Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/Gr0oDJesEi8gWx-9opZF1TduZpY.roa
File: Gr0oDJesEi8gWx-9opZF1TduZpY.roa (raw, json)
Hash identifier: 0pklQhrHe5jR0cIW+i++EQbHrjPNYS/6Dwi3EPigvng=
Subject key identifier: 1A:BD:28:0C:97:AC:12:2F:20:5B:1F:BD:A2:96:45:D5:37:6E:66:96
Certificate issuer: /CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Certificate serial: 0197BB8B1128709A58D05B52A5BA9B5C9BBA
Authority key identifier: 2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/Gr0oDJesEi8gWx-9opZF1TduZpY.roa
Signing time: Sun 29 Jun 2025 11:55:42 +0000
ROA not before: Sun 29 Jun 2025 11:55:42 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 25211
IP address blocks: 45.141.232.0/24 maxlen: 24
45.141.234.0/24 maxlen: 24
45.141.235.0/24 maxlen: 24
78.159.128.0/24 maxlen: 24
78.159.129.0/24 maxlen: 24
78.159.130.0/24 maxlen: 24
78.159.131.0/24 maxlen: 24
78.159.136.0/24 maxlen: 24
78.159.137.0/24 maxlen: 24
78.159.138.0/24 maxlen: 24
78.159.139.0/24 maxlen: 24
78.159.149.0/24 maxlen: 24
78.159.150.0/24 maxlen: 24
78.159.152.0/22 maxlen: 22
78.159.153.0/24 maxlen: 24
78.159.154.0/24 maxlen: 24
78.159.155.0/24 maxlen: 24
78.159.157.0/24 maxlen: 24
78.159.158.0/24 maxlen: 24
78.159.159.0/24 maxlen: 24
91.92.33.0/24 maxlen: 24
91.92.35.0/24 maxlen: 24
91.92.40.0/24 maxlen: 24
91.92.41.0/24 maxlen: 24
91.92.42.0/24 maxlen: 24
91.92.43.0/24 maxlen: 24
91.92.44.0/24 maxlen: 24
91.92.45.0/24 maxlen: 24
91.92.46.0/24 maxlen: 24
91.92.49.0/24 maxlen: 24
91.92.50.0/24 maxlen: 24
91.92.51.0/24 maxlen: 24
91.92.52.0/24 maxlen: 24
91.92.53.0/24 maxlen: 24
93.152.206.0/24 maxlen: 24
93.152.207.0/24 maxlen: 24
93.152.209.0/24 maxlen: 24
93.152.210.0/24 maxlen: 24
93.152.211.0/24 maxlen: 24
93.152.213.0/24 maxlen: 24
93.152.214.0/24 maxlen: 24
93.152.215.0/24 maxlen: 24
93.152.216.0/24 maxlen: 24
93.152.218.0/24 maxlen: 24
93.152.220.0/24 maxlen: 24
93.152.221.0/24 maxlen: 24
93.152.222.0/24 maxlen: 24
93.152.223.0/24 maxlen: 24
93.152.224.0/24 maxlen: 24
93.152.226.0/24 maxlen: 24
93.152.227.0/24 maxlen: 24
93.152.233.0/24 maxlen: 24
94.26.28.0/24 maxlen: 24
94.26.29.0/24 maxlen: 24
94.26.76.0/22 maxlen: 22
94.26.76.0/24 maxlen: 24
94.26.77.0/24 maxlen: 24
94.26.78.0/24 maxlen: 24
94.26.79.0/24 maxlen: 24
94.26.89.0/24 maxlen: 24
94.26.90.0/24 maxlen: 24
94.190.195.0/24 maxlen: 24
185.96.252.0/24 maxlen: 24
185.96.253.0/24 maxlen: 24
185.96.255.0/24 maxlen: 24
212.102.105.0/24 maxlen: 24
212.102.107.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 30 Jun 2025 08:11:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:bb:8b:11:28:70:9a:58:d0:5b:52:a5:ba:9b:5c:9b:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Validity
Not Before: Jun 29 11:55:42 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1abd280c97ac122f205b1fbda29645d5376e6696
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:2e:28:63:8c:d2:dc:db:fc:5c:c7:ea:94:5d:
42:63:52:c5:52:34:b9:15:87:c3:64:d4:77:e8:fb:
77:a3:06:b3:a5:fd:74:32:66:3e:8a:e2:8a:f8:e7:
ad:4a:3f:e8:eb:9e:92:a2:0f:9f:53:99:e2:a2:ba:
4a:70:8d:f6:5c:67:40:3e:f7:21:8c:0d:03:b3:19:
62:d1:0a:c9:51:eb:2e:d7:96:3e:34:c9:fe:e6:2b:
4e:fd:72:9a:48:a0:a2:ed:72:ae:64:1b:0c:34:07:
9d:2f:12:45:5f:c5:68:d1:06:42:65:c8:7d:f1:56:
fc:f8:8a:74:4f:c2:e6:d8:d3:47:46:2f:72:5a:b6:
4b:d3:17:c9:8c:ff:c9:a2:3f:bd:e8:6b:be:04:48:
32:e7:b3:fd:17:40:cc:cf:38:d1:e2:1b:b7:e1:f0:
64:18:3a:42:fc:cf:c8:43:97:59:94:bf:62:4d:58:
c0:a6:d9:42:f7:c2:02:f1:27:3c:cc:4a:e3:54:ef:
a4:8c:47:9e:41:bd:a9:ab:b8:f9:7b:be:ae:49:dd:
e6:2c:58:b8:09:7d:3f:91:e7:b5:9d:d1:91:71:bb:
7c:4e:72:40:22:63:3a:c7:e2:fc:53:fa:16:54:87:
4e:f4:38:76:12:52:4d:88:96:2f:b0:f3:0a:c2:72:
55:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:BD:28:0C:97:AC:12:2F:20:5B:1F:BD:A2:96:45:D5:37:6E:66:96
X509v3 Authority Key Identifier:
keyid:2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/Gr0oDJesEi8gWx-9opZF1TduZpY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/LRyqaTWPjJj3pxnyWX1drdvQAYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.141.232.0/24
45.141.234.0/23
78.159.128.0/22
78.159.136.0/22
78.159.149.0-78.159.150.255
78.159.152.0/22
78.159.157.0-78.159.159.255
91.92.33.0/24
91.92.35.0/24
91.92.40.0-91.92.46.255
91.92.49.0-91.92.53.255
93.152.206.0/23
93.152.209.0-93.152.211.255
93.152.213.0-93.152.216.255
93.152.218.0/24
93.152.220.0-93.152.224.255
93.152.226.0/23
93.152.233.0/24
94.26.28.0/23
94.26.76.0/22
94.26.89.0-94.26.90.255
94.190.195.0/24
185.96.252.0/23
185.96.255.0/24
212.102.105.0/24
212.102.107.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:50:7e:9d:39:be:d0:88:67:07:22:6f:51:b6:02:5f:36:2c:
7b:3e:0a:53:02:37:63:09:d5:a6:76:25:ac:99:20:bc:ee:cc:
25:3d:40:2a:86:d2:15:8d:1e:f3:48:d2:4b:88:71:0c:f9:66:
3e:8f:06:c5:90:c8:8f:df:b0:fb:c7:a4:1a:9c:dd:09:24:ec:
c2:fe:f7:c7:47:70:d6:a7:98:e6:dd:e8:40:68:3b:72:d7:ce:
5b:46:ce:e7:d5:46:0a:18:ad:94:2b:81:84:6d:0e:c6:96:64:
5c:8e:50:db:0b:23:23:30:70:29:7c:92:68:8c:cf:b9:b6:79:
ab:5c:76:30:e8:cb:f8:f7:a4:dc:c9:0a:e8:f4:aa:de:a6:58:
07:8d:97:49:a2:db:d0:80:c8:3b:15:51:0e:ae:50:cb:44:67:
21:10:42:d1:69:a8:d1:25:32:9a:90:c5:03:6a:a5:9f:00:4e:
e8:37:f9:9d:5e:97:b8:9b:fc:15:77:50:38:0f:4d:4e:49:a3:
3e:77:a9:97:fa:5c:2b:b6:4e:a1:46:73:fd:5a:b6:77:80:f3:
4c:18:56:2a:27:50:82:e1:d7:57:f3:37:39:76:c4:88:b7:55:
bf:94:8e:79:2c:a7:83:5b:10:b1:9c:74:00:09:b8:72:bd:65:
56:d6:95:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 29 07:51:38 2025 by rpki-client