Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/0ff449-ad98-482d-ac75-864238bc049b/1/OSLhC9K1eVIrm7CM5y6phOIHqOY.roa
File: OSLhC9K1eVIrm7CM5y6phOIHqOY.roa (raw, json)
Hash identifier: Bt+muB+b/WIqJalX5tFcdNCU6tMdVdJi6AFrs6cfgUg=
Subject key identifier: 39:22:E1:0B:D2:B5:79:52:2B:9B:B0:8C:E7:2E:A9:84:E2:07:A8:E6
Certificate issuer: /CN=24cc6b9c37faa0da3b412007c0b10b2c5bf2cf4e
Certificate serial: 019837B7B75C13F51AE0AD49997583F7A35D
Authority key identifier: 24:CC:6B:9C:37:FA:A0:DA:3B:41:20:07:C0:B1:0B:2C:5B:F2:CF:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JMxrnDf6oNo7QSAHwLELLFvyz04.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/0ff449-ad98-482d-ac75-864238bc049b/1/OSLhC9K1eVIrm7CM5y6phOIHqOY.roa
Signing time: Wed 23 Jul 2025 14:37:23 +0000
ROA not before: Wed 23 Jul 2025 14:37:23 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 203
IP address blocks: 149.250.0.0/16 maxlen: 16
192.109.236.0/24 maxlen: 24
195.203.0.0/17 maxlen: 17
195.203.128.0/17 maxlen: 17
195.203.152.0/23 maxlen: 23
195.203.156.0/22 maxlen: 22
217.27.0.0/23 maxlen: 23
217.27.2.0/23 maxlen: 23
217.27.4.0/24 maxlen: 24
217.27.6.0/24 maxlen: 24
217.27.7.0/24 maxlen: 24
2a03:5000:1::/48 maxlen: 48
2a03:5000:2::/48 maxlen: 48
2a03:5000:11::/48 maxlen: 48
2a03:5000:12::/48 maxlen: 48
2a03:5000:20::/48 maxlen: 48
2a03:5000:21::/48 maxlen: 48
2a03:5000:22::/48 maxlen: 48
2a03:5000:30::/48 maxlen: 48
2a03:5000:31::/48 maxlen: 48
2a03:5000:32::/48 maxlen: 48
2a03:5000:41::/48 maxlen: 48
2a03:5000:42::/48 maxlen: 48
2a03:5000:51::/48 maxlen: 48
2a03:5000:52::/48 maxlen: 48
2a03:5000:61::/48 maxlen: 48
2a03:5000:62::/48 maxlen: 48
2a03:5000:71::/48 maxlen: 48
2a03:5000:72::/48 maxlen: 48
2a03:5000:81::/48 maxlen: 48
2a03:5000:82::/48 maxlen: 48
2a03:5000:91::/48 maxlen: 48
2a03:5000:92::/48 maxlen: 48
2a03:5000:101::/48 maxlen: 48
2a03:5000:102::/48 maxlen: 48
2a03:5000:111::/48 maxlen: 48
2a03:5000:112::/48 maxlen: 48
2a03:5000:121::/48 maxlen: 48
2a03:5000:122::/48 maxlen: 48
2a03:5000:131::/48 maxlen: 48
2a03:5000:132::/48 maxlen: 48
2a03:5000:141::/48 maxlen: 48
2a03:5000:142::/48 maxlen: 48
2a03:5000:151::/48 maxlen: 48
2a03:5000:152::/48 maxlen: 48
2a03:5000:161::/48 maxlen: 48
2a03:5000:162::/48 maxlen: 48
2a03:5000:171::/48 maxlen: 48
2a03:5000:172::/48 maxlen: 48
2a03:5000:181::/48 maxlen: 48
2a03:5000:182::/48 maxlen: 48
2a03:5000:191::/48 maxlen: 48
2a03:5000:192::/48 maxlen: 48
2a03:5000:201::/48 maxlen: 48
2a03:5000:202::/48 maxlen: 48
2a03:5000:211::/48 maxlen: 48
2a03:5000:212::/48 maxlen: 48
2a03:5000:221::/48 maxlen: 48
2a03:5000:222::/48 maxlen: 48
2a03:5000:231::/48 maxlen: 48
2a03:5000:232::/48 maxlen: 48
2a03:5000:241::/48 maxlen: 48
2a03:5000:242::/48 maxlen: 48
2a03:5000:251::/48 maxlen: 48
2a03:5000:252::/48 maxlen: 48
2a03:5000:271::/48 maxlen: 48
2a03:5000:272::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 23 Jul 2025 17:27:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:37:b7:b7:5c:13:f5:1a:e0:ad:49:99:75:83:f7:a3:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24cc6b9c37faa0da3b412007c0b10b2c5bf2cf4e
Validity
Not Before: Jul 23 14:37:23 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3922e10bd2b579522b9bb08ce72ea984e207a8e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:cd:d0:95:e0:36:cc:fc:fa:e1:0c:33:9f:72:
60:8c:3d:9a:c6:03:e2:c0:13:b6:71:aa:1e:35:d1:
39:b6:1a:c9:20:ae:3a:eb:f9:e4:cd:f8:f7:af:72:
87:40:b5:93:60:ea:02:c9:d8:46:5a:a1:01:7b:71:
49:72:2a:dd:b2:09:af:32:37:2b:8a:da:0d:6e:ca:
22:cb:73:dc:86:3b:71:3b:91:2e:a6:14:24:4d:b9:
2a:20:3b:1c:e2:a4:80:59:0f:6b:a0:f8:0e:c6:0d:
66:b1:ed:e3:32:97:62:5f:f7:f8:12:e6:cd:42:45:
e9:48:a4:31:fa:19:f4:99:e4:1b:b3:3a:ad:68:bd:
66:72:3e:a9:2a:5a:6b:1d:b9:b3:95:79:f8:ba:5f:
30:7b:84:72:f9:bc:5f:3a:9d:b5:30:fa:2d:53:3a:
c7:61:d4:db:96:50:6c:07:df:d8:fa:f0:9e:e5:89:
03:82:aa:2e:f7:56:3a:d8:b3:7b:dd:84:9f:51:bc:
ae:9a:9c:67:db:b9:a1:81:18:d2:b2:b4:7a:82:c3:
94:44:c3:a5:b6:80:07:95:4e:e0:2a:71:88:cc:a8:
f7:5a:95:c7:b3:aa:dd:d2:dd:21:c9:07:79:1f:32:
c9:af:20:e6:6b:e6:a4:7b:fd:7a:ba:7e:2a:78:65:
76:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:22:E1:0B:D2:B5:79:52:2B:9B:B0:8C:E7:2E:A9:84:E2:07:A8:E6
X509v3 Authority Key Identifier:
keyid:24:CC:6B:9C:37:FA:A0:DA:3B:41:20:07:C0:B1:0B:2C:5B:F2:CF:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JMxrnDf6oNo7QSAHwLELLFvyz04.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/0ff449-ad98-482d-ac75-864238bc049b/1/OSLhC9K1eVIrm7CM5y6phOIHqOY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/0ff449-ad98-482d-ac75-864238bc049b/1/JMxrnDf6oNo7QSAHwLELLFvyz04.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
149.250.0.0/16
192.109.236.0/24
195.203.0.0/16
217.27.0.0-217.27.4.255
217.27.6.0/23
IPv6:
2a03:5000:1::-2a03:5000:2:ffff:ffff:ffff:ffff:ffff
2a03:5000:11::-2a03:5000:12:ffff:ffff:ffff:ffff:ffff
2a03:5000:20::-2a03:5000:22:ffff:ffff:ffff:ffff:ffff
2a03:5000:30::-2a03:5000:32:ffff:ffff:ffff:ffff:ffff
2a03:5000:41::-2a03:5000:42:ffff:ffff:ffff:ffff:ffff
2a03:5000:51::-2a03:5000:52:ffff:ffff:ffff:ffff:ffff
2a03:5000:61::-2a03:5000:62:ffff:ffff:ffff:ffff:ffff
2a03:5000:71::-2a03:5000:72:ffff:ffff:ffff:ffff:ffff
2a03:5000:81::-2a03:5000:82:ffff:ffff:ffff:ffff:ffff
2a03:5000:91::-2a03:5000:92:ffff:ffff:ffff:ffff:ffff
2a03:5000:101::-2a03:5000:102:ffff:ffff:ffff:ffff:ffff
2a03:5000:111::-2a03:5000:112:ffff:ffff:ffff:ffff:ffff
2a03:5000:121::-2a03:5000:122:ffff:ffff:ffff:ffff:ffff
2a03:5000:131::-2a03:5000:132:ffff:ffff:ffff:ffff:ffff
2a03:5000:141::-2a03:5000:142:ffff:ffff:ffff:ffff:ffff
2a03:5000:151::-2a03:5000:152:ffff:ffff:ffff:ffff:ffff
2a03:5000:161::-2a03:5000:162:ffff:ffff:ffff:ffff:ffff
2a03:5000:171::-2a03:5000:172:ffff:ffff:ffff:ffff:ffff
2a03:5000:181::-2a03:5000:182:ffff:ffff:ffff:ffff:ffff
2a03:5000:191::-2a03:5000:192:ffff:ffff:ffff:ffff:ffff
2a03:5000:201::-2a03:5000:202:ffff:ffff:ffff:ffff:ffff
2a03:5000:211::-2a03:5000:212:ffff:ffff:ffff:ffff:ffff
2a03:5000:221::-2a03:5000:222:ffff:ffff:ffff:ffff:ffff
2a03:5000:231::-2a03:5000:232:ffff:ffff:ffff:ffff:ffff
2a03:5000:241::-2a03:5000:242:ffff:ffff:ffff:ffff:ffff
2a03:5000:251::-2a03:5000:252:ffff:ffff:ffff:ffff:ffff
2a03:5000:271::-2a03:5000:272:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
19:0b:ec:1f:66:67:64:56:a2:69:08:a0:e4:96:f8:0f:93:f8:
bd:bb:26:8b:82:ca:ef:dd:fe:2e:fb:21:e9:3a:e0:33:ae:e0:
e4:cc:2f:d5:51:af:50:0a:83:fb:4c:2b:ed:b9:19:5c:6f:23:
e2:5b:15:0c:2b:aa:61:d8:f3:92:68:5b:ba:47:91:eb:92:49:
37:59:52:d4:8b:12:07:60:10:92:28:53:d0:c1:95:7b:d1:b6:
b2:20:f0:3a:5a:3f:c6:3d:cd:8c:26:e7:1e:73:1d:02:f9:86:
b1:71:a6:39:3e:23:f7:f4:3c:45:c1:5f:60:f5:94:49:84:9e:
e1:e7:11:77:bd:61:a2:60:63:f8:f5:5e:aa:23:d1:40:89:a7:
fb:40:32:b1:b3:54:f8:9e:8f:0b:8a:e6:87:c8:be:42:87:d3:
8d:ba:db:93:a1:e7:04:fb:14:af:d0:54:bc:8d:e8:86:02:3d:
16:a2:ad:d3:7e:ed:43:b6:20:de:f4:00:e5:ec:5c:0d:f4:f1:
34:c9:9e:b0:42:c9:a1:0d:04:cd:b3:c9:ea:af:26:84:ad:4d:
2c:16:92:7d:81:f4:22:86:86:66:9e:55:6e:ac:89:0b:5a:b7:
9a:22:7c:5f:5b:d8:97:53:0d:63:34:3a:aa:89:8b:ec:82:b2:
46:e7:cf:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 04:48:09 2025 by rpki-client