Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/nqrAzfpt8nDKQJFx2a9UVTrXFqc.roa
File: nqrAzfpt8nDKQJFx2a9UVTrXFqc.roa (raw, json)
Hash identifier: tiYekms1eVWhR/SIk2jPZsechMvCdi9kjcSL6yFruN8=
Subject key identifier: 9E:AA:C0:CD:FA:6D:F2:70:CA:40:91:71:D9:AF:54:55:3A:D7:16:A7
Certificate issuer: /CN=5b698c4b612afee2cbb1cdd509e4f0246fbb80e1
Certificate serial: 0196CF0E6B1A81577C5DC4F3DEA9E6C12DC4
Authority key identifier: 5B:69:8C:4B:61:2A:FE:E2:CB:B1:CD:D5:09:E4:F0:24:6F:BB:80:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/nqrAzfpt8nDKQJFx2a9UVTrXFqc.roa
Signing time: Wed 14 May 2025 13:49:10 +0000
ROA not before: Wed 14 May 2025 13:49:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 206065
IP address blocks: 31.25.104.0/21 maxlen: 24
31.217.208.0/21 maxlen: 24
37.19.80.0/20 maxlen: 24
37.114.192.0/18 maxlen: 24
37.191.87.0/24 maxlen: 24
37.191.88.0/22 maxlen: 24
37.221.0.0/18 maxlen: 24
37.235.16.0/20 maxlen: 24
45.128.140.0/22 maxlen: 24
45.144.124.0/22 maxlen: 24
46.32.5.0/24 maxlen: 24
46.32.9.0/24 maxlen: 24
46.32.14.0/24 maxlen: 24
46.34.164.0/22 maxlen: 24
46.34.168.0/21 maxlen: 24
46.34.178.0/23 maxlen: 24
46.34.180.0/22 maxlen: 24
46.34.184.0/21 maxlen: 24
78.158.182.0/23 maxlen: 24
79.132.200.0/22 maxlen: 24
79.132.213.0/24 maxlen: 24
79.132.217.0/24 maxlen: 24
79.132.218.0/23 maxlen: 24
79.132.220.0/23 maxlen: 24
80.71.113.0/24 maxlen: 24
80.71.122.0/23 maxlen: 24
80.71.124.0/23 maxlen: 24
80.71.127.0/24 maxlen: 24
81.29.243.0/24 maxlen: 24
81.29.248.0/21 maxlen: 24
81.29.250.0/23 maxlen: 24
81.29.250.0/24 maxlen: 24
81.29.251.0/24 maxlen: 24
81.29.254.0/24 maxlen: 24
81.91.144.0/20 maxlen: 24
81.91.144.0/22 maxlen: 24
81.91.148.0/23 maxlen: 24
81.91.150.0/23 maxlen: 24
81.91.152.0/21 maxlen: 24
86.109.32.0/23 maxlen: 24
86.109.36.0/22 maxlen: 24
86.109.41.0/24 maxlen: 24
86.109.46.0/23 maxlen: 24
86.109.53.0/24 maxlen: 24
86.109.56.0/22 maxlen: 24
86.109.58.0/23 maxlen: 24
86.109.62.0/23 maxlen: 24
87.247.180.0/23 maxlen: 24
91.184.64.0/20 maxlen: 24
92.61.184.0/21 maxlen: 24
92.119.68.0/22 maxlen: 24
94.139.160.0/20 maxlen: 24
109.230.64.0/21 maxlen: 24
109.230.80.0/20 maxlen: 24
109.230.80.0/22 maxlen: 24
109.230.82.0/24 maxlen: 24
109.230.88.0/21 maxlen: 24
109.230.88.0/23 maxlen: 24
109.230.90.0/24 maxlen: 24
109.230.93.0/24 maxlen: 24
176.221.65.0/24 maxlen: 24
185.12.62.0/24 maxlen: 24
185.21.76.0/22 maxlen: 24
185.30.76.0/22 maxlen: 24
185.40.240.0/22 maxlen: 24
185.45.188.0/22 maxlen: 24
185.70.60.0/22 maxlen: 24
185.82.164.0/23 maxlen: 24
185.85.68.0/22 maxlen: 24
185.104.228.0/24 maxlen: 24
185.133.152.0/22 maxlen: 24
185.142.233.0/24 maxlen: 24
185.142.234.0/23 maxlen: 24
185.172.0.0/22 maxlen: 24
185.190.20.0/22 maxlen: 24
185.197.68.0/22 maxlen: 24
185.208.150.0/23 maxlen: 24
188.75.92.0/24 maxlen: 24
188.75.94.0/24 maxlen: 24
188.75.102.0/23 maxlen: 24
188.75.107.0/24 maxlen: 24
188.75.110.0/23 maxlen: 24
188.75.113.0/24 maxlen: 24
188.75.114.0/23 maxlen: 24
188.75.116.0/23 maxlen: 24
188.75.122.0/23 maxlen: 24
188.121.128.0/19 maxlen: 24
188.121.128.0/23 maxlen: 24
188.121.128.0/24 maxlen: 24
188.121.129.0/24 maxlen: 24
188.121.136.0/21 maxlen: 24
188.121.144.0/20 maxlen: 24
188.121.144.0/22 maxlen: 24
188.121.146.0/24 maxlen: 24
188.121.148.0/23 maxlen: 24
188.121.152.0/22 maxlen: 24
188.121.156.0/24 maxlen: 24
188.121.157.0/24 maxlen: 24
188.121.158.0/23 maxlen: 24
188.136.148.0/24 maxlen: 24
188.136.158.0/24 maxlen: 24
188.136.174.0/24 maxlen: 24
188.136.175.0/24 maxlen: 24
188.136.176.0/21 maxlen: 24
188.136.184.0/24 maxlen: 24
188.136.185.0/24 maxlen: 24
188.136.186.0/23 maxlen: 24
188.136.188.0/23 maxlen: 24
188.136.192.0/22 maxlen: 24
188.136.192.0/23 maxlen: 24
188.136.194.0/24 maxlen: 24
188.136.195.0/24 maxlen: 24
188.136.197.0/24 maxlen: 24
188.136.198.0/23 maxlen: 24
188.136.200.0/24 maxlen: 24
188.136.201.0/24 maxlen: 24
188.136.202.0/23 maxlen: 24
188.136.208.0/24 maxlen: 24
188.136.209.0/24 maxlen: 24
188.136.212.0/22 maxlen: 24
188.136.216.0/22 maxlen: 24
188.136.218.0/23 maxlen: 24
188.136.220.0/23 maxlen: 24
188.136.222.0/23 maxlen: 24
213.195.16.0/22 maxlen: 24
213.207.192.0/20 maxlen: 24
217.66.208.0/24 maxlen: 24
217.66.211.0/24 maxlen: 24
2a0c:100::/29 maxlen: 48
2a0c:104::/30 maxlen: 30
Validation: Failed, certificate revoked on Wed 14 May 2025 17:12:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:cf:0e:6b:1a:81:57:7c:5d:c4:f3:de:a9:e6:c1:2d:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b698c4b612afee2cbb1cdd509e4f0246fbb80e1
Validity
Not Before: May 14 13:49:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9eaac0cdfa6df270ca409171d9af54553ad716a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:21:14:ff:77:29:39:5c:57:e0:32:2b:7d:be:
8d:01:67:26:15:b4:52:20:ab:28:a6:00:38:63:a7:
2c:a2:2f:7c:49:6a:4c:9b:0a:c9:a9:79:3b:02:5c:
b4:7f:7d:2f:ec:a2:97:44:44:3a:20:37:a1:33:f8:
2e:7b:03:96:68:70:43:87:54:ce:3e:ca:3e:d2:3a:
08:ca:9a:ae:fa:11:4c:21:4e:af:aa:fe:c6:35:01:
9a:f5:d1:c8:07:6f:89:bf:52:cb:90:f6:59:13:d0:
4e:aa:d3:4d:40:a3:a6:b5:be:9b:58:6b:0c:a0:bc:
21:cf:cf:e1:09:e7:66:7b:2e:05:37:85:1a:35:f9:
5f:e1:a8:8b:6a:70:1c:5d:14:88:77:70:c5:af:78:
61:9d:1a:d4:7b:8b:b8:15:09:56:1a:02:f0:a8:d2:
47:ab:a7:61:43:a7:ce:ff:04:18:af:98:ba:6b:9b:
62:e4:f5:cb:29:ea:d4:fb:df:13:37:0b:ee:89:24:
88:b3:e6:44:ac:93:5f:a6:aa:22:81:2e:9b:c7:4a:
c0:c7:93:cb:5b:64:df:0d:4e:70:4f:b3:a5:4d:41:
36:39:95:4c:b0:aa:96:cc:25:90:14:6e:12:c6:02:
8e:c7:55:cf:02:67:01:5a:69:12:6a:ef:05:63:e4:
6a:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:AA:C0:CD:FA:6D:F2:70:CA:40:91:71:D9:AF:54:55:3A:D7:16:A7
X509v3 Authority Key Identifier:
keyid:5B:69:8C:4B:61:2A:FE:E2:CB:B1:CD:D5:09:E4:F0:24:6F:BB:80:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/nqrAzfpt8nDKQJFx2a9UVTrXFqc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.25.104.0/21
31.217.208.0/21
37.19.80.0/20
37.114.192.0/18
37.191.87.0-37.191.91.255
37.221.0.0/18
37.235.16.0/20
45.128.140.0/22
45.144.124.0/22
46.32.5.0/24
46.32.9.0/24
46.32.14.0/24
46.34.164.0-46.34.175.255
46.34.178.0-46.34.191.255
78.158.182.0/23
79.132.200.0/22
79.132.213.0/24
79.132.217.0-79.132.221.255
80.71.113.0/24
80.71.122.0-80.71.125.255
80.71.127.0/24
81.29.243.0/24
81.29.248.0/21
81.91.144.0/20
86.109.32.0/23
86.109.36.0/22
86.109.41.0/24
86.109.46.0/23
86.109.53.0/24
86.109.56.0/22
86.109.62.0/23
87.247.180.0/23
91.184.64.0/20
92.61.184.0/21
92.119.68.0/22
94.139.160.0/20
109.230.64.0/21
109.230.80.0/20
176.221.65.0/24
185.12.62.0/24
185.21.76.0/22
185.30.76.0/22
185.40.240.0/22
185.45.188.0/22
185.70.60.0/22
185.82.164.0/23
185.85.68.0/22
185.104.228.0/24
185.133.152.0/22
185.142.233.0-185.142.235.255
185.172.0.0/22
185.190.20.0/22
185.197.68.0/22
185.208.150.0/23
188.75.92.0/24
188.75.94.0/24
188.75.102.0/23
188.75.107.0/24
188.75.110.0/23
188.75.113.0-188.75.117.255
188.75.122.0/23
188.121.128.0/19
188.136.148.0/24
188.136.158.0/24
188.136.174.0-188.136.189.255
188.136.192.0/22
188.136.197.0-188.136.203.255
188.136.208.0/23
188.136.212.0-188.136.223.255
213.195.16.0/22
213.207.192.0/20
217.66.208.0/24
217.66.211.0/24
IPv6:
2a0c:100::/29
Signature Algorithm: sha256WithRSAEncryption
6e:3f:d7:99:59:5e:a1:c9:5f:a3:b3:8f:ed:08:f0:0a:fb:98:
ce:cf:ae:bb:57:8b:66:a7:f2:0d:01:1e:c1:92:1a:e8:1f:69:
c6:cc:9b:5c:97:36:a3:b6:b0:cc:5c:f5:75:0d:f9:14:e9:4a:
4a:1e:08:28:ab:e5:09:b6:f6:6a:95:c7:ce:00:c2:31:34:b0:
8d:24:13:51:1c:f0:e3:24:b8:98:b1:cb:78:8d:a8:3b:e4:34:
f8:84:88:6d:f5:ec:51:34:5f:40:90:69:55:85:7a:6d:f0:c1:
82:88:34:bf:0b:22:bb:14:23:1a:b9:fa:a4:41:90:ec:77:41:
ab:1e:5f:d9:c4:16:e5:89:c1:39:a4:89:1a:9a:06:5b:3e:bc:
41:cd:82:c7:ba:79:1f:62:22:f4:e5:35:79:a5:67:26:15:f1:
f4:8c:3c:a5:12:a0:0c:2e:d2:f9:1b:f0:dc:ae:ec:01:78:cb:
bb:9f:de:fd:30:05:9a:5d:77:7b:b3:e7:fe:6f:0d:fa:e6:53:
82:c0:e1:fb:32:54:06:19:d4:44:43:88:e2:8f:30:de:66:bb:
48:b9:17:b0:58:bf:7e:bf:3d:a4:75:e7:96:42:b7:f4:6b:3b:
b7:e7:ef:1e:f7:39:2a:38:88:ab:7b:d4:cc:bf:37:ec:28:73:
57:2b:b9:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 13:52:51 2025 by rpki-client