Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/vtH9l9XeKU1SZr7spNSJkBWKr5Y.roa
File: vtH9l9XeKU1SZr7spNSJkBWKr5Y.roa (raw, json)
Hash identifier: UKQuw8mIVNOcdS7ZnWEFX7ND9YgYyN324fo9L0Jj1A4=
Subject key identifier: BE:D1:FD:97:D5:DE:29:4D:52:66:BE:EC:A4:D4:89:90:15:8A:AF:96
Certificate issuer: /CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Certificate serial: 0197CA0E462CB7B473BFD4E8C778E114CE97
Authority key identifier: 2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/vtH9l9XeKU1SZr7spNSJkBWKr5Y.roa
Signing time: Wed 02 Jul 2025 07:33:42 +0000
ROA not before: Wed 02 Jul 2025 07:33:42 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 25211
IP address blocks: 45.141.232.0/24 maxlen: 24
45.141.234.0/24 maxlen: 24
45.141.235.0/24 maxlen: 24
78.159.128.0/24 maxlen: 24
78.159.129.0/24 maxlen: 24
78.159.131.0/24 maxlen: 24
78.159.136.0/24 maxlen: 24
78.159.137.0/24 maxlen: 24
78.159.138.0/24 maxlen: 24
78.159.139.0/24 maxlen: 24
78.159.149.0/24 maxlen: 24
78.159.150.0/24 maxlen: 24
78.159.152.0/22 maxlen: 22
78.159.153.0/24 maxlen: 24
78.159.154.0/24 maxlen: 24
78.159.155.0/24 maxlen: 24
78.159.157.0/24 maxlen: 24
78.159.158.0/24 maxlen: 24
78.159.159.0/24 maxlen: 24
91.92.33.0/24 maxlen: 24
91.92.34.0/24 maxlen: 24
91.92.35.0/24 maxlen: 24
91.92.40.0/24 maxlen: 24
91.92.41.0/24 maxlen: 24
91.92.42.0/24 maxlen: 24
91.92.43.0/24 maxlen: 24
91.92.44.0/24 maxlen: 24
91.92.45.0/24 maxlen: 24
91.92.46.0/24 maxlen: 24
91.92.49.0/24 maxlen: 24
91.92.50.0/24 maxlen: 24
91.92.51.0/24 maxlen: 24
91.92.52.0/24 maxlen: 24
91.92.53.0/24 maxlen: 24
93.152.206.0/24 maxlen: 24
93.152.207.0/24 maxlen: 24
93.152.209.0/24 maxlen: 24
93.152.210.0/24 maxlen: 24
93.152.211.0/24 maxlen: 24
93.152.213.0/24 maxlen: 24
93.152.214.0/24 maxlen: 24
93.152.215.0/24 maxlen: 24
93.152.216.0/24 maxlen: 24
93.152.218.0/24 maxlen: 24
93.152.220.0/24 maxlen: 24
93.152.221.0/24 maxlen: 24
93.152.222.0/24 maxlen: 24
93.152.223.0/24 maxlen: 24
93.152.224.0/24 maxlen: 24
93.152.226.0/24 maxlen: 24
93.152.227.0/24 maxlen: 24
93.152.233.0/24 maxlen: 24
94.26.28.0/24 maxlen: 24
94.26.29.0/24 maxlen: 24
94.26.76.0/22 maxlen: 22
94.26.76.0/24 maxlen: 24
94.26.77.0/24 maxlen: 24
94.26.78.0/24 maxlen: 24
94.26.79.0/24 maxlen: 24
94.26.89.0/24 maxlen: 24
94.26.90.0/24 maxlen: 24
94.190.195.0/24 maxlen: 24
185.96.252.0/24 maxlen: 24
185.96.253.0/24 maxlen: 24
185.96.255.0/24 maxlen: 24
212.102.105.0/24 maxlen: 24
212.102.107.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 17 Jul 2025 08:28:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:ca:0e:46:2c:b7:b4:73:bf:d4:e8:c7:78:e1:14:ce:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Validity
Not Before: Jul 2 07:33:42 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=bed1fd97d5de294d5266beeca4d48990158aaf96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:46:e1:5e:3f:c7:30:ac:46:15:c5:7b:8d:1e:
21:89:b9:7b:e0:49:9a:8b:17:1f:eb:25:cb:ed:af:
7c:26:34:64:9f:b9:23:2b:87:2c:59:13:ac:9a:9c:
fd:6f:7d:4a:29:fb:44:7e:48:87:58:48:6e:2e:14:
ea:ca:d2:61:38:7e:38:f9:34:7f:c2:4e:c6:99:67:
c2:a1:43:b2:be:87:54:0c:0e:27:b0:60:a4:2b:76:
d9:25:7c:d6:0e:52:11:54:52:e1:7e:df:2b:e0:de:
2c:dc:eb:ee:89:a9:3f:32:eb:a9:8a:2d:f2:32:89:
0f:69:10:f4:1f:7c:31:44:21:22:78:29:a4:0b:39:
67:f3:e5:08:9d:f0:4b:06:fe:32:87:8e:2e:38:00:
27:5a:18:53:54:46:a4:3d:ce:27:1a:32:fd:9f:db:
ae:c9:32:71:1f:bc:f4:45:22:d0:54:74:62:89:9f:
e4:b5:7f:64:d0:95:11:31:3f:7a:77:42:43:2e:1d:
46:92:a1:0a:97:6b:4f:f0:55:bf:d5:55:d1:69:f9:
ca:42:68:ef:78:d5:89:fe:65:f5:7a:29:d6:41:f1:
5d:e0:8a:a9:f3:c3:1d:79:6c:a9:71:6c:d4:0c:fd:
47:4b:46:3c:a2:ae:d1:8d:94:bb:30:49:0f:cb:8c:
3c:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:D1:FD:97:D5:DE:29:4D:52:66:BE:EC:A4:D4:89:90:15:8A:AF:96
X509v3 Authority Key Identifier:
keyid:2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/vtH9l9XeKU1SZr7spNSJkBWKr5Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/LRyqaTWPjJj3pxnyWX1drdvQAYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.141.232.0/24
45.141.234.0/23
78.159.128.0/23
78.159.131.0/24
78.159.136.0/22
78.159.149.0-78.159.150.255
78.159.152.0/22
78.159.157.0-78.159.159.255
91.92.33.0-91.92.35.255
91.92.40.0-91.92.46.255
91.92.49.0-91.92.53.255
93.152.206.0/23
93.152.209.0-93.152.211.255
93.152.213.0-93.152.216.255
93.152.218.0/24
93.152.220.0-93.152.224.255
93.152.226.0/23
93.152.233.0/24
94.26.28.0/23
94.26.76.0/22
94.26.89.0-94.26.90.255
94.190.195.0/24
185.96.252.0/23
185.96.255.0/24
212.102.105.0/24
212.102.107.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:e9:6e:f9:60:37:0f:3e:c4:af:97:8a:90:48:5d:87:07:72:
97:ed:f1:68:cc:ff:fa:2c:5c:b1:33:ac:28:cd:52:02:33:1e:
e6:48:71:95:1b:d1:b1:2d:ca:a5:17:2c:4d:64:c4:03:84:7d:
46:1d:c1:f5:c8:d6:61:08:a4:dc:7a:f0:94:40:7b:71:57:97:
ff:de:b9:7c:0a:1b:ae:31:72:7a:6b:57:4c:f8:be:4e:07:7a:
9f:a9:11:99:af:ae:46:27:49:be:32:28:46:5f:f4:84:3a:13:
da:e6:99:69:32:96:04:df:06:9d:d4:22:33:70:47:c4:37:81:
a5:6c:83:86:c6:f7:02:15:e6:7f:42:90:3f:49:c1:aa:80:e4:
79:27:94:2f:43:c3:9e:a8:6b:14:4b:5b:4a:61:78:dc:03:d1:
4a:9b:21:b0:bd:ff:cc:f0:cf:d4:70:d5:c1:73:62:9d:c8:d4:
49:56:05:59:db:2f:92:26:43:25:0b:bd:41:66:32:87:0f:e6:
f0:69:2e:bc:c7:bd:51:ac:d4:b7:e7:57:a2:25:9e:62:9e:19:
eb:10:c8:29:bf:e8:1d:ce:3c:35:f8:b5:3d:a9:15:70:84:35:
c6:fb:94:79:40:5c:d1:23:4f:f3:e8:ac:f2:dc:9f:d4:b4:41:
e9:e4:99:b5
-----BEGIN CERTIFICATE-----
MIIF4TCCBMmgAwIBAgISAZfKDkYst7Rzv9Tox3jhFM6XMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJkMWNhYTY5MzU4ZjhjOThmN2E3MTlmMjU5N2Q1ZGFkZGJk
MDAxOGMwHhcNMjUwNzAyMDczMzQyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiZWQxZmQ5N2Q1ZGUyOTRkNTI2NmJlZWNhNGQ0ODk5MDE1OGFhZjk2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt0bhXj/HMKxGFcV7jR4hibl74Ema
ixcf6yXL7a98JjRkn7kjK4csWROsmpz9b31KKftEfkiHWEhuLhTqytJhOH44+TR/
wk7GmWfCoUOyvodUDA4nsGCkK3bZJXzWDlIRVFLhft8r4N4s3Ovuiak/Muupii3y
MokPaRD0H3wxRCEieCmkCzln8+UInfBLBv4yh44uOAAnWhhTVEakPc4nGjL9n9uu
yTJxH7z0RSLQVHRiiZ/ktX9k0JURMT96d0JDLh1GkqEKl2tP8FW/1VXRafnKQmjv
eNWJ/mX1einWQfFd4Iqp88MdeWypcWzUDP1HS0Y8oq7RjZS7MEkPy4w8kQIDAQAB
o4IC7TCCAukwHQYDVR0OBBYEFL7R/ZfV3ilNUma+7KTUiZAViq+WMB8GA1UdIwQY
MBaAFC0cqmk1j4yY96cZ8ll9Xa3b0AGMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTFJ5cWFUV1BqSmozcHhueVdYMWRyZHZRQVl3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi9hOTM2OTktMTg4Yi00NzBhLTk2Yjct
MjliMDg1ZGQyM2FkLzEvdnRIOWw5WGVLVTFTWnI3c3BOU0prQldLcjVZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZi9hOTM2OTktMTg4Yi00NzBhLTk2YjctMjliMDg1ZGQyM2Fk
LzEvTFJ5cWFUV1BqSmozcHhueVdYMWRyZHZRQVl3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBAQYIKwYBBQUHAQcBAf8EgfEwge4wgesEAgABMIHkAwQA
LY3oAwQBLY3qAwQBTp+AAwQATp+DAwQCTp+IMAwDBABOn5UDBABOn5YDBAJOn5gw
DAMEAE6fnQMEBU6fgDAMAwQAW1whAwQCW1wgMAwDBANbXCgDBABbXC4wDAMEAFtc
MQMEAVtcNAMEAV2YzjAMAwQAXZjRAwQCXZjQMAwDBABdmNUDBABdmNgDBABdmNow
DAMEAl2Y3AMEAF2Y4AMEAV2Y4gMEAF2Y6QMEAV4aHAMEAl4aTDAMAwQAXhpZAwQA
XhpaAwQAXr7DAwQBuWD8AwQAuWD/AwQA1GZpAwQA1GZrMA0GCSqGSIb3DQEBCwUA
A4IBAQA/6W75YDcPPsSvl4qQSF2HB3KX7fFozP/6LFyxM6wozVICMx7mSHGVG9Gx
LcqlFyxNZMQDhH1GHcH1yNZhCKTcevCUQHtxV5f/3rl8ChuuMXJ6a1dM+L5OB3qf
qRGZr65GJ0m+MihGX/SEOhPa5plpMpYE3wad1CIzcEfEN4GlbIOGxvcCFeZ/QpA/
ScGqgOR5J5QvQ8OeqGsUS1tKYXjcA9FKmyGwvf/M8M/UcNXBc2KdyNRJVgVZ2y+S
JkMlC71BZjKHD+bwaS68x71RrNS351eiJZ5inhnrEMgpv+gdzjw1+LU9qRVwhDXG
+5R5QFzRI0/z6Kzy3J/UtEHp5Jm1
-----END CERTIFICATE-----
Generated at Tue Jul 29 07:52:10 2025 by rpki-client