maxlen: 19
88.223.32.0/21 maxlen: 24
88.223.40.0/23 maxlen: 24
88.223.48.0/20 maxlen: 24
88.223.96.0/22 maxlen: 22
88.223.104.0/21 maxlen: 21
88.223.112.0/20 maxlen: 20
88.223.128.0/22 maxlen: 22
88.223.144.0/21 maxlen: 21
88.223.152.0/24 maxlen: 24
88.223.153.0/24 maxlen: 24
88.223.160.0/22 maxlen: 22
88.223.192.0/20 maxlen: 20
95.173.32.0/23 maxlen: 23
185.104.176.0/22 maxlen: 22
213.164.112.0/22 maxlen: 22
213.164.116.0/23 maxlen: 23
213.164.118.0/24 maxlen: 24
217.147.34.0/24 maxlen: 24
217.147.35.0/24 maxlen: 24
217.147.36.0/23 maxlen: 23
217.147.38.0/24 maxlen: 24
217.147.40.0/24 maxlen: 24
217.147.41.0/24 maxlen: 24
217.147.44.0/23 maxlen: 23
217.147.46.0/24 maxlen: 24
217.147.47.0/24 maxlen: 24
2a01:7c80::/33 maxlen: 33
Validation: Failed, certificate revoked on Wed 25 Jun 2025 09:06:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:9b:73:71:05:ef:6a:3c:cb:18:51:fb:8c:06:0f:bc:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60661758ce330622470a39ae8d6ef4a2044f83c4
Validity
Not Before: Jun 23 06:22:03 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3364919f0a78328202dda51d3b08907dc07549a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:9a:82:03:be:22:e7:63:15:51:82:9a:4f:0e:
e2:e2:7c:a5:79:3e:cd:37:00:e4:ae:f4:7f:f6:04:
6c:fd:a3:06:cf:09:e0:63:cc:dd:68:c8:2d:19:37:
ce:bd:93:d5:36:39:b6:cd:17:30:fe:37:c1:01:9b:
42:e8:4e:70:0a:0a:26:9b:d7:35:7b:06:eb:f3:f9:
c6:f0:e1:c1:69:2e:cd:00:e9:f2:21:86:f5:58:1d:
ac:61:9a:b0:45:18:93:ff:f7:70:a3:fd:96:e2:12:
8e:88:3b:78:f8:79:ce:09:2f:43:4b:59:29:2d:b3:
32:ed:c6:dc:6a:28:05:19:fd:f8:57:87:db:fb:55:
68:e4:7c:bf:65:7e:1f:2d:70:4e:35:4d:9a:a0:63:
f9:3b:0a:a4:9d:ba:32:e3:59:8b:85:b3:75:ec:a3:
63:5a:c6:2e:a2:ff:2a:39:c0:ad:1c:86:04:74:73:
2c:a7:52:f2:5e:90:9f:62:80:b6:7f:cc:7d:8e:1e:
75:cc:1f:f1:7e:9b:3d:cd:82:8a:4e:d9:3c:79:34:
1b:be:02:10:35:0d:e4:e5:73:8c:d1:82:1b:35:0b:
17:49:9b:33:f0:76:10:f6:89:7c:ba:34:b9:df:7d:
64:da:45:6e:29:ce:6e:ab:7a:9a:34:6a:74:ab:c5:
92:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:64:91:9F:0A:78:32:82:02:DD:A5:1D:3B:08:90:7D:C0:75:49:A9
X509v3 Authority Key Identifier:
keyid:60:66:17:58:CE:33:06:22:47:0A:39:AE:8D:6E:F4:A2:04:4F:83:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGYXWM4zBiJHCjmujW70ogRPg8Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/M2SRnwp4MoIC3aUdOwiQfcB1Sak.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/YGYXWM4zBiJHCjmujW70ogRPg8Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.132.160.0/20
84.55.32.0-84.55.37.255
84.55.48.0/20
88.223.0.0/20
88.223.24.0-88.223.63.255
88.223.96.0/22
88.223.104.0-88.223.131.255
88.223.144.0-88.223.153.255
88.223.160.0/22
88.223.192.0/20
95.173.32.0/23
185.104.176.0/22
213.164.112.0-213.164.118.255
217.147.34.0-217.147.38.255
217.147.40.0/23
217.147.44.0/22
IPv6:
2a01:7c80::/33
Signature Algorithm: sha256WithRSAEncryption
2b:0e:85:d6:13:4d:ad:55:dd:b9:0e:e1:21:7c:a3:df:91:71:
68:68:3b:45:34:f7:f0:04:68:ec:24:6d:de:80:3f:29:c0:a1:
0b:3c:b5:8b:21:96:de:d7:68:0c:0c:44:20:58:44:8e:d5:b5:
8d:7d:c4:2e:1b:4a:b8:54:2a:bf:1d:ba:88:ea:ff:fa:00:c0:
df:c0:67:92:08:86:9c:b3:27:9c:51:ff:fd:16:e1:f0:a7:ec:
d8:13:02:c0:f7:8d:2f:06:14:79:ff:5e:7e:d4:08:88:2c:e6:
6d:74:6e:7a:3e:d9:b3:73:ed:b9:c9:36:45:02:44:5b:ad:b6:
e8:2e:4c:ed:a5:f8:b4:14:c6:43:0a:49:34:f2:a7:ff:66:d1:
30:6f:8e:33:a9:e1:a4:92:39:a3:d0:42:2a:00:29:c8:6f:1f:
16:97:b3:96:14:2c:3f:6d:7f:a5:f2:ee:e3:08:ea:d8:74:07:
d7:4c:c7:5c:fa:1d:5f:29:fd:fc:94:18:7c:7e:94:32:74:f0:
e2:17:da:1a:9d:7f:44:f9:a7:41:ca:13:51:9c:c7:03:69:53:
df:75:f3:16:eb:e6:71:e5:5a:97:91:22:f6:46:66:3d:0b:73:
b3:9d:5d:a1:ae:73:37:88:54:3c:6f:d1:38:16:02:08:1a:7a:
ca:59:75:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 26 20:28:11 2025 by rpki-client