Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/6b662d-02a1-46e7-b9cd-035d977f4216/1/ErPWQJ7xwPHZRnKBAreglY81yhY.roa
File: ErPWQJ7xwPHZRnKBAreglY81yhY.roa (raw, json)
Hash identifier: Yv+X/YSEsEmRD1pNydrsSx+MjlhOjdSPVmGU8h7SGOg=
Subject key identifier: 12:B3:D6:40:9E:F1:C0:F1:D9:46:72:81:02:B7:A0:95:8F:35:CA:16
Certificate issuer: /CN=7e20b034e2c497b1884488def106972704765029
Certificate serial: 0196FC4B99338201E07BC3821F73BCF528FB
Authority key identifier: 7E:20:B0:34:E2:C4:97:B1:88:44:88:DE:F1:06:97:27:04:76:50:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fiCwNOLEl7GIRIje8QaXJwR2UCk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/6b662d-02a1-46e7-b9cd-035d977f4216/1/ErPWQJ7xwPHZRnKBAreglY81yhY.roa
Signing time: Fri 23 May 2025 08:38:54 +0000
ROA not before: Fri 23 May 2025 08:38:54 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 9009
IP address blocks: 79.121.188.0/23 maxlen: 24
79.121.194.0/23 maxlen: 24
79.121.208.0/23 maxlen: 24
79.121.222.0/23 maxlen: 24
93.152.0.0/23 maxlen: 24
93.152.10.0/23 maxlen: 24
93.152.12.0/22 maxlen: 24
93.152.48.0/22 maxlen: 24
93.152.64.0/22 maxlen: 24
93.152.116.0/22 maxlen: 24
94.185.130.0/23 maxlen: 24
94.185.132.0/23 maxlen: 24
94.185.136.0/23 maxlen: 24
94.185.142.0/23 maxlen: 24
94.185.148.0/23 maxlen: 24
94.185.152.0/22 maxlen: 24
94.185.152.0/23 maxlen: 24
94.185.154.0/23 maxlen: 24
94.185.168.0/22 maxlen: 24
94.185.168.0/23 maxlen: 24
94.185.170.0/23 maxlen: 24
94.185.172.0/23 maxlen: 24
94.185.180.0/23 maxlen: 24
94.185.186.0/23 maxlen: 24
94.185.192.0/22 maxlen: 24
94.185.192.0/23 maxlen: 24
94.185.194.0/23 maxlen: 24
94.185.196.0/23 maxlen: 24
94.185.200.0/22 maxlen: 24
94.185.200.0/23 maxlen: 24
94.185.202.0/23 maxlen: 24
94.185.204.0/23 maxlen: 24
94.185.214.0/23 maxlen: 24
94.185.216.0/23 maxlen: 24
94.185.220.0/22 maxlen: 24
94.185.220.0/23 maxlen: 24
94.185.222.0/23 maxlen: 24
94.185.230.0/23 maxlen: 24
94.185.232.0/23 maxlen: 24
109.174.128.0/22 maxlen: 24
109.174.128.0/23 maxlen: 24
109.174.130.0/23 maxlen: 24
109.174.134.0/23 maxlen: 24
109.174.140.0/22 maxlen: 24
109.174.140.0/23 maxlen: 24
109.174.142.0/23 maxlen: 24
109.174.160.0/22 maxlen: 24
109.174.160.0/23 maxlen: 24
109.174.162.0/23 maxlen: 24
109.204.0.0/22 maxlen: 24
109.204.16.0/22 maxlen: 24
109.204.24.0/22 maxlen: 24
109.204.96.0/22 maxlen: 24
109.204.124.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 02 Jun 2025 09:09:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:fc:4b:99:33:82:01:e0:7b:c3:82:1f:73:bc:f5:28:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7e20b034e2c497b1884488def106972704765029
Validity
Not Before: May 23 08:38:54 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=12b3d6409ef1c0f1d946728102b7a0958f35ca16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:0f:a0:ef:eb:c2:d7:bb:d3:94:7e:32:2f:be:
f0:a0:7d:ab:6a:9f:02:0c:27:7f:16:a2:22:2f:56:
74:07:30:95:69:f4:bd:40:48:6e:50:13:10:de:8a:
6c:ee:59:7a:fd:31:14:0e:6e:7a:67:78:a5:17:5e:
9e:26:e2:80:71:62:2d:9b:21:0c:d4:84:43:bf:dd:
89:24:e0:04:d5:f8:ed:e7:8f:dd:2f:8a:04:97:7f:
ed:03:69:ba:d8:cd:b3:bd:27:e9:c1:3b:d7:f1:78:
c3:5a:10:24:38:69:c3:b8:b7:a7:df:63:a3:31:53:
5d:95:29:1f:e0:11:db:4c:fc:3c:2e:1c:ce:7f:a6:
c1:10:14:f6:47:20:ad:06:12:2b:9f:d0:a0:ee:93:
fd:d8:e2:f0:eb:7d:fc:f5:55:fe:2a:97:ed:23:89:
8a:17:56:a3:1f:7a:bf:d0:13:8b:94:7d:70:49:46:
b9:67:5f:4f:6b:de:93:44:55:d0:73:09:e9:7a:d7:
75:03:54:14:60:1d:cc:6b:7d:05:85:42:45:20:63:
b6:06:37:34:6a:40:74:a8:f4:11:18:70:7d:b9:b9:
7b:a4:b1:1a:e2:92:66:a2:de:f5:c9:43:da:19:d7:
61:fc:2b:84:90:58:fb:5e:ea:af:cd:16:7f:f1:10:
ce:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:B3:D6:40:9E:F1:C0:F1:D9:46:72:81:02:B7:A0:95:8F:35:CA:16
X509v3 Authority Key Identifier:
keyid:7E:20:B0:34:E2:C4:97:B1:88:44:88:DE:F1:06:97:27:04:76:50:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fiCwNOLEl7GIRIje8QaXJwR2UCk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/6b662d-02a1-46e7-b9cd-035d977f4216/1/ErPWQJ7xwPHZRnKBAreglY81yhY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/6b662d-02a1-46e7-b9cd-035d977f4216/1/fiCwNOLEl7GIRIje8QaXJwR2UCk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.121.188.0/23
79.121.194.0/23
79.121.208.0/23
79.121.222.0/23
93.152.0.0/23
93.152.10.0-93.152.15.255
93.152.48.0/22
93.152.64.0/22
93.152.116.0/22
94.185.130.0-94.185.133.255
94.185.136.0/23
94.185.142.0/23
94.185.148.0/23
94.185.152.0/22
94.185.168.0-94.185.173.255
94.185.180.0/23
94.185.186.0/23
94.185.192.0-94.185.197.255
94.185.200.0-94.185.205.255
94.185.214.0-94.185.217.255
94.185.220.0/22
94.185.230.0-94.185.233.255
109.174.128.0/22
109.174.134.0/23
109.174.140.0/22
109.174.160.0/22
109.204.0.0/22
109.204.16.0/22
109.204.24.0/22
109.204.96.0/22
109.204.124.0/23
Signature Algorithm: sha256WithRSAEncryption
39:7b:0f:e4:2b:fc:df:85:a7:89:c0:f9:22:05:dc:cf:e1:ad:
b5:62:c7:4a:7c:24:74:57:eb:fc:18:e9:2d:8d:2f:2d:9a:ee:
13:4e:95:fd:18:ac:a2:dd:85:a2:6b:13:0c:0d:9f:cb:e1:b7:
76:f9:31:86:c9:8e:bf:93:bb:d3:e5:c3:04:b3:c9:6c:6b:57:
d4:46:98:84:8d:73:d7:11:ab:07:33:c8:ff:67:7f:4c:48:6e:
9b:f7:c4:d5:df:ec:fe:8e:f1:35:0f:1e:2d:8e:61:9a:1c:ab:
5c:1b:a4:8f:ae:b5:d0:c9:79:9a:3c:9a:fc:f4:2c:76:72:23:
83:b1:e9:a9:b1:79:2b:bf:a8:4d:8e:c3:08:87:ef:f7:21:74:
41:2d:a3:1e:0a:dd:ca:8a:59:9e:5e:fd:b0:89:20:1b:ba:fd:
75:2d:2c:f0:b5:b8:4d:56:0e:84:25:34:f2:ca:8d:c7:77:6a:
93:40:83:85:16:2c:53:71:f6:56:5e:51:99:4e:5e:69:b6:b4:
b7:8b:48:f5:b9:f0:92:6d:86:d1:aa:b0:5c:e4:3f:40:2b:75:
a7:81:4a:83:cc:f3:13:ed:9c:f7:f6:80:89:64:e2:81:f1:60:
3e:75:be:12:c7:87:78:ce:43:d9:9d:19:d1:d4:c3:b5:ba:ed:
22:23:e4:6c
-----BEGIN CERTIFICATE-----
MIIF7zCCBNegAwIBAgISAZb8S5kzggHge8OCH3O89Sj7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdlMjBiMDM0ZTJjNDk3YjE4ODQ0ODhkZWYxMDY5NzI3MDQ3
NjUwMjkwHhcNMjUwNTIzMDgzODU0WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMmIzZDY0MDllZjFjMGYxZDk0NjcyODEwMmI3YTA5NThmMzVjYTE2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzQ+g7+vC17vTlH4yL77woH2rap8C
DCd/FqIiL1Z0BzCVafS9QEhuUBMQ3ops7ll6/TEUDm56Z3ilF16eJuKAcWItmyEM
1IRDv92JJOAE1fjt54/dL4oEl3/tA2m62M2zvSfpwTvX8XjDWhAkOGnDuLen32Oj
MVNdlSkf4BHbTPw8LhzOf6bBEBT2RyCtBhIrn9Cg7pP92OLw63389VX+KpftI4mK
F1ajH3q/0BOLlH1wSUa5Z19Pa96TRFXQcwnpetd1A1QUYB3Ma30FhUJFIGO2Bjc0
akB0qPQRGHB9ubl7pLEa4pJmot71yUPaGddh/CuEkFj7XuqvzRZ/8RDOvQIDAQAB
o4IC+zCCAvcwHQYDVR0OBBYEFBKz1kCe8cDx2UZygQK3oJWPNcoWMB8GA1UdIwQY
MBaAFH4gsDTixJexiESI3vEGlycEdlApMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZmlDd05PTEVsN0dJUklqZThRYVhKd1IyVUNrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MC82YjY2MmQtMDJhMS00NmU3LWI5Y2Qt
MDM1ZDk3N2Y0MjE2LzEvRXJQV1FKN3h3UEhaUm5LQkFyZWdsWTgxeWhZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MC82YjY2MmQtMDJhMS00NmU3LWI5Y2QtMDM1ZDk3N2Y0MjE2
LzEvZmlDd05PTEVsN0dJUklqZThRYVhKd1IyVUNrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBDwYIKwYBBQUHAQcBAf8Egf8wgfwwgfkEAgABMIHyAwQB
T3m8AwQBT3nCAwQBT3nQAwQBT3neAwQBXZgAMAwDBAFdmAoDBARdmAADBAJdmDAD
BAJdmEADBAJdmHQwDAMEAV65ggMEAV65hAMEAV65iAMEAV65jgMEAV65lAMEAl65
mDAMAwQDXrmoAwQBXrmsAwQBXrm0AwQBXrm6MAwDBAZeucADBAFeucQwDAMEA165
yAMEAV65zDAMAwQBXrnWAwQBXrnYAwQCXrncMAwDBAFeueYDBAFeuegDBAJtroAD
BAFtroYDBAJtrowDBAJtrqADBAJtzAADBAJtzBADBAJtzBgDBAJtzGADBAFtzHww
DQYJKoZIhvcNAQELBQADggEBADl7D+Qr/N+Fp4nA+SIF3M/hrbVix0p8JHRX6/wY
6S2NLy2a7hNOlf0YrKLdhaJrEwwNn8vht3b5MYbJjr+Tu9PlwwSzyWxrV9RGmISN
c9cRqwczyP9nf0xIbpv3xNXf7P6O8TUPHi2OYZocq1wbpI+utdDJeZo8mvz0LHZy
I4Ox6amxeSu/qE2OwwiH7/chdEEtox4K3cqKWZ5e/bCJIBu6/XUtLPC1uE1WDoQl
NPLKjcd3apNAg4UWLFNx9lZeUZlOXmm2tLeLSPW58JJthtGqsFzkP0ArdaeBSoPM
8xPtnPf2gIlk4oHxYD51vhLHh3jOQ9mdGdHUw7W67SIj5Gw=
-----END CERTIFICATE-----
Generated at Tue Jun 3 10:22:21 2025 by rpki-client