Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/wWG59ODsI-QT0l7XESGFNaROzx4.roa
File: wWG59ODsI-QT0l7XESGFNaROzx4.roa (raw, json)
Hash identifier: BLd2sSPEpLZSzrGez8dq04D11O6J7QyFxXAKbrzoc58=
Subject key identifier: C1:61:B9:F4:E0:EC:23:E4:13:D2:5E:D7:11:21:85:35:A4:4E:CF:1E
Certificate issuer: /CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Certificate serial: 019740DA9C17928F90B6BDB8E5888F6392E4
Authority key identifier: 3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/wWG59ODsI-QT0l7XESGFNaROzx4.roa
Signing time: Thu 05 Jun 2025 16:09:18 +0000
ROA not before: Thu 05 Jun 2025 16:09:18 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 834
IP address blocks: 81.5.189.0/24 maxlen: 24
82.152.8.0/24 maxlen: 24
82.152.176.0/23 maxlen: 23
82.153.69.0/24 maxlen: 24
82.153.136.0/22 maxlen: 22
82.153.217.0/24 maxlen: 24
82.153.231.0/24 maxlen: 24
82.153.255.0/24 maxlen: 24
89.213.44.0/23 maxlen: 24
89.213.50.0/23 maxlen: 23
89.213.52.0/22 maxlen: 22
89.213.56.0/22 maxlen: 22
89.213.129.0/24 maxlen: 24
89.213.132.0/24 maxlen: 24
89.213.139.0/24 maxlen: 24
89.213.143.0/24 maxlen: 24
89.213.145.0/24 maxlen: 24
89.213.146.0/24 maxlen: 24
89.213.148.0/22 maxlen: 24
89.213.152.0/22 maxlen: 24
89.213.152.0/24 maxlen: 24
89.213.154.0/24 maxlen: 24
89.213.155.0/24 maxlen: 24
89.213.156.0/22 maxlen: 24
89.213.159.0/24 maxlen: 24
89.213.162.0/24 maxlen: 24
89.213.164.0/24 maxlen: 24
89.213.167.0/24 maxlen: 24
89.213.169.0/24 maxlen: 24
89.213.172.0/22 maxlen: 24
89.213.176.0/24 maxlen: 24
89.213.181.0/24 maxlen: 24
89.213.183.0/24 maxlen: 24
89.213.191.0/24 maxlen: 24
89.213.196.0/22 maxlen: 24
89.213.200.0/22 maxlen: 24
89.213.204.0/22 maxlen: 24
89.213.228.0/22 maxlen: 22
89.213.228.0/23 maxlen: 24
89.213.232.0/22 maxlen: 24
89.213.236.0/22 maxlen: 24
109.176.16.0/21 maxlen: 24
109.176.20.0/24 maxlen: 24
109.176.204.0/22 maxlen: 24
109.176.242.0/23 maxlen: 24
185.49.126.0/23 maxlen: 24
185.101.47.0/24 maxlen: 24
194.105.76.0/22 maxlen: 24
194.105.80.0/20 maxlen: 20
194.105.90.0/23 maxlen: 24
212.38.79.0/24 maxlen: 24
212.38.81.0/24 maxlen: 24
212.38.88.0/23 maxlen: 24
213.130.132.0/22 maxlen: 22
213.130.154.0/24 maxlen: 24
213.152.43.0/24 maxlen: 24
213.210.52.0/22 maxlen: 22
213.218.211.0/24 maxlen: 24
213.218.244.0/22 maxlen: 22
217.145.65.0/24 maxlen: 24
217.145.66.0/24 maxlen: 24
217.145.72.0/21 maxlen: 24
Validation: Failed, certificate revoked on Sat 07 Jun 2025 19:19:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:40:da:9c:17:92:8f:90:b6:bd:b8:e5:88:8f:63:92:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Validity
Not Before: Jun 5 16:09:18 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c161b9f4e0ec23e413d25ed711218535a44ecf1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:0d:23:7d:50:0e:b4:f1:c5:00:4c:5e:16:7f:
8b:a4:64:e4:83:86:32:b4:44:d8:02:c9:a0:73:96:
86:31:8e:b5:14:1a:ef:e4:07:43:82:2a:45:15:da:
c3:62:56:61:38:e8:8f:07:d1:49:2f:9a:4b:05:27:
e5:30:01:78:77:7b:3f:ed:c9:c5:b4:61:40:cf:cb:
49:8a:fa:e1:95:43:30:1a:33:23:ef:de:5a:14:83:
c2:85:34:7b:da:00:38:cb:50:08:20:1b:5f:d7:aa:
52:36:b2:b3:1a:32:15:95:1e:6c:84:31:f1:16:6d:
dd:eb:b3:b6:3c:22:d1:4e:4c:bf:ac:8b:a0:6d:f0:
c5:45:93:98:1b:99:9d:29:cf:90:c7:5e:14:43:1d:
bb:cc:9a:0c:95:4d:94:70:f9:31:2a:9d:e7:5f:a0:
bd:96:bc:9a:56:a1:0a:0d:e1:ba:d3:09:0f:90:a4:
ed:a6:e8:17:2e:a2:aa:1b:e2:db:08:d7:dd:c5:53:
f7:61:3e:87:17:4b:bf:f1:0c:51:7d:96:71:ad:20:
80:fa:5e:1f:25:fe:92:61:e5:9c:44:5b:7d:b8:2e:
23:6d:cb:ca:b8:67:40:cc:cf:d6:84:71:ed:95:6f:
f4:77:e8:bd:a9:84:a8:d1:1a:80:42:8f:fd:00:09:
bc:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:61:B9:F4:E0:EC:23:E4:13:D2:5E:D7:11:21:85:35:A4:4E:CF:1E
X509v3 Authority Key Identifier:
keyid:3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/wWG59ODsI-QT0l7XESGFNaROzx4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/P9MNin4S_Hv2LgwSHnzCJt6lO5s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.5.189.0/24
82.152.8.0/24
82.152.176.0/23
82.153.69.0/24
82.153.136.0/22
82.153.217.0/24
82.153.231.0/24
82.153.255.0/24
89.213.44.0/23
89.213.50.0-89.213.59.255
89.213.129.0/24
89.213.132.0/24
89.213.139.0/24
89.213.143.0/24
89.213.145.0-89.213.146.255
89.213.148.0-89.213.159.255
89.213.162.0/24
89.213.164.0/24
89.213.167.0/24
89.213.169.0/24
89.213.172.0-89.213.176.255
89.213.181.0/24
89.213.183.0/24
89.213.191.0/24
89.213.196.0-89.213.207.255
89.213.228.0-89.213.239.255
109.176.16.0/21
109.176.204.0/22
109.176.242.0/23
185.49.126.0/23
185.101.47.0/24
194.105.76.0-194.105.95.255
212.38.79.0/24
212.38.81.0/24
212.38.88.0/23
213.130.132.0/22
213.130.154.0/24
213.152.43.0/24
213.210.52.0/22
213.218.211.0/24
213.218.244.0/22
217.145.65.0-217.145.66.255
217.145.72.0/21
Signature Algorithm: sha256WithRSAEncryption
29:d6:c3:03:a4:81:25:34:d8:73:61:3d:33:73:d6:e2:55:12:
80:c5:51:c3:d3:7f:fb:01:52:d4:ba:32:1d:95:8b:e1:0b:80:
d6:52:99:fe:f5:da:9e:70:ab:56:8a:47:9b:fa:95:dc:09:95:
94:a3:61:a4:41:6c:52:e1:28:5c:55:6b:c8:c4:aa:50:1d:80:
79:03:42:07:a5:c8:fe:a5:0c:31:5c:df:ea:ed:15:68:4a:90:
b5:0f:5a:da:a9:8e:c8:9e:67:75:fa:f7:99:04:fe:a8:b2:ac:
0c:7a:01:ff:36:1a:88:5f:61:ce:c4:ec:f2:52:e8:22:81:99:
86:5f:a7:89:86:4d:e3:61:8e:ed:b3:ef:dc:b1:35:69:df:4d:
35:02:b5:b8:c0:86:e7:a7:09:f0:02:06:d5:13:2b:e1:01:8d:
ef:80:27:21:a6:77:ea:ed:ef:60:4b:e8:78:73:00:9d:b8:2a:
a2:9c:36:57:5d:3d:ad:69:b0:b4:fd:b0:0f:e4:2d:40:42:32:
49:33:ec:37:78:e2:79:6a:a4:ab:0f:cf:05:43:10:5f:c8:0d:
a4:4f:cf:c1:3a:12:4a:78:90:72:16:3d:b0:e2:7e:b8:74:d4:
80:c7:12:0e:b3:e8:24:d8:64:2f:87:18:94:41:4d:96:ba:ef:
7e:ac:b1:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 11:09:54 2025 by rpki-client