Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/icEmkkl6rHUIhWTsbgXnQKuKd7g.roa
File: icEmkkl6rHUIhWTsbgXnQKuKd7g.roa (raw, json)
Hash identifier: jmrhhHaW+M6hjnpFetrakJZZbRZwkPVRJLRv3lql1Y4=
Subject key identifier: 89:C1:26:92:49:7A:AC:75:08:85:64:EC:6E:05:E7:40:AB:8A:77:B8
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 01971B1E88A7078662A62C0AB92252CEEDDC
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/icEmkkl6rHUIhWTsbgXnQKuKd7g.roa
Signing time: Thu 29 May 2025 08:17:55 +0000
ROA not before: Thu 29 May 2025 08:17:55 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 215439
IP address blocks: 31.13.208.0/24 maxlen: 24
45.66.228.0/24 maxlen: 24
83.143.112.0/24 maxlen: 24
84.21.173.0/24 maxlen: 24
87.120.84.0/24 maxlen: 24
87.120.165.0/24 maxlen: 24
87.120.166.0/24 maxlen: 24
87.120.186.0/24 maxlen: 24
87.120.187.0/24 maxlen: 24
87.121.89.0/24 maxlen: 24
87.121.105.0/24 maxlen: 24
93.123.84.0/24 maxlen: 24
94.156.102.0/24 maxlen: 24
94.156.106.0/24 maxlen: 24
94.156.112.0/24 maxlen: 24
94.156.114.0/24 maxlen: 24
94.156.115.0/24 maxlen: 24
94.156.170.0/24 maxlen: 24
94.156.237.0/24 maxlen: 24
141.98.7.0/24 maxlen: 24
171.22.31.0/24 maxlen: 24
178.215.236.0/24 maxlen: 24
178.215.238.0/24 maxlen: 24
185.216.71.0/24 maxlen: 24
193.25.216.0/24 maxlen: 24
193.35.17.0/24 maxlen: 24
193.58.121.0/24 maxlen: 24
193.58.122.0/24 maxlen: 24
193.222.99.0/24 maxlen: 24
194.31.223.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 29 May 2025 14:13:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:1b:1e:88:a7:07:86:62:a6:2c:0a:b9:22:52:ce:ed:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: May 29 08:17:55 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=89c12692497aac75088564ec6e05e740ab8a77b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:15:b4:7d:65:b4:df:5d:61:2d:cd:68:58:53:
4f:79:42:95:72:42:58:c3:48:6d:85:39:b1:77:20:
d9:49:81:e6:10:f5:4c:84:58:8b:ea:23:62:05:85:
37:90:49:5d:5f:c6:20:8f:1a:14:3a:cb:2a:0a:6a:
68:64:1d:a3:51:eb:87:fb:7f:ce:b9:60:9b:14:91:
29:ac:63:0e:8f:f2:12:18:69:a8:77:89:06:55:9b:
ae:49:4c:95:27:70:ce:82:e0:73:06:87:ec:cc:cf:
de:cb:b7:34:f8:75:d6:88:0a:8c:ce:4b:0b:cf:de:
42:14:2c:6a:9a:b4:a7:9f:23:8d:c8:f1:f7:ea:16:
f3:c4:d0:e2:d8:53:e4:fd:4e:0f:aa:48:3f:c5:63:
4c:43:ca:39:ae:01:be:10:59:0c:36:70:47:cb:3f:
89:2f:24:46:c7:14:86:6f:76:81:6a:72:f5:9a:24:
ad:a1:0d:6c:e9:72:99:b5:68:d8:46:c2:e1:f2:9b:
3a:e3:47:00:9c:c6:4f:ad:e9:f6:4a:fb:09:e2:d5:
55:61:da:f0:b3:5a:9a:e0:6a:e4:05:0a:ec:65:e7:
d5:9c:b2:f5:48:45:dd:17:4b:ad:85:13:fd:6a:a6:
58:43:8a:b8:ab:2b:83:b5:96:97:42:88:63:b9:b8:
21:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:C1:26:92:49:7A:AC:75:08:85:64:EC:6E:05:E7:40:AB:8A:77:B8
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/icEmkkl6rHUIhWTsbgXnQKuKd7g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.13.208.0/24
45.66.228.0/24
83.143.112.0/24
84.21.173.0/24
87.120.84.0/24
87.120.165.0-87.120.166.255
87.120.186.0/23
87.121.89.0/24
87.121.105.0/24
93.123.84.0/24
94.156.102.0/24
94.156.106.0/24
94.156.112.0/24
94.156.114.0/23
94.156.170.0/24
94.156.237.0/24
141.98.7.0/24
171.22.31.0/24
178.215.236.0/24
178.215.238.0/24
185.216.71.0/24
193.25.216.0/24
193.35.17.0/24
193.58.121.0-193.58.122.255
193.222.99.0/24
194.31.223.0/24
Signature Algorithm: sha256WithRSAEncryption
32:56:80:31:a3:8a:6d:f0:ec:24:92:d9:e2:34:6b:5a:9a:93:
97:cf:81:15:9f:f3:53:7a:14:a6:fb:67:a3:b8:6a:9d:a3:a6:
3b:e6:fe:44:24:77:ef:6a:f1:40:fa:ea:4b:ce:ab:74:33:db:
43:dd:d6:a1:f7:43:a5:63:ac:c2:0b:18:28:b7:53:91:da:f8:
db:c1:1d:8b:88:eb:da:c5:71:00:70:55:22:5a:c8:88:42:84:
01:c0:4a:d2:70:27:3c:aa:17:73:01:f8:36:dd:90:9c:cf:90:
b6:02:48:43:29:6f:1b:fe:5c:63:9a:3d:d5:99:83:ed:b7:3d:
16:92:cc:38:6a:d1:25:7c:02:0c:40:d5:d4:e6:56:e1:91:7d:
47:be:20:de:03:10:be:6c:be:20:e6:71:53:ed:14:a9:e8:06:
26:2c:ac:1d:e6:36:92:da:e4:3b:97:cb:e3:33:e8:0a:0b:3f:
de:7f:72:2c:be:96:bc:98:1f:76:4a:22:63:2f:f5:a7:59:f5:
8d:df:5c:83:23:b1:a7:a1:4b:8d:0a:10:b2:62:9a:de:ec:11:
14:1e:a8:52:ed:c4:33:1f:6d:a7:e4:2e:94:2e:92:d2:9b:92:
a5:f6:15:a2:6e:65:29:12:31:14:78:10:60:7e:27:a4:43:de:
03:f0:a4:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 05:03:57 2025 by rpki-client