Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/f560e1-7840-4951-ab78-5001539d7185/1/7BncfYkvGWcsTfGdxaJkzh_2_IU.roa
File: 7BncfYkvGWcsTfGdxaJkzh_2_IU.roa (raw, json)
Hash identifier: 3OAAtWsknezKEAhXMFhQY6nCAzgWzSR40SnowB9w8+A=
Subject key identifier: EC:19:DC:7D:89:2F:19:67:2C:4D:F1:9D:C5:A2:64:CE:1F:F6:FC:85
Certificate issuer: /CN=8b47aa09f2c610f6f44b4e75c1cd9dcd3884e55d
Certificate serial: 0195AEE2BC28DABBDAD3C673BEE282DF766E
Authority key identifier: 8B:47:AA:09:F2:C6:10:F6:F4:4B:4E:75:C1:CD:9D:CD:38:84:E5:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i0eqCfLGEPb0S051wc2dzTiE5V0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/f560e1-7840-4951-ab78-5001539d7185/1/7BncfYkvGWcsTfGdxaJkzh_2_IU.roa
Signing time: Wed 19 Mar 2025 14:50:49 +0000
ROA not before: Wed 19 Mar 2025 14:50:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 48551
IP address blocks: 31.193.186.0/24 maxlen: 24
45.94.252.0/24 maxlen: 24
45.94.254.0/24 maxlen: 24
45.94.255.0/24 maxlen: 24
45.150.150.0/24 maxlen: 24
45.159.196.0/24 maxlen: 24
45.159.197.0/24 maxlen: 24
45.159.198.0/24 maxlen: 24
45.159.199.0/24 maxlen: 24
91.217.177.0/24 maxlen: 24
103.216.60.0/24 maxlen: 24
103.216.61.0/24 maxlen: 24
103.216.62.0/24 maxlen: 24
103.216.63.0/24 maxlen: 24
157.119.188.0/24 maxlen: 24
157.119.190.0/24 maxlen: 24
157.119.191.0/24 maxlen: 24
185.63.114.0/24 maxlen: 24
185.74.221.0/24 maxlen: 24
185.86.180.0/24 maxlen: 24
185.86.181.0/24 maxlen: 24
185.128.40.0/24 maxlen: 24
185.149.192.0/24 maxlen: 24
185.159.189.0/24 maxlen: 24
185.228.58.0/24 maxlen: 24
185.229.135.0/24 maxlen: 24
185.236.36.0/24 maxlen: 24
185.236.37.0/24 maxlen: 24
185.236.38.0/24 maxlen: 24
185.236.39.0/24 maxlen: 24
185.238.143.0/24 maxlen: 24
194.147.212.0/24 maxlen: 24
194.147.222.0/24 maxlen: 24
195.114.4.0/24 maxlen: 24
195.114.5.0/24 maxlen: 24
195.114.8.0/24 maxlen: 24
195.114.9.0/24 maxlen: 24
2a0d:9500::/29 maxlen: 29
Validation: Failed, certificate revoked on Sat 12 Apr 2025 13:29:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:ae:e2:bc:28:da:bb:da:d3:c6:73:be:e2:82:df:76:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b47aa09f2c610f6f44b4e75c1cd9dcd3884e55d
Validity
Not Before: Mar 19 14:50:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ec19dc7d892f19672c4df19dc5a264ce1ff6fc85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:5f:4b:33:d5:04:66:74:fd:56:3b:f9:74:15:
df:83:98:0f:34:62:03:21:53:c2:d2:10:65:ed:8d:
93:21:20:54:eb:17:74:31:98:f3:05:a3:89:80:10:
02:5a:f0:d8:53:75:a7:c7:d2:41:e5:cf:fd:7e:b2:
f5:82:bb:a3:c5:9f:b0:a9:f4:9a:dc:36:e1:07:9f:
05:7d:fc:af:1b:6d:9c:a1:1b:e3:e4:85:31:7d:38:
19:b4:2f:5f:b5:42:51:19:3c:ab:35:c9:7b:a0:00:
eb:25:4a:99:9c:7e:06:14:4e:ee:d9:04:f1:2b:7a:
88:fd:8c:3e:e8:d1:65:76:49:3e:c3:50:b7:8e:a1:
40:f9:f4:ed:e0:8b:19:df:c3:fd:fc:9c:8d:e4:78:
75:02:06:ec:d8:15:8e:7c:57:54:c9:fc:81:56:f4:
85:d7:1b:0a:f9:19:a6:2c:04:25:45:1c:9d:f7:6c:
f3:5d:89:39:13:05:5a:96:ef:b9:a8:90:4b:6a:27:
59:0c:eb:e3:a6:16:59:22:b4:a6:f9:de:90:11:d8:
b0:d0:74:d7:66:71:44:c9:da:1c:ac:4f:6f:9e:88:
67:52:82:97:89:c6:7e:d0:8a:59:05:6c:ec:4f:e9:
99:42:fc:c2:33:71:f2:67:c8:61:f4:3e:4f:4d:00:
0a:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:19:DC:7D:89:2F:19:67:2C:4D:F1:9D:C5:A2:64:CE:1F:F6:FC:85
X509v3 Authority Key Identifier:
keyid:8B:47:AA:09:F2:C6:10:F6:F4:4B:4E:75:C1:CD:9D:CD:38:84:E5:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i0eqCfLGEPb0S051wc2dzTiE5V0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/f560e1-7840-4951-ab78-5001539d7185/1/7BncfYkvGWcsTfGdxaJkzh_2_IU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/f560e1-7840-4951-ab78-5001539d7185/1/i0eqCfLGEPb0S051wc2dzTiE5V0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.193.186.0/24
45.94.252.0/24
45.94.254.0/23
45.150.150.0/24
45.159.196.0/22
91.217.177.0/24
103.216.60.0/22
157.119.188.0/24
157.119.190.0/23
185.63.114.0/24
185.74.221.0/24
185.86.180.0/23
185.128.40.0/24
185.149.192.0/24
185.159.189.0/24
185.228.58.0/24
185.229.135.0/24
185.236.36.0/22
185.238.143.0/24
194.147.212.0/24
194.147.222.0/24
195.114.4.0/23
195.114.8.0/23
IPv6:
2a0d:9500::/29
Signature Algorithm: sha256WithRSAEncryption
3d:a9:02:e4:9b:9b:bc:7e:c8:0d:0b:f4:d2:fb:21:42:c2:b0:
35:4a:4b:86:7e:ed:54:7f:f0:8b:16:a6:85:3a:22:70:eb:56:
f1:b5:fa:37:90:3a:c8:2c:4d:b8:97:3a:c0:4c:33:4c:1f:fb:
2a:f6:59:80:d2:29:cd:1c:fa:6f:a5:47:dc:b0:8f:74:a7:53:
86:a7:45:ad:b2:15:1d:d8:1e:4b:91:4c:13:64:91:98:53:57:
6b:e9:67:69:47:e4:25:07:d4:a5:fb:97:28:09:85:17:95:fb:
91:a7:90:5c:49:50:94:bd:b3:bd:19:99:46:a6:7f:12:4b:eb:
53:d0:dc:64:8e:c9:38:12:0a:5d:1a:7f:65:55:16:2a:c0:27:
aa:a7:c5:4d:f3:c6:eb:7c:93:b2:74:ba:d8:22:ff:5f:6a:d2:
70:a4:9d:6e:67:2c:82:42:22:67:3e:d2:0e:54:59:67:2e:dc:
d1:8b:56:4d:62:51:16:d4:5a:ec:3a:14:75:89:d5:00:05:85:
bc:7f:3b:a9:ec:20:46:f1:3e:6e:e2:63:79:71:ca:1f:ec:58:
ef:22:0b:5d:89:ea:32:a7:70:7a:39:d1:02:95:69:a4:f9:87:
be:37:45:60:a6:fb:1c:ea:92:bc:5b:b7:1b:2b:3a:8f:42:cc:
7a:ad:e1:2d
-----BEGIN CERTIFICATE-----
MIIFlTCCBH2gAwIBAgISAZWu4rwo2rva08ZzvuKC33ZuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhiNDdhYTA5ZjJjNjEwZjZmNDRiNGU3NWMxY2Q5ZGNkMzg4
NGU1NWQwHhcNMjUwMzE5MTQ1MDQ5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlYzE5ZGM3ZDg5MmYxOTY3MmM0ZGYxOWRjNWEyNjRjZTFmZjZmYzg1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqV9LM9UEZnT9Vjv5dBXfg5gPNGID
IVPC0hBl7Y2TISBU6xd0MZjzBaOJgBACWvDYU3Wnx9JB5c/9frL1grujxZ+wqfSa
3DbhB58FffyvG22coRvj5IUxfTgZtC9ftUJRGTyrNcl7oADrJUqZnH4GFE7u2QTx
K3qI/Yw+6NFldkk+w1C3jqFA+fTt4IsZ38P9/JyN5Hh1Agbs2BWOfFdUyfyBVvSF
1xsK+RmmLAQlRRyd92zzXYk5EwValu+5qJBLaidZDOvjphZZIrSm+d6QEdiw0HTX
ZnFEydocrE9vnohnUoKXicZ+0IpZBWzsT+mZQvzCM3HyZ8hh9D5PTQAKfQIDAQAB
o4ICoTCCAp0wHQYDVR0OBBYEFOwZ3H2JLxlnLE3xncWiZM4f9vyFMB8GA1UdIwQY
MBaAFItHqgnyxhD29EtOdcHNnc04hOVdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaTBlcUNmTEdFUGIwUzA1MXdjMmR6VGlFNVYwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ni9mNTYwZTEtNzg0MC00OTUxLWFiNzgt
NTAwMTUzOWQ3MTg1LzEvN0JuY2ZZa3ZHV2NzVGZHZHhhSmt6aF8yX0lVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Ni9mNTYwZTEtNzg0MC00OTUxLWFiNzgtNTAwMTUzOWQ3MTg1
LzEvaTBlcUNmTEdFUGIwUzA1MXdjMmR6VGlFNVYwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIG2BggrBgEFBQcBBwEB/wSBpjCBozCBkQQCAAEwgYoDBAAf
wboDBAAtXvwDBAEtXv4DBAAtlpYDBAItn8QDBABb2bEDBAJn2DwDBACdd7wDBAGd
d74DBAC5P3IDBAC5St0DBAG5VrQDBAC5gCgDBAC5lcADBAC5n70DBAC55DoDBAC5
5YcDBAK57CQDBAC57o8DBADCk9QDBADCk94DBAHDcgQDBAHDcggwDQQCAAIwBwMF
AyoNlQAwDQYJKoZIhvcNAQELBQADggEBAD2pAuSbm7x+yA0L9NL7IULCsDVKS4Z+
7VR/8IsWpoU6InDrVvG1+jeQOsgsTbiXOsBMM0wf+yr2WYDSKc0c+m+lR9ywj3Sn
U4anRa2yFR3YHkuRTBNkkZhTV2vpZ2lH5CUH1KX7lygJhReV+5GnkFxJUJS9s70Z
mUamfxJL61PQ3GSOyTgSCl0af2VVFirAJ6qnxU3zxut8k7J0utgi/19q0nCknW5n
LIJCImc+0g5UWWcu3NGLVk1iURbUWuw6FHWJ1QAFhbx/O6nsIEbxPm7iY3lxyh/s
WO8iC12J6jKncHo50QKVaaT5h743RWCm+xzqkrxbtxsrOo9CzHqt4S0=
-----END CERTIFICATE-----
Generated at Thu Apr 17 08:16:12 2025 by rpki-client