Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/8prMrVorNEpMgH071sSGi8HRRHU.roa
File: 8prMrVorNEpMgH071sSGi8HRRHU.roa (raw, json)
Hash identifier: RpZoLJXXZQeLfFiLjgWakII6aAoku2XAfOKheGVYyt8=
Subject key identifier: F2:9A:CC:AD:5A:2B:34:4A:4C:80:7D:3B:D6:C4:86:8B:C1:D1:44:75
Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0
Certificate serial: 019E97A6CC12AE0573A294B521F4D1D48294
Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/8prMrVorNEpMgH071sSGi8HRRHU.roa
Signing time: Fri 05 Jun 2026 11:59:11 +0000
ROA not before: Fri 05 Jun 2026 11:59:11 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 212238
IP address blocks: 37.202.201.0/24 maxlen: 24
151.240.45.0/24 maxlen: 24
151.241.30.0/24 maxlen: 24
151.241.39.0/24 maxlen: 24
151.241.50.0/24 maxlen: 24
151.241.64.0/24 maxlen: 24
151.241.67.0/24 maxlen: 24
151.241.70.0/24 maxlen: 24
151.241.71.0/24 maxlen: 24
151.241.73.0/24 maxlen: 24
151.241.77.0/24 maxlen: 24
151.241.95.0/24 maxlen: 24
151.241.115.0/24 maxlen: 24
151.241.160.0/24 maxlen: 24
151.241.161.0/24 maxlen: 24
151.241.176.0/24 maxlen: 24
151.241.204.0/24 maxlen: 24
151.242.45.0/24 maxlen: 24
151.242.158.0/24 maxlen: 24
151.243.2.0/24 maxlen: 24
151.243.105.0/24 maxlen: 24
151.243.137.0/24 maxlen: 24
151.243.147.0/24 maxlen: 24
151.244.5.0/24 maxlen: 24
151.244.57.0/24 maxlen: 24
151.244.111.0/24 maxlen: 24
151.244.114.0/24 maxlen: 24
151.244.115.0/24 maxlen: 24
151.244.131.0/24 maxlen: 24
151.244.191.0/24 maxlen: 24
151.244.193.0/24 maxlen: 24
151.244.212.0/24 maxlen: 24
151.245.3.0/24 maxlen: 24
151.245.28.0/24 maxlen: 24
151.245.76.0/24 maxlen: 24
151.245.78.0/24 maxlen: 24
151.245.104.0/24 maxlen: 24
151.245.142.0/24 maxlen: 24
151.245.195.0/24 maxlen: 24
151.245.212.0/24 maxlen: 24
151.247.120.0/23 maxlen: 24
151.247.122.0/23 maxlen: 24
151.247.124.0/23 maxlen: 24
151.247.126.0/23 maxlen: 24
151.247.188.0/24 maxlen: 24
151.247.221.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 07 Jun 2026 06:28:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:97:a6:cc:12:ae:05:73:a2:94:b5:21:f4:d1:d4:82:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0
Validity
Not Before: Jun 5 11:59:11 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=f29accad5a2b344a4c807d3bd6c4868bc1d14475
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:3c:3f:09:91:42:08:88:ad:6e:d6:94:0d:03:
d5:5f:ca:ac:ba:94:ef:68:dd:73:d0:36:fb:43:b0:
6d:9a:a0:6e:e5:5b:cc:50:ad:d2:ab:ea:54:31:bb:
3c:70:3d:f0:85:20:f9:44:c2:e1:0d:84:21:13:22:
fd:c5:90:2d:1e:b8:69:63:53:9b:75:96:b8:81:83:
fe:9f:f3:a1:ef:c9:e0:1c:54:80:42:fc:e9:e5:3a:
12:bc:03:69:17:57:82:47:be:0d:16:d2:e5:1f:56:
c1:31:3c:61:d2:7a:9a:8a:68:6e:0e:7c:3d:8e:0d:
ab:ea:2b:80:35:43:ff:d2:20:ce:44:7c:18:7d:69:
c3:c6:66:12:7c:1d:3f:8d:65:6f:3f:98:38:dc:87:
ec:cc:0b:50:0c:6d:a6:d7:41:00:9a:b7:41:fb:e2:
77:29:1e:bb:09:0c:ac:8b:3d:00:ca:ab:6f:d8:5a:
d8:90:13:27:fa:a8:84:71:77:a6:62:75:f3:0b:41:
54:a5:96:5d:10:ce:a9:56:22:a5:dc:19:50:1a:3e:
68:07:81:57:32:9f:03:d9:e6:8c:38:e3:7d:46:b7:
ff:c6:0a:81:9e:61:20:a2:15:19:2f:a3:ea:e5:af:
54:08:fa:99:fd:68:0e:3e:78:d5:bd:fc:4a:25:2f:
1e:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:9A:CC:AD:5A:2B:34:4A:4C:80:7D:3B:D6:C4:86:8B:C1:D1:44:75
X509v3 Authority Key Identifier:
keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/8prMrVorNEpMgH071sSGi8HRRHU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.202.201.0/24
151.240.45.0/24
151.241.30.0/24
151.241.39.0/24
151.241.50.0/24
151.241.64.0/24
151.241.67.0/24
151.241.70.0/23
151.241.73.0/24
151.241.77.0/24
151.241.95.0/24
151.241.115.0/24
151.241.160.0/23
151.241.176.0/24
151.241.204.0/24
151.242.45.0/24
151.242.158.0/24
151.243.2.0/24
151.243.105.0/24
151.243.137.0/24
151.243.147.0/24
151.244.5.0/24
151.244.57.0/24
151.244.111.0/24
151.244.114.0/23
151.244.131.0/24
151.244.191.0/24
151.244.193.0/24
151.244.212.0/24
151.245.3.0/24
151.245.28.0/24
151.245.76.0/24
151.245.78.0/24
151.245.104.0/24
151.245.142.0/24
151.245.195.0/24
151.245.212.0/24
151.247.120.0/21
151.247.188.0/24
151.247.221.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:1c:33:63:9a:32:9b:44:91:0c:c4:81:3c:fe:a2:db:ed:a5:
49:af:46:15:48:5b:9c:63:7e:40:9a:46:d9:36:66:3b:0d:fb:
86:a9:2a:a3:09:71:4b:d1:b8:4a:b2:9c:80:4a:27:b4:3d:ba:
af:9a:3c:9f:17:b5:47:c1:53:af:62:83:78:c7:4d:b0:5a:e7:
74:0a:dc:44:ed:d1:43:9a:10:81:db:e3:56:15:f0:7d:c9:84:
a6:ef:4d:4e:e7:27:53:ce:3a:0a:a6:ae:06:2f:4a:a3:57:58:
f0:36:4f:d3:38:ff:a8:62:aa:c1:3e:2d:7c:16:70:5d:3e:aa:
29:07:34:08:41:a1:54:eb:a1:b0:3c:62:98:28:d4:2f:cc:c0:
8b:27:f3:0b:1d:02:be:61:96:41:52:7b:e8:9f:e6:8d:31:c8:
e7:d1:45:7b:59:4e:f2:e5:b8:7f:23:ea:1b:d0:2e:0e:ae:8f:
75:2b:bc:63:13:52:9e:d8:e4:d5:1a:18:84:4a:b4:73:35:d2:
e4:92:9a:78:9c:8c:4a:00:7c:73:56:6c:d4:27:70:6e:06:5a:
e4:1c:7e:be:c4:11:6e:73:59:5d:af:49:62:32:d0:cf:8a:38:
1c:d4:b8:6a:53:35:1a:f1:e7:55:b9:eb:16:d6:ec:db:a3:7f:
4e:24:c8:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 24 01:26:19 2026 by rpki-client