Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/c22dc9-c7ba-4156-a79c-15e90bf87fab/1/NaxR-QsJSuF3KozxBpfvmqSyk04.roa
File: NaxR-QsJSuF3KozxBpfvmqSyk04.roa (raw, json)
Hash identifier: /J11xZ5jQ4MBYhJR9BRZs2/bFmiHV0tXO/Q5I7LN6OQ=
Subject key identifier: 35:AC:51:F9:0B:09:4A:E1:77:2A:8C:F1:06:97:EF:9A:A4:B2:93:4E
Certificate issuer: /CN=e0dee1b06ba24a676213f976a4b50c129dcb2b73
Certificate serial: 0196E761D43DCA9CB5FEAD068FA46F7076A8
Authority key identifier: E0:DE:E1:B0:6B:A2:4A:67:62:13:F9:76:A4:B5:0C:12:9D:CB:2B:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4N7hsGuiSmdiE_l2pLUMEp3LK3M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/c22dc9-c7ba-4156-a79c-15e90bf87fab/1/NaxR-QsJSuF3KozxBpfvmqSyk04.roa
Signing time: Mon 19 May 2025 07:11:10 +0000
ROA not before: Mon 19 May 2025 07:11:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 719
IP address blocks: 31.7.16.0/20 maxlen: 20
46.182.112.0/21 maxlen: 21
62.142.0.0/16 maxlen: 16
62.148.192.0/19 maxlen: 19
62.216.96.0/19 maxlen: 19
62.240.64.0/19 maxlen: 19
62.248.128.0/17 maxlen: 17
77.109.192.0/18 maxlen: 18
80.81.160.0/19 maxlen: 19
80.88.176.0/20 maxlen: 20
80.186.0.0/16 maxlen: 16
80.248.96.0/19 maxlen: 19
81.197.0.0/16 maxlen: 16
81.209.0.0/17 maxlen: 17
82.103.192.0/18 maxlen: 18
82.118.192.0/19 maxlen: 19
82.141.64.0/18 maxlen: 18
82.215.192.0/18 maxlen: 18
83.245.128.0/17 maxlen: 17
84.230.0.0/15 maxlen: 15
85.76.0.0/14 maxlen: 14
85.156.0.0/16 maxlen: 16
85.157.0.0/16 maxlen: 16
85.217.0.0/17 maxlen: 17
88.112.0.0/14 maxlen: 14
91.152.0.0/13 maxlen: 13
94.22.0.0/16 maxlen: 16
109.163.248.0/21 maxlen: 21
109.232.80.0/21 maxlen: 21
139.97.0.0/16 maxlen: 16
178.251.56.0/21 maxlen: 21
192.77.120.0/22 maxlen: 22
192.102.36.0/24 maxlen: 24
192.102.37.0/24 maxlen: 24
192.102.38.0/24 maxlen: 24
192.102.39.0/24 maxlen: 24
192.102.40.0/24 maxlen: 24
192.102.41.0/24 maxlen: 24
192.102.42.0/24 maxlen: 24
192.102.49.0/24 maxlen: 24
192.102.50.0/24 maxlen: 24
192.126.1.0/24 maxlen: 24
192.126.23.0/24 maxlen: 24
192.126.24.0/24 maxlen: 24
192.126.35.0/24 maxlen: 24
192.126.44.0/24 maxlen: 24
192.126.46.0/24 maxlen: 24
192.163.32.0/19 maxlen: 19
192.163.64.0/18 maxlen: 18
192.163.128.0/19 maxlen: 19
193.64.0.0/15 maxlen: 15
193.65.129.0/24 maxlen: 24
193.66.0.0/16 maxlen: 16
193.94.0.0/16 maxlen: 16
193.184.0.0/15 maxlen: 15
193.199.0.0/16 maxlen: 16
193.229.0.0/16 maxlen: 16
194.86.0.0/16 maxlen: 16
194.86.35.0/24 maxlen: 24
194.136.0.0/16 maxlen: 16
194.157.0.0/16 maxlen: 16
194.188.0.0/16 maxlen: 16
194.211.0.0/16 maxlen: 16
194.240.0.0/15 maxlen: 15
195.16.192.0/19 maxlen: 19
195.74.0.0/19 maxlen: 19
195.170.128.0/19 maxlen: 19
195.197.0.0/16 maxlen: 16
195.218.64.0/19 maxlen: 19
195.236.0.0/15 maxlen: 15
195.238.192.0/19 maxlen: 19
195.255.0.0/16 maxlen: 16
212.38.224.0/19 maxlen: 19
212.50.192.0/19 maxlen: 19
212.54.0.0/19 maxlen: 19
212.63.0.0/19 maxlen: 19
212.226.0.0/16 maxlen: 16
212.246.0.0/16 maxlen: 16
213.130.224.0/19 maxlen: 19
213.161.32.0/19 maxlen: 19
213.169.0.0/19 maxlen: 19
213.192.128.0/18 maxlen: 18
213.250.64.0/18 maxlen: 18
217.24.96.0/20 maxlen: 20
217.25.96.0/20 maxlen: 20
217.77.192.0/20 maxlen: 20
217.152.0.0/16 maxlen: 16
2001:670::/29 maxlen: 32
2001:671::/48 maxlen: 48
2001:998::/29 maxlen: 32
2001:9f0::/29 maxlen: 32
2001:1658::/29 maxlen: 32
2a00:1dd0::/29 maxlen: 32
Validation: Failed, certificate revoked on Tue 03 Jun 2025 09:07:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:e7:61:d4:3d:ca:9c:b5:fe:ad:06:8f:a4:6f:70:76:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e0dee1b06ba24a676213f976a4b50c129dcb2b73
Validity
Not Before: May 19 07:11:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=35ac51f90b094ae1772a8cf10697ef9aa4b2934e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:2f:7c:18:61:1a:1b:a6:95:8d:e2:74:64:0f:
47:ed:5a:73:89:55:04:c4:b0:7e:b3:c2:6e:3a:4d:
99:7f:2b:8d:f9:8b:78:94:cc:e5:35:4e:6d:5a:73:
ac:6d:c6:64:a2:4e:85:0a:2e:7f:b4:b4:5a:5b:2b:
d7:b3:6e:8e:21:ec:18:de:d3:da:c0:96:c4:ab:8f:
86:8b:5d:6b:0b:21:8f:15:e7:58:bc:fc:f2:11:05:
6f:d7:c7:31:29:26:14:0b:96:24:b1:ec:2e:f8:e3:
8d:ce:ff:84:da:48:50:ac:b5:cf:54:2e:cc:db:75:
d3:3c:0c:a4:66:6b:27:4e:bc:07:17:02:2e:be:50:
4e:05:cb:10:e3:8e:e1:10:30:aa:20:b5:2b:1a:12:
4b:45:3d:b7:13:b6:85:95:53:f1:53:a1:6c:eb:32:
42:fa:2d:93:5d:94:70:61:5c:df:08:1a:1c:e6:b3:
6c:1f:c4:4c:81:67:c5:1d:a5:d2:10:01:1d:5b:a3:
5d:70:04:0c:7f:69:b5:5e:67:78:c5:1f:31:16:27:
63:41:f6:4d:4b:88:62:54:c7:02:47:44:b8:c1:c5:
af:97:5f:f7:dc:94:13:62:b2:e9:cb:f8:fd:41:5d:
9a:81:26:ff:bf:a6:a7:db:cd:c0:40:ce:8d:31:6b:
ba:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:AC:51:F9:0B:09:4A:E1:77:2A:8C:F1:06:97:EF:9A:A4:B2:93:4E
X509v3 Authority Key Identifier:
keyid:E0:DE:E1:B0:6B:A2:4A:67:62:13:F9:76:A4:B5:0C:12:9D:CB:2B:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4N7hsGuiSmdiE_l2pLUMEp3LK3M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/c22dc9-c7ba-4156-a79c-15e90bf87fab/1/NaxR-QsJSuF3KozxBpfvmqSyk04.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/c22dc9-c7ba-4156-a79c-15e90bf87fab/1/4N7hsGuiSmdiE_l2pLUMEp3LK3M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.7.16.0/20
46.182.112.0/21
62.142.0.0/16
62.148.192.0/19
62.216.96.0/19
62.240.64.0/19
62.248.128.0/17
77.109.192.0/18
80.81.160.0/19
80.88.176.0/20
80.186.0.0/16
80.248.96.0/19
81.197.0.0/16
81.209.0.0/17
82.103.192.0/18
82.118.192.0/19
82.141.64.0/18
82.215.192.0/18
83.245.128.0/17
84.230.0.0/15
85.76.0.0/14
85.156.0.0/15
85.217.0.0/17
88.112.0.0/14
91.152.0.0/13
94.22.0.0/16
109.163.248.0/21
109.232.80.0/21
139.97.0.0/16
178.251.56.0/21
192.77.120.0/22
192.102.36.0-192.102.42.255
192.102.49.0-192.102.50.255
192.126.1.0/24
192.126.23.0-192.126.24.255
192.126.35.0/24
192.126.44.0/24
192.126.46.0/24
192.163.32.0-192.163.159.255
193.64.0.0-193.66.255.255
193.94.0.0/16
193.184.0.0/15
193.199.0.0/16
193.229.0.0/16
194.86.0.0/16
194.136.0.0/16
194.157.0.0/16
194.188.0.0/16
194.211.0.0/16
194.240.0.0/15
195.16.192.0/19
195.74.0.0/19
195.170.128.0/19
195.197.0.0/16
195.218.64.0/19
195.236.0.0/15
195.238.192.0/19
195.255.0.0/16
212.38.224.0/19
212.50.192.0/19
212.54.0.0/19
212.63.0.0/19
212.226.0.0/16
212.246.0.0/16
213.130.224.0/19
213.161.32.0/19
213.169.0.0/19
213.192.128.0/18
213.250.64.0/18
217.24.96.0/20
217.25.96.0/20
217.77.192.0/20
217.152.0.0/16
IPv6:
2001:670::/29
2001:998::/29
2001:9f0::/29
2001:1658::/29
2a00:1dd0::/29
Signature Algorithm: sha256WithRSAEncryption
77:70:f3:c7:a1:8a:ee:15:4c:9f:e4:d9:48:5c:c2:ef:64:d8:
c7:f0:17:a7:c1:d0:d5:e9:72:59:ed:6f:22:5b:94:e0:47:3e:
6e:13:71:40:87:7c:f2:99:44:81:fe:d5:0c:94:cd:39:d1:13:
b9:27:4d:f6:92:98:9c:7d:3f:5c:e6:ac:6a:0f:04:2d:47:bb:
79:02:de:2a:33:f5:a1:19:db:c5:9f:48:0d:c8:96:b4:7b:55:
53:6e:d9:40:7f:ac:7b:5c:d0:82:93:a2:2c:62:1e:79:73:26:
1f:65:85:0c:85:72:ea:65:82:9f:22:63:8d:9f:4f:0e:fb:ef:
b6:00:69:cc:dd:b7:58:c8:4a:61:b6:38:c7:16:49:1c:11:71:
ff:ae:b1:a3:2b:29:2f:4e:4d:42:4b:fe:c8:1f:3f:52:b5:48:
14:df:4d:e3:ac:3d:a3:e0:f0:3e:81:a4:71:3d:30:45:73:6c:
b4:56:b9:37:92:d3:6e:8f:64:46:a9:6e:cf:0b:fb:e2:21:84:
df:4d:c1:0f:8a:67:b8:43:b9:aa:73:1e:22:f0:08:db:80:7a:
0b:79:f6:32:8f:a6:24:df:63:5a:e9:7f:a2:b1:c4:de:6e:d2:
6c:a0:fb:96:d4:c5:1e:72:eb:1f:b7:e7:10:bd:4f:4f:ae:24:
03:d5:a6:7d
-----BEGIN CERTIFICATE-----
MIIG7jCCBdagAwIBAgISAZbnYdQ9ypy1/q0Gj6RvcHaoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUwZGVlMWIwNmJhMjRhNjc2MjEzZjk3NmE0YjUwYzEyOWRj
YjJiNzMwHhcNMjUwNTE5MDcxMTEwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzNWFjNTFmOTBiMDk0YWUxNzcyYThjZjEwNjk3ZWY5YWE0YjI5MzRlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAky98GGEaG6aVjeJ0ZA9H7VpziVUE
xLB+s8JuOk2ZfyuN+Yt4lMzlNU5tWnOsbcZkok6FCi5/tLRaWyvXs26OIewY3tPa
wJbEq4+Gi11rCyGPFedYvPzyEQVv18cxKSYUC5Yksewu+OONzv+E2khQrLXPVC7M
23XTPAykZmsnTrwHFwIuvlBOBcsQ447hEDCqILUrGhJLRT23E7aFlVPxU6Fs6zJC
+i2TXZRwYVzfCBoc5rNsH8RMgWfFHaXSEAEdW6NdcAQMf2m1Xmd4xR8xFidjQfZN
S4hiVMcCR0S4wcWvl1/33JQTYrLpy/j9QV2agSb/v6an283AQM6NMWu68QIDAQAB
o4ID+jCCA/YwHQYDVR0OBBYEFDWsUfkLCUrhdyqM8QaX75qkspNOMB8GA1UdIwQY
MBaAFODe4bBrokpnYhP5dqS1DBKdyytzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNE43aHNHdWlTbWRpRV9sMnBMVU1FcDNMSzNNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMC9jMjJkYzktYzdiYS00MTU2LWE3OWMt
MTVlOTBiZjg3ZmFiLzEvTmF4Ui1Rc0pTdUYzS296eEJwZnZtcVN5azA0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMC9jMjJkYzktYzdiYS00MTU2LWE3OWMtMTVlOTBiZjg3ZmFi
LzEvNE43aHNHdWlTbWRpRV9sMnBMVU1FcDNMSzNNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIICDgYIKwYBBQUHAQcBAf8EggH9MIIB+TCCAcoEAgABMIIB
wgMEBB8HEAMEAy62cAMDAD6OAwQFPpTAAwQFPthgAwQFPvBAAwQHPviAAwQGTW3A
AwQFUFGgAwQEUFiwAwMAULoDBAVQ+GADAwBRxQMEB1HRAAMEBlJnwAMEBVJ2wAME
BlKNQAMEBlLXwAMEB1P1gAMDAVTmAwMCVUwDAwFVnAMEB1XZAAMDAlhwAwMDW5gD
AwBeFgMEA22j+AMEA23oUAMDAIthAwQDsvs4AwQCwE14MAwDBALAZiQDBADAZiow
DAMEAMBmMQMEAMBmMgMEAMB+ATAMAwQAwH4XAwQAwH4YAwQAwH4jAwQAwH4sAwQA
wH4uMAwDBAXAoyADBAXAo4AwCgMDBsFAAwMAwUIDAwDBXgMDAcG4AwMAwccDAwDB
5QMDAMJWAwMAwogDAwDCnQMDAMK8AwMAwtMDAwHC8AMEBcMQwAMEBcNKAAMEBcOq
gAMDAMPFAwQFw9pAAwMBw+wDBAXD7sADAwDD/wMEBdQm4AMEBdQywAMEBdQ2AAME
BdQ/AAMDANTiAwMA1PYDBAXVguADBAXVoSADBAXVqQADBAbVwIADBAbV+kADBATZ
GGADBATZGWADBATZTcADAwDZmDApBAIAAjAjAwUDIAEGcAMFAyABCZgDBQMgAQnw
AwUDIAEWWAMFAyoAHdAwDQYJKoZIhvcNAQELBQADggEBAHdw88ehiu4VTJ/k2Uhc
wu9k2MfwF6fB0NXpclntbyJblOBHPm4TcUCHfPKZRIH+1QyUzTnRE7knTfaSmJx9
P1zmrGoPBC1Hu3kC3ioz9aEZ28WfSA3IlrR7VVNu2UB/rHtc0IKToixiHnlzJh9l
hQyFcuplgp8iY42fTw7777YAaczdt1jISmG2OMcWSRwRcf+usaMrKS9OTUJL/sgf
P1K1SBTfTeOsPaPg8D6BpHE9MEVzbLRWuTeS026PZEapbs8L++IhhN9NwQ+KZ7hD
uapzHiLwCNuAegt59jKPpiTfY1rpf6KxxN5u0myg+5bUxR5y6x+35xC9T0+uJAPV
pn0=
-----END CERTIFICATE-----
Generated at Sat Jun 7 16:36:52 2025 by rpki-client