Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/dMvAZzrePAk0Ns1LJEt7puHFA7Q.roa
File: dMvAZzrePAk0Ns1LJEt7puHFA7Q.roa (raw, json)
Hash identifier: as6Rbwz3NPUrsZRltOhn6u/1TrkWB9pNkp7y2/C6R0s=
Subject key identifier: 74:CB:C0:67:3A:DE:3C:09:34:36:CD:4B:24:4B:7B:A6:E1:C5:03:B4
Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0
Certificate serial: 019E3FE6EA6D2AC6BF978978E9CB51A48D18
Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/dMvAZzrePAk0Ns1LJEt7puHFA7Q.roa
Signing time: Tue 19 May 2026 11:02:38 +0000
ROA not before: Tue 19 May 2026 11:02:38 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 6079
IP address blocks: 37.202.206.0/24 maxlen: 24
151.241.232.0/23 maxlen: 24
151.242.49.0/24 maxlen: 24
151.243.64.0/20 maxlen: 24
151.243.97.0/24 maxlen: 24
151.243.106.0/24 maxlen: 24
151.244.174.0/24 maxlen: 24
151.244.175.0/24 maxlen: 24
151.244.176.0/24 maxlen: 24
151.244.177.0/24 maxlen: 24
151.245.18.0/24 maxlen: 24
151.245.144.0/24 maxlen: 24
151.245.174.0/24 maxlen: 24
151.245.222.0/23 maxlen: 24
151.247.18.0/24 maxlen: 24
151.247.20.0/24 maxlen: 24
151.247.226.0/24 maxlen: 24
151.247.232.0/24 maxlen: 24
151.247.233.0/24 maxlen: 24
151.247.239.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 26 May 2026 14:07:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:3f:e6:ea:6d:2a:c6:bf:97:89:78:e9:cb:51:a4:8d:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0
Validity
Not Before: May 19 11:02:38 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=74cbc0673ade3c093436cd4b244b7ba6e1c503b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:64:68:cf:b6:41:54:30:05:09:90:ba:f7:a1:
53:d6:db:6a:77:5d:b6:16:28:b0:4d:c4:53:9f:74:
b2:80:70:34:a8:b6:6e:40:b7:4f:d0:f7:fc:37:7f:
5a:71:50:e3:3f:80:e6:e5:bc:37:62:59:5d:26:74:
76:07:0f:9f:85:e6:c3:00:70:0f:31:37:38:e1:dc:
df:b6:12:ba:4a:73:39:7e:48:1f:17:36:dd:cd:99:
b8:53:d9:27:a1:47:38:cf:8b:38:e2:5c:5e:e6:b1:
b1:53:39:f2:05:0b:1d:3f:32:b1:f4:96:bd:40:07:
06:69:f4:e0:c3:31:6d:c0:61:b7:12:4e:c9:4d:69:
68:b3:7f:db:29:f4:fa:a6:2f:dd:5d:c4:26:07:76:
11:00:fc:c2:90:a9:b9:54:e3:2d:70:44:bc:81:f2:
ab:14:02:90:69:9b:e0:4c:50:8a:f8:aa:d5:20:3a:
6f:4e:f7:df:44:d3:7b:f9:49:b3:87:67:64:c4:6c:
cd:b2:85:15:d7:d5:ff:cb:9c:50:9d:fb:49:bf:e0:
35:dd:60:4e:fd:55:fb:5c:b8:20:52:a2:33:d8:48:
d8:6a:31:7b:a9:48:b2:c1:df:d8:8e:30:de:04:5c:
c3:55:34:fe:38:ca:b1:99:d2:08:ff:41:77:0b:7d:
1c:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:CB:C0:67:3A:DE:3C:09:34:36:CD:4B:24:4B:7B:A6:E1:C5:03:B4
X509v3 Authority Key Identifier:
keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/dMvAZzrePAk0Ns1LJEt7puHFA7Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.202.206.0/24
151.241.232.0/23
151.242.49.0/24
151.243.64.0/20
151.243.97.0/24
151.243.106.0/24
151.244.174.0-151.244.177.255
151.245.18.0/24
151.245.144.0/24
151.245.174.0/24
151.245.222.0/23
151.247.18.0/24
151.247.20.0/24
151.247.226.0/24
151.247.232.0/23
151.247.239.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:e8:b0:64:76:b4:9c:6b:32:1b:39:7b:aa:e2:38:d6:ab:e4:
b4:d3:31:3a:c2:4d:ba:38:a5:e2:2e:0d:1a:cf:44:6a:76:5d:
d6:14:a4:25:a9:46:0d:59:60:15:1f:e8:6b:86:bd:c3:c0:47:
7f:ff:82:f0:d6:b9:ef:24:80:4f:5b:44:b7:04:03:12:be:3b:
59:3f:76:87:e4:7b:be:7d:34:3b:67:b0:41:49:4f:d0:37:a0:
31:86:22:58:0a:8f:10:e7:9b:ec:cc:2a:e3:0d:fa:2e:71:b8:
be:3c:54:12:17:a0:0e:dd:20:2a:4c:c8:07:9f:d5:f4:8d:ae:
f7:64:37:d5:38:28:57:1d:bb:eb:76:68:6a:50:02:2b:1d:c7:
93:40:66:94:c0:86:7d:62:43:88:6c:18:77:2f:c1:86:d4:f6:
4b:47:1a:cc:57:bb:22:ba:87:7f:c2:c2:24:64:66:3c:eb:37:
df:fe:c4:01:4b:a8:7e:37:e1:77:1c:d9:d6:d0:1a:6c:1f:92:
cf:7c:60:a0:ca:e7:60:f4:e2:89:15:fe:37:25:46:1c:bf:0a:
0b:ab:2a:46:d8:30:7d:44:74:64:46:a0:7d:fd:20:11:9f:40:
33:80:f7:70:82:55:69:6d:49:e2:47:a6:7b:88:ef:c0:11:95:
5d:34:0e:7a
-----BEGIN CERTIFICATE-----
MIIFYDCCBEigAwIBAgISAZ4/5uptKsa/l4l46ctRpI0YMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM2NjI2NmY0NjZmYjI0OThhMzk0NTliMzM1MmRhMjUxNTFh
NWE0YzAwHhcNMjYwNTE5MTEwMjM4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NGNiYzA2NzNhZGUzYzA5MzQzNmNkNGIyNDRiN2JhNmUxYzUwM2I0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyGRoz7ZBVDAFCZC696FT1ttqd122
FiiwTcRTn3SygHA0qLZuQLdP0Pf8N39acVDjP4Dm5bw3YlldJnR2Bw+fhebDAHAP
MTc44dzfthK6SnM5fkgfFzbdzZm4U9knoUc4z4s44lxe5rGxUznyBQsdPzKx9Ja9
QAcGafTgwzFtwGG3Ek7JTWlos3/bKfT6pi/dXcQmB3YRAPzCkKm5VOMtcES8gfKr
FAKQaZvgTFCK+KrVIDpvTvffRNN7+Umzh2dkxGzNsoUV19X/y5xQnftJv+A13WBO
/VX7XLggUqIz2EjYajF7qUiywd/YjjDeBFzDVTT+OMqxmdII/0F3C30c+wIDAQAB
o4ICbDCCAmgwHQYDVR0OBBYEFHTLwGc63jwJNDbNSyRLe6bhxQO0MB8GA1UdIwQY
MBaAFMZiZvRm+ySYo5RZszUtolFRpaTAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveG1KbTlHYjdKSmlqbEZtek5TMmlVVkdscE1BLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS9mNDNiMWQtOWU1MC00NTUxLWFlNmEt
MTdiOWRlMTQxMjUyLzEvZE12QVp6cmVQQWswTnMxTEpFdDdwdUhGQTdRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS9mNDNiMWQtOWU1MC00NTUxLWFlNmEtMTdiOWRlMTQxMjUy
LzEveG1KbTlHYjdKSmlqbEZtek5TMmlVVkdscE1BLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGBBggrBgEFBQcBBwEB/wRyMHAwbgQCAAEwaAMEACXKzgME
AZfx6AMEAJfyMQMEBJfzQAMEAJfzYQMEAJfzajAMAwQBl/SuAwQBl/SwAwQAl/US
AwQAl/WQAwQAl/WuAwQBl/XeAwQAl/cSAwQAl/cUAwQAl/fiAwQBl/foAwQAl/fv
MA0GCSqGSIb3DQEBCwUAA4IBAQAO6LBkdrScazIbOXuq4jjWq+S00zE6wk26OKXi
Lg0az0Rqdl3WFKQlqUYNWWAVH+hrhr3DwEd//4Lw1rnvJIBPW0S3BAMSvjtZP3aH
5Hu+fTQ7Z7BBSU/QN6AxhiJYCo8Q55vszCrjDfoucbi+PFQSF6AO3SAqTMgHn9X0
ja73ZDfVOChXHbvrdmhqUAIrHceTQGaUwIZ9YkOIbBh3L8GG1PZLRxrMV7siuod/
wsIkZGY86zff/sQBS6h+N+F3HNnW0BpsH5LPfGCgyudg9OKJFf43JUYcvwoLqypG
2DB9RHRkRqB9/SARn0AzgPdwglVpbUniR6Z7iO/AEZVdNA56
-----END CERTIFICATE-----
Generated at Sun May 31 06:53:34 2026 by rpki-client