Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/aBubP5C_5ECP5XHXtqY8OCiVniQ.roa
File: aBubP5C_5ECP5XHXtqY8OCiVniQ.roa (raw, json)
Hash identifier: SruxFRWfhKeXMrCYoBofRD0kUKAkb3MXDelq8hQSfuw=
Subject key identifier: 68:1B:9B:3F:90:BF:E4:40:8F:E5:71:D7:B6:A6:3C:38:28:95:9E:24
Certificate issuer: /CN=d217b472c841c1d68550a24f1936d29cc6c28f6a
Certificate serial: 0196F345B54F29A4A741D66DA2539EC3EE9D
Authority key identifier: D2:17:B4:72:C8:41:C1:D6:85:50:A2:4F:19:36:D2:9C:C6:C2:8F:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0he0cshBwdaFUKJPGTbSnMbCj2o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/aBubP5C_5ECP5XHXtqY8OCiVniQ.roa
Signing time: Wed 21 May 2025 14:35:54 +0000
ROA not before: Wed 21 May 2025 14:35:54 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 57169
IP address blocks: 5.180.114.0/24 maxlen: 24
37.235.48.0/20 maxlen: 20
37.235.50.0/23 maxlen: 23
37.235.50.0/24 maxlen: 24
37.235.52.0/24 maxlen: 24
37.235.56.0/24 maxlen: 24
37.235.57.0/24 maxlen: 24
37.235.58.0/24 maxlen: 24
37.235.59.0/24 maxlen: 24
37.235.60.0/24 maxlen: 24
37.235.61.0/24 maxlen: 24
37.235.62.0/24 maxlen: 24
37.235.63.0/24 maxlen: 24
45.153.125.0/24 maxlen: 24
83.172.151.0/24 maxlen: 24
83.243.120.0/24 maxlen: 24
83.243.122.0/24 maxlen: 24
83.243.123.0/24 maxlen: 24
84.247.61.0/24 maxlen: 24
86.106.119.0/24 maxlen: 24
89.31.123.0/24 maxlen: 24
89.46.238.0/24 maxlen: 24
91.132.94.0/24 maxlen: 24
91.227.204.0/23 maxlen: 23
91.227.204.0/24 maxlen: 24
91.227.205.0/24 maxlen: 24
92.243.66.0/24 maxlen: 24
95.156.205.0/24 maxlen: 24
103.57.250.0/24 maxlen: 24
134.255.210.0/24 maxlen: 24
149.154.152.0/24 maxlen: 24
149.154.153.0/24 maxlen: 24
149.154.154.0/24 maxlen: 24
149.154.155.0/24 maxlen: 24
149.154.156.0/24 maxlen: 24
151.236.0.0/19 maxlen: 19
151.236.0.0/24 maxlen: 24
151.236.1.0/24 maxlen: 24
151.236.2.0/24 maxlen: 24
151.236.3.0/24 maxlen: 24
151.236.4.0/24 maxlen: 24
151.236.5.0/24 maxlen: 24
151.236.6.0/24 maxlen: 24
151.236.7.0/24 maxlen: 24
151.236.8.0/24 maxlen: 24
151.236.9.0/24 maxlen: 24
151.236.10.0/24 maxlen: 24
151.236.11.0/24 maxlen: 24
151.236.12.0/24 maxlen: 24
151.236.13.0/24 maxlen: 24
151.236.14.0/24 maxlen: 24
151.236.20.0/24 maxlen: 24
151.236.26.0/23 maxlen: 23
151.236.28.0/24 maxlen: 24
151.236.30.0/24 maxlen: 24
158.255.209.0/24 maxlen: 24
158.255.210.0/24 maxlen: 24
158.255.211.0/24 maxlen: 24
158.255.212.0/24 maxlen: 24
185.26.236.0/24 maxlen: 24
185.26.237.0/24 maxlen: 24
185.26.238.0/24 maxlen: 24
185.122.184.0/24 maxlen: 24
185.193.51.0/24 maxlen: 24
185.195.65.0/24 maxlen: 24
188.214.33.0/24 maxlen: 24
188.214.34.0/24 maxlen: 24
188.214.38.0/24 maxlen: 24
188.214.39.0/24 maxlen: 24
213.183.54.0/24 maxlen: 24
213.183.55.0/24 maxlen: 24
213.183.56.0/24 maxlen: 24
213.183.57.0/24 maxlen: 24
2a03:f80:7::/48 maxlen: 48
2a03:f80:31::/48 maxlen: 48
2a03:f80:56::/48 maxlen: 48
2a03:f80:57::/48 maxlen: 48
2a03:f80:70::/48 maxlen: 48
2a03:f80:354::/48 maxlen: 48
2a03:f80:357::/48 maxlen: 48
2a03:f80:359::/48 maxlen: 48
2a03:f80:370::/48 maxlen: 48
2a03:f80:371::/48 maxlen: 48
2a03:f80:3991::/48 maxlen: 48
2a03:f80:ad15::/48 maxlen: 48
2a03:f80:ed15::/48 maxlen: 48
2a03:f80:ed16::/48 maxlen: 48
2a03:f80:ed17::/48 maxlen: 48
2a03:f80:ed31::/48 maxlen: 48
2a03:f80:ed51::/48 maxlen: 48
2a03:f82:abcd::/48 maxlen: 48
2a03:f82:abcd:43::/64 maxlen: 64
2a03:f87:ffff::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 26 May 2025 11:36:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:f3:45:b5:4f:29:a4:a7:41:d6:6d:a2:53:9e:c3:ee:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d217b472c841c1d68550a24f1936d29cc6c28f6a
Validity
Not Before: May 21 14:35:54 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=681b9b3f90bfe4408fe571d7b6a63c3828959e24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:48:8f:83:f3:b6:5d:8a:4e:8d:9b:72:60:1c:
24:ad:86:7e:91:ec:e7:c3:4c:61:d2:a9:d9:a5:7b:
d1:ae:fc:d2:4e:4f:30:a3:55:2c:f2:7d:d7:b3:4d:
c9:65:fa:49:b8:69:2b:4c:1c:ae:59:96:0b:45:2a:
ca:c7:bc:1b:f8:71:50:fd:c5:fa:e4:58:f1:66:15:
d3:3e:cb:59:50:dd:d7:fe:90:73:f8:b7:47:9e:b9:
05:a7:90:85:63:78:c7:34:73:a2:dc:62:e7:d8:09:
8b:b6:cd:01:3e:6b:a8:8d:4f:3a:72:e2:5c:bc:45:
82:25:c5:e6:f8:08:da:09:50:4a:bf:ab:62:78:82:
a8:c6:fa:83:5a:5c:2e:dd:0e:89:ed:73:81:06:82:
72:ab:c7:71:bf:21:f9:ac:2c:93:f4:a9:0c:dd:e6:
2f:2c:71:e7:11:7c:96:ae:61:21:7e:26:02:84:42:
34:40:9e:0f:f9:49:f1:ac:1b:6d:15:aa:31:fa:d0:
97:c6:99:3a:29:34:d4:6a:d4:2c:d7:74:d1:76:0a:
2f:fd:f0:8a:3f:9d:52:84:c1:95:a4:eb:30:f5:61:
81:ca:da:ff:49:b7:d5:5a:41:90:df:93:d7:6a:2a:
18:13:24:78:23:60:94:3c:48:e5:08:4d:81:9a:95:
00:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:1B:9B:3F:90:BF:E4:40:8F:E5:71:D7:B6:A6:3C:38:28:95:9E:24
X509v3 Authority Key Identifier:
keyid:D2:17:B4:72:C8:41:C1:D6:85:50:A2:4F:19:36:D2:9C:C6:C2:8F:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0he0cshBwdaFUKJPGTbSnMbCj2o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/aBubP5C_5ECP5XHXtqY8OCiVniQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/0he0cshBwdaFUKJPGTbSnMbCj2o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.114.0/24
37.235.48.0/20
45.153.125.0/24
83.172.151.0/24
83.243.120.0/24
83.243.122.0/23
84.247.61.0/24
86.106.119.0/24
89.31.123.0/24
89.46.238.0/24
91.132.94.0/24
91.227.204.0/23
92.243.66.0/24
95.156.205.0/24
103.57.250.0/24
134.255.210.0/24
149.154.152.0-149.154.156.255
151.236.0.0/19
158.255.209.0-158.255.212.255
185.26.236.0-185.26.238.255
185.122.184.0/24
185.193.51.0/24
185.195.65.0/24
188.214.33.0-188.214.34.255
188.214.38.0/23
213.183.54.0-213.183.57.255
IPv6:
2a03:f80:7::/48
2a03:f80:31::/48
2a03:f80:56::/47
2a03:f80:70::/48
2a03:f80:354::/48
2a03:f80:357::/48
2a03:f80:359::/48
2a03:f80:370::/47
2a03:f80:3991::/48
2a03:f80:ad15::/48
2a03:f80:ed15::-2a03:f80:ed17:ffff:ffff:ffff:ffff:ffff
2a03:f80:ed31::/48
2a03:f80:ed51::/48
2a03:f82:abcd::/48
2a03:f87:ffff::/48
Signature Algorithm: sha256WithRSAEncryption
5d:20:6c:cc:c8:8a:27:43:ef:65:80:a3:d9:24:c1:17:20:fd:
e4:f1:c1:89:9e:3d:86:da:87:2e:07:9d:84:03:17:7a:f6:5f:
6f:c0:54:db:87:9e:e6:aa:f7:32:5d:dd:08:ac:58:c7:be:d5:
57:5c:c5:8b:5b:98:99:8c:a7:1f:45:c5:be:2b:8b:3e:b8:ce:
ba:0f:71:f5:8e:5c:28:33:e0:b2:f3:c9:ee:11:54:6a:35:80:
b8:e1:52:1d:7c:ae:90:ef:a9:54:5a:3d:25:d9:d1:c4:e9:fd:
54:b2:da:68:ef:e5:25:dc:de:3c:4f:bd:8a:ea:6d:48:cf:00:
41:c8:8d:99:03:25:12:cb:df:c2:2a:87:39:01:7f:11:4b:0a:
0f:26:ab:bf:ea:eb:f2:3e:37:4c:51:9d:5c:67:fc:e4:32:de:
df:f3:19:17:2e:28:92:f8:31:a9:1d:0f:ca:f2:8a:d2:e0:59:
b3:e8:f5:03:0b:e4:6c:d6:49:c5:18:85:ac:3e:23:c7:14:0f:
0c:a9:46:08:e8:cb:03:41:b6:08:1e:a5:1d:75:db:03:f8:76:
97:da:ff:ef:11:f6:40:e8:a1:3a:69:b9:aa:c0:d3:3a:35:b9:
5c:e4:cf:d3:38:32:0a:84:66:56:4d:aa:18:da:ca:72:bd:80:
fb:ca:ff:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 15:28:28 2025 by rpki-client