Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/SjOVKYY2xn5_KDcvu-v03yflrig.roa
File: SjOVKYY2xn5_KDcvu-v03yflrig.roa (raw, json)
Hash identifier: gsd3B2tr99KW3X2mlAr1bYkL11dO8FSjNjlexa29ML0=
Subject key identifier: 4A:33:95:29:86:36:C6:7E:7F:28:37:2F:BB:EB:F4:DF:27:E5:AE:28
Certificate issuer: /CN=f04a58047f37bbc057944bbf8cad8742879592da
Certificate serial: 0195DCB90DF58420ABDC9D35645405AD2969
Authority key identifier: F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/SjOVKYY2xn5_KDcvu-v03yflrig.roa
Signing time: Fri 28 Mar 2025 12:27:50 +0000
ROA not before: Fri 28 Mar 2025 12:27:50 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212238
IP address blocks: 14.102.52.0/24 maxlen: 24
14.102.54.0/24 maxlen: 24
14.102.55.0/24 maxlen: 24
14.102.63.0/24 maxlen: 24
14.102.85.0/24 maxlen: 24
14.102.87.0/24 maxlen: 24
31.222.216.0/24 maxlen: 24
31.222.217.0/24 maxlen: 24
31.222.218.0/24 maxlen: 24
31.222.219.0/24 maxlen: 24
62.169.129.0/24 maxlen: 24
62.169.131.0/24 maxlen: 24
62.169.132.0/24 maxlen: 24
62.169.133.0/24 maxlen: 24
62.169.134.0/24 maxlen: 24
62.169.135.0/24 maxlen: 24
66.56.80.0/24 maxlen: 24
66.56.81.0/24 maxlen: 24
66.56.82.0/24 maxlen: 24
66.56.84.0/24 maxlen: 24
66.56.85.0/24 maxlen: 24
66.56.86.0/24 maxlen: 24
84.51.234.0/24 maxlen: 24
84.51.235.0/24 maxlen: 24
92.51.232.0/24 maxlen: 24
92.51.233.0/24 maxlen: 24
92.51.238.0/24 maxlen: 24
92.51.239.0/24 maxlen: 24
92.51.248.0/24 maxlen: 24
92.51.249.0/24 maxlen: 24
92.51.250.0/24 maxlen: 24
92.51.251.0/24 maxlen: 24
92.51.252.0/24 maxlen: 24
92.51.253.0/24 maxlen: 24
92.51.254.0/24 maxlen: 24
103.61.197.0/24 maxlen: 24
103.61.198.0/24 maxlen: 24
103.61.199.0/24 maxlen: 24
103.125.77.0/24 maxlen: 24
103.125.78.0/24 maxlen: 24
103.125.79.0/24 maxlen: 24
103.210.198.0/24 maxlen: 24
103.210.199.0/24 maxlen: 24
103.213.212.0/24 maxlen: 24
103.213.213.0/24 maxlen: 24
103.213.214.0/24 maxlen: 24
103.213.215.0/24 maxlen: 24
103.255.76.0/24 maxlen: 24
103.255.77.0/24 maxlen: 24
155.2.176.0/24 maxlen: 24
155.2.177.0/24 maxlen: 24
155.2.178.0/24 maxlen: 24
155.2.179.0/24 maxlen: 24
155.2.182.0/24 maxlen: 24
155.2.183.0/24 maxlen: 24
155.2.184.0/24 maxlen: 24
155.2.185.0/24 maxlen: 24
155.2.186.0/24 maxlen: 24
155.2.187.0/24 maxlen: 24
155.2.188.0/24 maxlen: 24
155.2.194.0/24 maxlen: 24
155.2.195.0/24 maxlen: 24
155.2.212.0/24 maxlen: 24
155.2.215.0/24 maxlen: 24
155.2.216.0/24 maxlen: 24
155.2.217.0/24 maxlen: 24
155.2.221.0/24 maxlen: 24
155.2.222.0/24 maxlen: 24
167.160.16.0/24 maxlen: 24
167.160.17.0/24 maxlen: 24
167.160.29.0/24 maxlen: 24
170.62.89.0/24 maxlen: 24
170.62.90.0/24 maxlen: 24
170.62.91.0/24 maxlen: 24
170.62.92.0/24 maxlen: 24
170.62.93.0/24 maxlen: 24
170.62.94.0/24 maxlen: 24
170.62.95.0/24 maxlen: 24
170.62.100.0/24 maxlen: 24
170.62.102.0/24 maxlen: 24
170.62.103.0/24 maxlen: 24
170.62.106.0/24 maxlen: 24
170.62.107.0/24 maxlen: 24
170.62.108.0/24 maxlen: 24
170.62.110.0/24 maxlen: 24
170.62.111.0/24 maxlen: 24
170.62.160.0/24 maxlen: 24
170.62.224.0/24 maxlen: 24
170.62.225.0/24 maxlen: 24
170.62.226.0/24 maxlen: 24
170.62.227.0/24 maxlen: 24
170.62.228.0/24 maxlen: 24
170.62.229.0/24 maxlen: 24
170.62.230.0/24 maxlen: 24
170.62.231.0/24 maxlen: 24
170.62.232.0/24 maxlen: 24
170.62.233.0/24 maxlen: 24
170.62.234.0/24 maxlen: 24
170.62.235.0/24 maxlen: 24
170.62.236.0/24 maxlen: 24
185.34.108.0/24 maxlen: 24
185.34.109.0/24 maxlen: 24
185.34.110.0/24 maxlen: 24
185.34.111.0/24 maxlen: 24
192.253.208.0/24 maxlen: 24
198.55.28.0/24 maxlen: 24
198.55.29.0/24 maxlen: 24
203.188.164.0/24 maxlen: 24
203.188.167.0/24 maxlen: 24
203.188.169.0/24 maxlen: 24
203.188.170.0/24 maxlen: 24
203.188.171.0/24 maxlen: 24
203.188.172.0/24 maxlen: 24
203.188.173.0/24 maxlen: 24
212.32.74.0/24 maxlen: 24
212.56.48.0/24 maxlen: 24
212.56.49.0/24 maxlen: 24
212.56.50.0/24 maxlen: 24
212.56.51.0/24 maxlen: 24
212.78.245.0/24 maxlen: 24
212.78.246.0/24 maxlen: 24
212.78.247.0/24 maxlen: 24
212.78.248.0/24 maxlen: 24
212.78.249.0/24 maxlen: 24
212.78.250.0/24 maxlen: 24
212.78.251.0/24 maxlen: 24
213.254.174.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 02 Apr 2025 06:45:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:dc:b9:0d:f5:84:20:ab:dc:9d:35:64:54:05:ad:29:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f04a58047f37bbc057944bbf8cad8742879592da
Validity
Not Before: Mar 28 12:27:50 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4a3395298636c67e7f28372fbbebf4df27e5ae28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:80:e0:d4:b9:bc:2a:70:01:80:de:d7:bf:46:
55:ef:46:c5:d3:70:f4:55:3e:cf:98:fd:7f:4a:b7:
89:b4:d4:31:f2:6b:cc:3e:50:12:d0:3d:bf:40:d4:
fe:0a:a3:7d:db:95:42:75:83:59:3b:ab:ac:ac:d9:
ba:3e:ae:e3:6e:a4:90:95:17:03:90:75:0b:5e:78:
e1:1f:50:d3:fe:2c:b1:b6:06:b8:d1:52:ef:cf:ac:
68:1b:f4:57:0c:81:2b:ae:16:1c:48:37:e5:c9:04:
66:11:66:27:47:2d:8a:5f:cf:f4:d1:68:de:80:27:
b2:52:22:8f:3a:44:ec:02:b5:f9:da:57:4e:d7:fb:
35:57:36:0a:c3:34:97:62:2b:db:6b:ff:c1:0d:93:
39:d3:c2:af:83:e6:19:1c:f5:96:8f:dd:4c:c4:cd:
59:f9:a7:d2:65:7b:93:11:f6:aa:3d:49:3b:e8:98:
74:d4:23:4b:df:26:60:d6:b0:97:96:0d:b3:53:c5:
b6:01:33:2e:9a:9f:3d:15:5c:c3:f6:4a:7b:5a:e6:
8e:1d:6c:31:81:78:e0:13:3b:4c:d0:14:75:5a:ab:
e5:f1:e5:25:d3:d7:27:74:7c:d7:99:71:b2:48:2b:
e6:33:db:65:8c:17:a5:04:71:a2:10:85:db:80:be:
60:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:33:95:29:86:36:C6:7E:7F:28:37:2F:BB:EB:F4:DF:27:E5:AE:28
X509v3 Authority Key Identifier:
keyid:F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/SjOVKYY2xn5_KDcvu-v03yflrig.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
14.102.52.0/24
14.102.54.0/23
14.102.63.0/24
14.102.85.0/24
14.102.87.0/24
31.222.216.0/22
62.169.129.0/24
62.169.131.0-62.169.135.255
66.56.80.0-66.56.82.255
66.56.84.0-66.56.86.255
84.51.234.0/23
92.51.232.0/23
92.51.238.0/23
92.51.248.0-92.51.254.255
103.61.197.0-103.61.199.255
103.125.77.0-103.125.79.255
103.210.198.0/23
103.213.212.0/22
103.255.76.0/23
155.2.176.0/22
155.2.182.0-155.2.188.255
155.2.194.0/23
155.2.212.0/24
155.2.215.0-155.2.217.255
155.2.221.0-155.2.222.255
167.160.16.0/23
167.160.29.0/24
170.62.89.0-170.62.95.255
170.62.100.0/24
170.62.102.0/23
170.62.106.0-170.62.108.255
170.62.110.0/23
170.62.160.0/24
170.62.224.0-170.62.236.255
185.34.108.0/22
192.253.208.0/24
198.55.28.0/23
203.188.164.0/24
203.188.167.0/24
203.188.169.0-203.188.173.255
212.32.74.0/24
212.56.48.0/22
212.78.245.0-212.78.251.255
213.254.174.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:5f:32:9b:c0:bf:84:db:60:0f:19:0a:13:f0:9b:4a:3f:c5:
b3:cf:d5:74:4f:ac:ef:96:0e:cc:47:2c:ba:96:e0:56:f4:9b:
cc:02:aa:45:60:d3:60:16:e3:16:d3:2f:43:b5:17:72:0a:88:
17:1e:32:48:bd:24:02:e5:9c:17:be:bc:01:1a:4e:7d:2c:fd:
af:d7:fa:21:d4:49:52:06:86:e6:19:66:bc:4c:f1:ef:b2:f7:
8c:29:08:c4:72:78:68:12:e4:af:29:64:ea:0a:3d:1f:4a:2c:
b3:51:b0:a4:a5:67:d3:10:78:f2:ae:5a:09:57:45:61:25:10:
21:b3:fb:54:b7:4d:dc:e1:f5:30:ad:48:f0:40:c3:5d:0b:0b:
6f:2a:f5:54:fd:3e:5f:21:0d:69:03:4a:69:e1:4e:26:27:38:
28:16:36:ed:49:24:ca:fe:3c:39:db:03:48:c8:04:87:aa:57:
37:8b:c9:36:39:dd:32:db:97:93:73:13:c1:5c:8f:b2:89:ec:
0f:9a:fe:96:fe:96:1e:e9:0a:0f:ab:c0:19:7a:2d:61:47:85:
01:2a:83:50:da:b7:64:70:57:45:6f:90:fb:d4:12:90:5f:ec:
d7:7b:95:2e:29:22:c4:6e:73:f0:22:03:8e:97:d8:86:0c:60:
52:8f:31:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 22:47:48 2025 by rpki-client