Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/d6xPZ5w_t1Vfgnb2yfuPIAZYZ5Q.roa
File: d6xPZ5w_t1Vfgnb2yfuPIAZYZ5Q.roa (raw, json)
Hash identifier: xVreapCwRP70gZPY98FfZMhfqjasBVHWjglIAwmPjHg=
Subject key identifier: 77:AC:4F:67:9C:3F:B7:55:5F:82:76:F6:C9:FB:8F:20:06:58:67:94
Certificate issuer: /CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Certificate serial: 0196C890BBB24334D68A243D9927ADC5AC98
Authority key identifier: 34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/d6xPZ5w_t1Vfgnb2yfuPIAZYZ5Q.roa
Signing time: Tue 13 May 2025 07:34:10 +0000
ROA not before: Tue 13 May 2025 07:34:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 50835
IP address blocks: 37.97.120.0/24 maxlen: 24
37.97.121.0/24 maxlen: 24
46.173.248.0/22 maxlen: 24
46.173.254.0/23 maxlen: 23
77.36.58.0/24 maxlen: 24
77.36.66.0/23 maxlen: 23
81.161.8.0/22 maxlen: 22
81.161.48.0/22 maxlen: 22
91.193.30.0/23 maxlen: 23
91.224.212.0/24 maxlen: 24
91.232.19.0/24 maxlen: 24
91.232.56.0/23 maxlen: 23
91.232.226.0/24 maxlen: 24
91.233.200.0/24 maxlen: 24
91.236.76.0/24 maxlen: 24
91.238.39.0/24 maxlen: 24
91.239.226.0/24 maxlen: 24
91.246.192.0/22 maxlen: 24
91.246.203.0/24 maxlen: 24
93.120.34.0/23 maxlen: 23
93.120.40.0/23 maxlen: 23
109.207.128.0/24 maxlen: 24
109.207.130.0/24 maxlen: 24
109.207.132.0/24 maxlen: 24
176.96.94.0/24 maxlen: 24
176.113.180.0/22 maxlen: 22
176.115.236.0/22 maxlen: 24
176.116.228.0/24 maxlen: 24
176.116.236.0/24 maxlen: 24
176.121.108.0/23 maxlen: 24
194.33.66.0/23 maxlen: 23
Validation: Failed, certificate revoked on Thu 05 Jun 2025 08:25:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c8:90:bb:b2:43:34:d6:8a:24:3d:99:27:ad:c5:ac:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Validity
Not Before: May 13 07:34:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=77ac4f679c3fb7555f8276f6c9fb8f2006586794
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:0b:07:6d:ff:26:69:8b:a4:16:d7:83:74:6c:
c7:61:02:84:63:46:38:7f:55:50:aa:aa:bd:5d:55:
2c:c8:8b:ed:3f:19:bb:3c:1b:7f:30:fa:29:48:66:
27:58:1b:cb:1e:9f:9a:0c:80:fb:40:eb:71:6e:0f:
c4:af:7b:13:2b:88:a0:56:19:7b:94:10:82:cc:da:
21:90:7f:b5:e3:f9:15:a6:f3:13:da:47:cd:98:d0:
b6:2f:a1:a8:51:52:bf:28:1e:63:49:32:97:ef:57:
75:4a:8c:fc:d8:d6:17:57:49:58:c9:ef:99:6d:b9:
8e:d8:e3:98:69:06:27:67:6e:ef:e4:6b:ad:37:31:
93:de:50:3a:cb:89:31:68:b6:f5:23:a1:e0:58:f1:
95:69:6b:9e:01:4b:c6:7e:80:93:36:a6:b4:1e:71:
f4:25:09:33:ef:44:2a:26:ce:fc:bc:88:8a:67:ef:
fa:d3:db:0d:5b:ba:ae:4b:1b:ac:83:c9:f8:2c:e1:
1b:a1:4e:64:a7:bb:dc:c8:d1:ec:25:0c:cd:d5:62:
bf:20:59:da:7d:eb:e6:bf:19:89:e9:8e:f6:94:03:
8c:30:a3:d4:13:e0:fa:4d:3f:63:3c:de:54:ee:2f:
87:a6:8a:3e:0c:f9:f6:ee:73:b2:35:dd:e8:d1:73:
59:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:AC:4F:67:9C:3F:B7:55:5F:82:76:F6:C9:FB:8F:20:06:58:67:94
X509v3 Authority Key Identifier:
keyid:34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/d6xPZ5w_t1Vfgnb2yfuPIAZYZ5Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/NJy71cLPQZXMbsfyH2B1gaAiTao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.97.120.0/23
46.173.248.0/22
46.173.254.0/23
77.36.58.0/24
77.36.66.0/23
81.161.8.0/22
81.161.48.0/22
91.193.30.0/23
91.224.212.0/24
91.232.19.0/24
91.232.56.0/23
91.232.226.0/24
91.233.200.0/24
91.236.76.0/24
91.238.39.0/24
91.239.226.0/24
91.246.192.0/22
91.246.203.0/24
93.120.34.0/23
93.120.40.0/23
109.207.128.0/24
109.207.130.0/24
109.207.132.0/24
176.96.94.0/24
176.113.180.0/22
176.115.236.0/22
176.116.228.0/24
176.116.236.0/24
176.121.108.0/23
194.33.66.0/23
Signature Algorithm: sha256WithRSAEncryption
0c:15:ca:c8:18:b0:9a:99:81:98:ed:b5:01:d6:06:bf:2c:23:
6f:90:65:52:6c:69:dc:bb:53:0b:04:94:e0:a4:9a:e3:28:00:
c0:b4:83:a3:44:df:93:05:00:7f:23:bb:d6:87:3d:ff:5d:ea:
9b:f3:51:98:9c:dd:50:22:86:ce:ab:48:86:d3:48:29:ea:47:
55:68:cd:f8:fe:f8:d8:a6:d1:cb:a1:67:d7:a7:bc:d2:3e:f9:
20:d3:b2:06:1e:46:48:a8:08:a1:ba:a8:0b:bb:45:7a:04:54:
cd:bc:e4:98:99:75:52:e2:a5:41:cd:32:d8:c3:f9:05:31:71:
e4:96:b9:49:34:db:66:e2:47:04:9a:d2:6a:72:99:29:2d:cd:
4d:c0:1b:d7:55:a6:6d:8c:ea:84:f1:8b:df:6b:ce:7d:ae:c3:
79:60:95:55:92:c0:66:46:6f:4c:10:3f:f7:b1:6f:7c:31:67:
eb:7c:bf:ae:43:2f:0d:7d:57:69:82:85:e2:cf:cc:82:0a:da:
49:11:59:89:38:4e:80:ee:5b:d7:72:d7:4f:82:2e:0e:64:37:
35:6e:00:de:af:0e:7a:b0:5a:5d:7f:cf:cd:9c:81:00:0a:39:
03:2a:e1:10:6a:47:fe:29:2b:21:04:b2:6d:ac:cf:07:73:90:
4c:82:c3:c3
-----BEGIN CERTIFICATE-----
MIIFsDCCBJigAwIBAgISAZbIkLuyQzTWiiQ9mSetxayYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM0OWNiYmQ1YzJjZjQxOTVjYzZlYzdmMjFmNjA3NTgxYTAy
MjRkYWEwHhcNMjUwNTEzMDczNDEwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3N2FjNGY2NzljM2ZiNzU1NWY4Mjc2ZjZjOWZiOGYyMDA2NTg2Nzk0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxwsHbf8maYukFteDdGzHYQKEY0Y4
f1VQqqq9XVUsyIvtPxm7PBt/MPopSGYnWBvLHp+aDID7QOtxbg/Er3sTK4igVhl7
lBCCzNohkH+14/kVpvMT2kfNmNC2L6GoUVK/KB5jSTKX71d1Soz82NYXV0lYye+Z
bbmO2OOYaQYnZ27v5GutNzGT3lA6y4kxaLb1I6HgWPGVaWueAUvGfoCTNqa0HnH0
JQkz70QqJs78vIiKZ+/609sNW7quSxusg8n4LOEboU5kp7vcyNHsJQzN1WK/IFna
fevmvxmJ6Y72lAOMMKPUE+D6TT9jPN5U7i+Hpoo+DPn27nOyNd3o0XNZSQIDAQAB
o4ICvDCCArgwHQYDVR0OBBYEFHesT2ecP7dVX4J29sn7jyAGWGeUMB8GA1UdIwQY
MBaAFDScu9XCz0GVzG7H8h9gdYGgIk2qMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTkp5NzFjTFBRWlhNYnNmeUgyQjFnYUFpVGFvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZC9jZGY1ZjYtMmYxOC00MmM3LTkzMGUt
ZGMwNmRkODA1OTYwLzEvZDZ4UFo1d190MVZmZ25iMnlmdVBJQVpZWjVRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZC9jZGY1ZjYtMmYxOC00MmM3LTkzMGUtZGMwNmRkODA1OTYw
LzEvTkp5NzFjTFBRWlhNYnNmeUgyQjFnYUFpVGFvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHRBggrBgEFBQcBBwEB/wSBwTCBvjCBuwQCAAEwgbQDBAEl
YXgDBAIurfgDBAEurf4DBABNJDoDBAFNJEIDBAJRoQgDBAJRoTADBAFbwR4DBABb
4NQDBABb6BMDBAFb6DgDBABb6OIDBABb6cgDBABb7EwDBABb7icDBABb7+IDBAJb
9sADBABb9ssDBAFdeCIDBAFdeCgDBABtz4ADBABtz4IDBABtz4QDBACwYF4DBAKw
cbQDBAKwc+wDBACwdOQDBACwdOwDBAGweWwDBAHCIUIwDQYJKoZIhvcNAQELBQAD
ggEBAAwVysgYsJqZgZjttQHWBr8sI2+QZVJsady7UwsElOCkmuMoAMC0g6NE35MF
AH8ju9aHPf9d6pvzUZic3VAihs6rSIbTSCnqR1Vozfj++Nim0cuhZ9envNI++SDT
sgYeRkioCKG6qAu7RXoEVM285JiZdVLipUHNMtjD+QUxceSWuUk022biRwSa0mpy
mSktzU3AG9dVpm2M6oTxi99rzn2uw3lglVWSwGZGb0wQP/exb3wxZ+t8v65DLw19
V2mCheLPzIIK2kkRWYk4ToDuW9dy10+CLg5kNzVuAN6vDnqwWl1/z82cgQAKOQMq
4RBqR/4pKyEEsm2szwdzkEyCw8M=
-----END CERTIFICATE-----
Generated at Fri Jun 6 15:49:17 2025 by rpki-client