Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/EAoz81dedwIMuU07ZLh4BO-xmhQ.roa
File: EAoz81dedwIMuU07ZLh4BO-xmhQ.roa (raw, json)
Hash identifier: UZmTsHQCOMSYSWnuWiL0eE6RDxN9DNfQF1Zzk6vg7ek=
Subject key identifier: 10:0A:33:F3:57:5E:77:02:0C:B9:4D:3B:64:B8:78:04:EF:B1:9A:14
Certificate issuer: /CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Certificate serial: 0195D1E12C15D876B5E2DA558A086F8ED965
Authority key identifier: B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/EAoz81dedwIMuU07ZLh4BO-xmhQ.roa
Signing time: Wed 26 Mar 2025 09:55:49 +0000
ROA not before: Wed 26 Mar 2025 09:55:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 12741
IP address blocks: 5.226.64.0/18 maxlen: 18
5.226.92.0/24 maxlen: 24
5.226.128.0/22 maxlen: 24
5.226.135.0/24 maxlen: 24
37.128.0.0/17 maxlen: 17
37.128.0.0/19 maxlen: 19
37.128.32.0/20 maxlen: 20
37.128.48.0/20 maxlen: 20
37.128.64.0/18 maxlen: 18
62.87.128.0/17 maxlen: 17
62.89.64.0/18 maxlen: 18
62.111.128.0/17 maxlen: 17
62.111.250.0/24 maxlen: 24
62.148.64.0/19 maxlen: 19
62.181.160.0/19 maxlen: 19
62.233.128.0/17 maxlen: 17
62.244.128.0/19 maxlen: 19
77.65.134.0/24 maxlen: 24
77.65.155.0/24 maxlen: 24
77.65.171.0/24 maxlen: 24
77.65.188.0/24 maxlen: 24
77.65.193.0/24 maxlen: 24
77.65.209.0/24 maxlen: 24
77.252.0.0/14 maxlen: 14
77.252.0.0/16 maxlen: 24
78.8.0.0/14 maxlen: 14
81.168.128.0/17 maxlen: 17
81.210.0.0/17 maxlen: 17
81.219.0.0/16 maxlen: 16
82.143.128.0/18 maxlen: 18
83.238.0.0/16 maxlen: 16
84.40.128.0/17 maxlen: 17
84.40.128.0/20 maxlen: 20
84.40.144.0/21 maxlen: 21
84.40.152.0/21 maxlen: 21
84.40.160.0/19 maxlen: 19
84.40.192.0/20 maxlen: 20
84.40.208.0/21 maxlen: 21
84.40.216.0/21 maxlen: 21
84.40.224.0/21 maxlen: 21
84.40.240.0/20 maxlen: 20
85.31.252.0/24 maxlen: 24
85.128.0.0/17 maxlen: 17
85.202.54.0/24 maxlen: 24
85.202.59.0/24 maxlen: 24
87.105.0.0/16 maxlen: 16
87.204.0.0/15 maxlen: 15
87.204.0.0/16 maxlen: 16
87.205.0.0/17 maxlen: 17
87.205.128.0/17 maxlen: 17
87.239.216.0/21 maxlen: 22
89.171.0.0/16 maxlen: 16
91.192.88.0/22 maxlen: 22
93.159.0.0/18 maxlen: 18
93.180.160.0/19 maxlen: 19
159.205.0.0/16 maxlen: 16
178.16.116.0/24 maxlen: 24
178.16.121.0/24 maxlen: 24
178.16.125.0/24 maxlen: 24
178.36.0.0/15 maxlen: 15
185.58.160.0/22 maxlen: 22
185.58.160.0/23 maxlen: 23
185.58.162.0/23 maxlen: 23
185.72.184.0/22 maxlen: 22
185.164.140.0/22 maxlen: 22
185.244.96.0/22 maxlen: 22
193.19.104.0/23 maxlen: 23
193.91.16.0/20 maxlen: 20
193.192.173.0/24 maxlen: 24
193.192.181.0/24 maxlen: 24
193.192.188.0/24 maxlen: 24
193.192.190.0/24 maxlen: 24
195.114.160.0/19 maxlen: 19
212.49.32.0/19 maxlen: 19
212.106.0.0/19 maxlen: 19
212.106.0.0/20 maxlen: 20
212.106.16.0/20 maxlen: 20
213.17.128.0/17 maxlen: 17
213.17.244.0/24 maxlen: 24
213.134.128.0/19 maxlen: 19
213.146.32.0/19 maxlen: 19
213.186.64.0/19 maxlen: 19
213.195.128.0/18 maxlen: 18
213.216.64.0/18 maxlen: 18
213.238.64.0/18 maxlen: 18
213.241.0.0/17 maxlen: 17
213.241.89.0/24 maxlen: 24
217.30.128.0/19 maxlen: 19
2001:16b0::/32 maxlen: 32
2001:41b0::/32 maxlen: 48
Validation: Failed, certificate revoked on Fri 28 Mar 2025 12:56:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:d1:e1:2c:15:d8:76:b5:e2:da:55:8a:08:6f:8e:d9:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Validity
Not Before: Mar 26 09:55:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=100a33f3575e77020cb94d3b64b87804efb19a14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:3b:d4:07:db:5c:4c:f6:43:7c:5b:7f:62:0b:
c2:2a:14:f6:0f:a4:4c:1f:36:4d:8c:7d:84:a3:73:
e2:e2:3d:ab:d6:ac:88:cd:8a:a3:0d:69:4d:70:f5:
9e:57:04:cb:7c:12:29:22:9e:a6:f8:4f:e3:9a:f5:
6d:1d:35:24:eb:a0:fb:22:ee:45:ba:4e:1d:cb:da:
88:aa:33:2d:35:33:78:33:10:44:fe:cd:81:4d:b8:
48:c6:2e:c0:b8:42:3a:a6:d1:20:03:8d:b0:a9:58:
6b:3e:ab:81:64:ce:4e:cc:78:83:79:39:55:e5:98:
47:6d:bb:9f:b2:09:c0:bc:ca:85:78:95:92:13:48:
12:e1:81:e0:ed:80:4b:94:ce:e5:19:7b:72:54:cc:
12:b8:bf:8e:47:ec:29:fb:7f:f4:4b:a8:25:15:62:
fe:af:c3:5a:6f:14:3f:99:9b:3b:cd:88:a9:e0:56:
ee:d3:c4:f9:b0:46:8c:d8:57:99:ba:63:45:1f:ce:
01:74:b6:58:ef:d5:42:a2:9e:4b:60:0d:56:4c:98:
eb:79:7f:dc:87:94:7c:cb:73:f1:9e:fc:0f:bb:e1:
1e:5e:a2:16:37:33:b6:a6:fa:25:f0:d3:ce:09:c4:
cc:de:83:13:c4:84:04:e2:0f:03:61:1c:a0:9a:db:
7a:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:0A:33:F3:57:5E:77:02:0C:B9:4D:3B:64:B8:78:04:EF:B1:9A:14
X509v3 Authority Key Identifier:
keyid:B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/EAoz81dedwIMuU07ZLh4BO-xmhQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/uZVEmZdyeKdVcLNAP006oAsbNug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.226.64.0-5.226.131.255
5.226.135.0/24
37.128.0.0/17
62.87.128.0/17
62.89.64.0/18
62.111.128.0/17
62.148.64.0/19
62.181.160.0/19
62.233.128.0/17
62.244.128.0/19
77.65.134.0/24
77.65.155.0/24
77.65.171.0/24
77.65.188.0/24
77.65.193.0/24
77.65.209.0/24
77.252.0.0/14
78.8.0.0/14
81.168.128.0/17
81.210.0.0/17
81.219.0.0/16
82.143.128.0/18
83.238.0.0/16
84.40.128.0/17
85.31.252.0/24
85.128.0.0/17
85.202.54.0/24
85.202.59.0/24
87.105.0.0/16
87.204.0.0/15
87.239.216.0/21
89.171.0.0/16
91.192.88.0/22
93.159.0.0/18
93.180.160.0/19
159.205.0.0/16
178.16.116.0/24
178.16.121.0/24
178.16.125.0/24
178.36.0.0/15
185.58.160.0/22
185.72.184.0/22
185.164.140.0/22
185.244.96.0/22
193.19.104.0/23
193.91.16.0/20
193.192.173.0/24
193.192.181.0/24
193.192.188.0/24
193.192.190.0/24
195.114.160.0/19
212.49.32.0/19
212.106.0.0/19
213.17.128.0/17
213.134.128.0/19
213.146.32.0/19
213.186.64.0/19
213.195.128.0/18
213.216.64.0/18
213.238.64.0/18
213.241.0.0/17
217.30.128.0/19
IPv6:
2001:16b0::/32
2001:41b0::/32
Signature Algorithm: sha256WithRSAEncryption
87:1b:97:cb:33:42:73:a4:41:47:f9:1f:37:70:f6:c5:e9:e3:
6e:5d:1a:c8:03:2d:86:a6:b0:16:fb:c0:60:d4:42:02:59:fe:
36:a2:dc:83:9e:4c:df:93:b3:da:5a:82:bf:fa:5c:2f:cb:8f:
e6:a9:38:e2:a1:89:f1:6a:e9:f3:60:30:85:ba:e6:69:b0:41:
d0:43:0b:57:cd:4e:d2:d8:3e:c9:70:ed:db:a5:e3:5a:1a:b4:
cb:70:11:05:03:3e:0f:27:64:4b:26:10:50:e4:f6:1a:66:d2:
2d:6a:f0:de:15:cb:76:0e:b5:d6:a5:97:5c:c0:ee:b6:36:cc:
3d:01:85:1a:f8:42:62:17:ce:53:56:18:42:4f:59:2d:75:e3:
cd:22:25:6e:db:39:02:93:d4:7a:9e:61:c2:b9:85:cf:38:94:
9f:93:7e:da:66:e1:85:30:8d:8a:cc:22:0f:98:45:07:1a:20:
1c:9d:b6:2b:5b:61:52:4c:0c:16:1b:73:14:e1:90:5c:fa:c9:
38:9e:7f:a1:b0:80:82:44:b3:a2:1e:97:4b:1d:90:dc:a2:c0:
06:6a:2f:b1:db:9a:90:73:17:f8:58:53:18:93:ef:99:16:66:
0f:b3:f8:00:41:66:a9:df:82:df:e5:dd:d3:72:36:30:45:03:
6d:c9:f6:6a
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Tue Apr 8 06:26:17 2025 by rpki-client