Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/X643c0XKn2j1Jh0d0XYGPwoxmy8.roa
File: X643c0XKn2j1Jh0d0XYGPwoxmy8.roa (raw, json)
Hash identifier: NBb1xfv0r3vJdePtW7mPEIejZYfNfV4N8tJKLJ2kKzg=
Subject key identifier: 5F:AE:37:73:45:CA:9F:68:F5:26:1D:1D:D1:76:06:3F:0A:31:9B:2F
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 0196CF3972F830E5082BDADD75B3858325E1
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/X643c0XKn2j1Jh0d0XYGPwoxmy8.roa
Signing time: Wed 14 May 2025 14:36:10 +0000
ROA not before: Wed 14 May 2025 14:36:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 0
IP address blocks: 2.59.253.0/24 maxlen: 24
5.252.132.0/22 maxlen: 24
31.13.211.0/24 maxlen: 24
45.9.157.0/24 maxlen: 24
45.12.253.0/24 maxlen: 24
45.66.228.0/24 maxlen: 24
45.66.231.0/24 maxlen: 24
45.81.39.0/24 maxlen: 24
45.88.64.0/24 maxlen: 24
45.89.247.0/24 maxlen: 24
45.90.89.0/24 maxlen: 24
45.139.106.0/24 maxlen: 24
45.141.158.0/24 maxlen: 24
45.141.159.0/24 maxlen: 24
45.151.90.0/24 maxlen: 24
79.110.50.0/24 maxlen: 24
81.31.192.0/22 maxlen: 24
81.161.238.0/24 maxlen: 24
83.219.97.0/24 maxlen: 24
84.54.48.0/24 maxlen: 24
87.120.87.0/24 maxlen: 24
87.120.89.0/24 maxlen: 24
87.120.126.0/23 maxlen: 24
87.120.166.0/24 maxlen: 24
87.121.22.0/24 maxlen: 24
87.121.38.0/24 maxlen: 24
87.121.45.0/24 maxlen: 24
87.121.87.0/24 maxlen: 24
87.121.124.0/23 maxlen: 24
87.121.165.0/24 maxlen: 24
91.92.70.0/24 maxlen: 24
92.119.196.0/23 maxlen: 24
92.249.50.0/24 maxlen: 24
93.123.45.0/24 maxlen: 24
93.123.47.0/24 maxlen: 24
93.123.85.0/24 maxlen: 24
93.123.109.0/24 maxlen: 24
93.123.117.0/24 maxlen: 24
93.123.119.0/24 maxlen: 24
94.103.125.0/24 maxlen: 24
94.154.160.0/23 maxlen: 24
94.154.161.0/24 maxlen: 24
94.154.162.0/23 maxlen: 24
94.156.64.0/21 maxlen: 32
94.156.105.0/24 maxlen: 24
94.156.167.0/24 maxlen: 24
94.156.232.0/24 maxlen: 24
94.156.239.0/24 maxlen: 24
141.98.1.0/24 maxlen: 24
141.98.6.0/24 maxlen: 24
171.22.73.0/24 maxlen: 24
171.22.74.0/23 maxlen: 24
178.215.227.0/24 maxlen: 24
185.216.84.0/22 maxlen: 24
193.25.216.0/24 maxlen: 24
193.35.18.0/24 maxlen: 24
193.222.96.0/24 maxlen: 24
194.55.186.0/24 maxlen: 24
194.169.172.0/24 maxlen: 24
194.169.175.0/24 maxlen: 24
195.178.111.0/24 maxlen: 24
212.115.41.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 21 May 2025 12:21:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:cf:39:72:f8:30:e5:08:2b:da:dd:75:b3:85:83:25:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: May 14 14:36:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5fae377345ca9f68f5261d1dd176063f0a319b2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:58:23:36:f5:2a:a2:68:eb:06:09:83:e8:23:
f5:90:3a:f1:c9:12:5c:5d:5f:e2:64:03:9e:66:38:
c2:e2:02:78:67:a3:f6:13:5c:aa:60:be:c6:cf:3e:
ab:1c:61:83:cf:2c:8e:36:d9:2e:1c:2b:08:05:ba:
90:c3:38:72:4c:0e:e8:27:c1:bc:b2:bd:ea:46:19:
86:00:c4:7d:62:4d:95:ea:10:ad:f4:c1:9f:aa:69:
a0:54:53:d8:7f:13:ac:93:8b:a0:4c:dd:64:ef:38:
8a:4f:96:2f:d4:bf:40:15:d5:99:c5:d5:1f:b3:ee:
21:4b:c1:18:43:9d:67:22:6d:ef:dc:00:85:b7:1d:
1e:bc:2e:3d:7c:9b:80:97:a8:0c:43:63:90:4e:52:
cc:b7:5a:af:14:6a:f2:ec:59:d9:5f:58:99:f6:9d:
b7:14:a3:63:9d:15:c5:33:87:6a:3f:f3:7a:88:76:
d5:cb:23:dd:3b:3e:50:1e:4d:1d:e6:17:c7:07:4a:
3a:8c:34:a4:1a:ff:60:39:29:31:aa:4b:c0:9b:1e:
9b:6b:54:c8:5d:7f:f1:eb:78:fa:cb:5a:59:89:92:
91:12:1d:77:7e:63:58:3c:b0:c8:66:76:5b:ef:cf:
e8:26:b9:33:21:dd:52:fc:98:01:cd:ff:28:95:0b:
1f:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:AE:37:73:45:CA:9F:68:F5:26:1D:1D:D1:76:06:3F:0A:31:9B:2F
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/X643c0XKn2j1Jh0d0XYGPwoxmy8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.59.253.0/24
5.252.132.0/22
31.13.211.0/24
45.9.157.0/24
45.12.253.0/24
45.66.228.0/24
45.66.231.0/24
45.81.39.0/24
45.88.64.0/24
45.89.247.0/24
45.90.89.0/24
45.139.106.0/24
45.141.158.0/23
45.151.90.0/24
79.110.50.0/24
81.31.192.0/22
81.161.238.0/24
83.219.97.0/24
84.54.48.0/24
87.120.87.0/24
87.120.89.0/24
87.120.126.0/23
87.120.166.0/24
87.121.22.0/24
87.121.38.0/24
87.121.45.0/24
87.121.87.0/24
87.121.124.0/23
87.121.165.0/24
91.92.70.0/24
92.119.196.0/23
92.249.50.0/24
93.123.45.0/24
93.123.47.0/24
93.123.85.0/24
93.123.109.0/24
93.123.117.0/24
93.123.119.0/24
94.103.125.0/24
94.154.160.0/22
94.156.64.0/21
94.156.105.0/24
94.156.167.0/24
94.156.232.0/24
94.156.239.0/24
141.98.1.0/24
141.98.6.0/24
171.22.73.0-171.22.75.255
178.215.227.0/24
185.216.84.0/22
193.25.216.0/24
193.35.18.0/24
193.222.96.0/24
194.55.186.0/24
194.169.172.0/24
194.169.175.0/24
195.178.111.0/24
212.115.41.0/24
Signature Algorithm: sha256WithRSAEncryption
81:6a:d2:c0:b9:40:4e:5d:69:c5:65:aa:46:fc:aa:92:c0:89:
6c:2f:30:19:28:b0:08:2a:d9:56:10:ba:10:11:88:86:ef:e8:
3b:dd:51:55:e1:f5:cf:57:29:d7:11:99:9e:ba:bc:6c:52:bf:
a5:24:46:8f:af:ab:18:b4:a5:4d:fd:d3:e6:a3:c3:04:d8:07:
cf:ef:34:72:cd:6d:e6:cc:bf:89:11:6a:79:d2:06:4f:4c:b4:
cd:ba:19:54:d3:4b:fc:5b:f2:07:21:c7:b4:e6:ca:fc:2a:3e:
6a:92:81:f6:bb:8c:c6:b0:2e:84:43:a5:c8:ea:4e:31:59:0f:
39:63:33:87:36:5f:dc:b9:c7:8e:5d:f5:49:7f:51:c3:d2:97:
71:99:78:58:ec:f3:8e:d9:04:fa:44:a5:29:36:61:e9:dd:05:
f0:57:53:85:56:c8:a3:31:34:97:de:8d:2f:e7:22:d0:80:97:
0d:88:b5:a5:08:8f:0d:4a:e1:9d:24:05:18:61:0d:22:ba:8a:
cd:bc:68:23:50:1b:31:c7:70:56:c3:bf:0a:78:22:8e:19:87:
63:00:1d:57:99:91:24:47:cc:9a:ff:1b:02:df:89:27:5d:e4:
27:70:51:b9:fb:58:26:83:f8:ad:d3:0b:88:33:f7:2b:2e:44:
9d:15:38:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 1 03:30:58 2025 by rpki-client