Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/aXg9omYWImcghSKCHaT86inVq3E.roa
File: aXg9omYWImcghSKCHaT86inVq3E.roa (raw, json)
Hash identifier: dV5WDEIiIw/woVr3wCmpYwZQShxoDL9D4446G0TWmfQ=
Subject key identifier: 69:78:3D:A2:66:16:22:67:20:85:22:82:1D:A4:FC:EA:29:D5:AB:71
Certificate issuer: /CN=5588f197f97e8900755544e810cddef9d90fbc41
Certificate serial: 01970E4075E26069607F620FB21C2D000C4D
Authority key identifier: 55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/aXg9omYWImcghSKCHaT86inVq3E.roa
Signing time: Mon 26 May 2025 20:19:54 +0000
ROA not before: Mon 26 May 2025 20:19:54 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 7029
IP address blocks: 46.3.8.0/22 maxlen: 22
46.3.12.0/22 maxlen: 24
46.3.28.0/23 maxlen: 24
46.3.40.0/21 maxlen: 24
46.3.48.0/20 maxlen: 24
46.3.77.0/24 maxlen: 24
46.3.84.0/24 maxlen: 24
46.3.89.0/24 maxlen: 24
46.3.90.0/24 maxlen: 24
46.3.91.0/24 maxlen: 24
46.3.118.0/24 maxlen: 24
46.3.119.0/24 maxlen: 24
46.3.120.0/21 maxlen: 24
46.3.128.0/22 maxlen: 24
46.3.134.0/24 maxlen: 24
46.3.135.0/24 maxlen: 24
46.3.156.0/24 maxlen: 24
46.3.157.0/24 maxlen: 24
46.3.160.0/24 maxlen: 24
46.3.161.0/24 maxlen: 24
46.3.162.0/24 maxlen: 24
46.3.163.0/24 maxlen: 24
46.3.164.0/22 maxlen: 24
46.3.168.0/24 maxlen: 24
46.3.169.0/24 maxlen: 24
46.3.170.0/24 maxlen: 24
46.3.171.0/24 maxlen: 24
46.3.172.0/24 maxlen: 24
46.3.174.0/24 maxlen: 24
46.3.184.0/22 maxlen: 24
46.3.188.0/24 maxlen: 24
46.3.189.0/24 maxlen: 24
46.3.190.0/24 maxlen: 24
46.3.205.0/24 maxlen: 24
46.3.206.0/23 maxlen: 24
46.3.208.0/22 maxlen: 24
46.3.212.0/22 maxlen: 24
46.3.220.0/23 maxlen: 24
46.3.223.0/24 maxlen: 24
46.3.228.0/23 maxlen: 24
46.3.230.0/23 maxlen: 24
46.3.236.0/23 maxlen: 24
46.3.243.0/24 maxlen: 24
46.3.244.0/24 maxlen: 24
46.3.246.0/24 maxlen: 24
46.3.248.0/24 maxlen: 24
46.3.251.0/24 maxlen: 24
46.3.252.0/22 maxlen: 24
46.3.253.0/24 maxlen: 24
46.3.254.0/24 maxlen: 24
46.3.255.0/24 maxlen: 24
46.232.0.0/22 maxlen: 24
46.232.4.0/23 maxlen: 24
46.232.16.0/23 maxlen: 24
46.232.18.0/23 maxlen: 24
46.232.64.0/24 maxlen: 24
46.232.65.0/24 maxlen: 24
46.232.66.0/24 maxlen: 24
46.232.68.0/24 maxlen: 24
46.232.116.0/23 maxlen: 24
46.232.118.0/23 maxlen: 24
46.232.124.0/23 maxlen: 24
46.232.126.0/23 maxlen: 24
149.126.193.0/24 maxlen: 24
149.126.195.0/24 maxlen: 24
149.126.196.0/24 maxlen: 24
149.126.198.0/24 maxlen: 24
149.126.201.0/24 maxlen: 24
149.126.202.0/24 maxlen: 24
149.126.204.0/24 maxlen: 24
149.126.205.0/24 maxlen: 24
149.126.208.0/24 maxlen: 24
149.126.210.0/24 maxlen: 24
149.126.214.0/24 maxlen: 24
149.126.224.0/24 maxlen: 24
149.126.225.0/24 maxlen: 24
149.126.226.0/24 maxlen: 24
149.126.228.0/24 maxlen: 24
149.126.231.0/24 maxlen: 24
149.126.236.0/22 maxlen: 24
149.126.242.0/24 maxlen: 24
149.126.244.0/24 maxlen: 24
149.126.245.0/24 maxlen: 24
149.126.247.0/24 maxlen: 24
149.126.248.0/24 maxlen: 24
149.126.249.0/24 maxlen: 24
149.126.250.0/24 maxlen: 24
149.126.253.0/24 maxlen: 24
149.126.254.0/23 maxlen: 24
Validation: Failed, certificate revoked on Sun 01 Jun 2025 15:24:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:0e:40:75:e2:60:69:60:7f:62:0f:b2:1c:2d:00:0c:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5588f197f97e8900755544e810cddef9d90fbc41
Validity
Not Before: May 26 20:19:54 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=69783da266162267208522821da4fcea29d5ab71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:c0:0d:51:50:25:93:21:c8:b3:a6:ac:00:38:
45:4f:6a:db:52:a5:c3:52:46:63:42:1c:0c:58:1d:
20:8e:ac:b0:28:ba:07:2e:cc:ac:e2:53:12:b4:46:
fb:40:e2:0d:b0:cd:59:b9:3e:da:1d:9a:8a:38:d0:
15:0a:ce:71:f5:3f:6d:0d:62:fa:2c:cf:07:b1:74:
2a:19:27:8d:cf:c8:14:14:3f:56:61:de:a8:4d:fc:
b5:8b:c4:db:a4:1d:cc:d8:a0:28:7c:d6:7c:89:9f:
76:92:90:b0:16:21:de:e5:f3:4c:ab:a2:13:ad:98:
13:be:cd:20:57:97:91:26:9e:24:f8:18:b7:e5:7e:
2d:52:d8:d3:e3:45:48:c7:7d:37:69:a0:eb:96:3a:
6b:da:a8:7e:ef:db:1c:64:25:dd:28:b2:50:57:00:
44:81:31:56:eb:32:23:8c:a7:cc:fe:a0:43:af:86:
bb:6d:1d:bb:c7:e5:ae:05:5a:90:b2:72:28:37:f8:
03:4b:99:a6:39:9f:38:1d:98:4d:8b:88:a6:e2:b6:
b5:28:29:31:7b:7f:16:fc:06:0e:f8:ec:a7:e4:3d:
ba:97:14:02:1b:39:75:e5:c2:a6:0d:b2:83:19:19:
d2:68:06:c4:62:4c:70:f6:4e:29:71:a3:45:7c:9f:
60:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:78:3D:A2:66:16:22:67:20:85:22:82:1D:A4:FC:EA:29:D5:AB:71
X509v3 Authority Key Identifier:
keyid:55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/aXg9omYWImcghSKCHaT86inVq3E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/VYjxl_l-iQB1VUToEM3e-dkPvEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.3.8.0/21
46.3.28.0/23
46.3.40.0-46.3.63.255
46.3.77.0/24
46.3.84.0/24
46.3.89.0-46.3.91.255
46.3.118.0-46.3.131.255
46.3.134.0/23
46.3.156.0/23
46.3.160.0-46.3.172.255
46.3.174.0/24
46.3.184.0-46.3.190.255
46.3.205.0-46.3.215.255
46.3.220.0/23
46.3.223.0/24
46.3.228.0/22
46.3.236.0/23
46.3.243.0-46.3.244.255
46.3.246.0/24
46.3.248.0/24
46.3.251.0-46.3.255.255
46.232.0.0-46.232.5.255
46.232.16.0/22
46.232.64.0-46.232.66.255
46.232.68.0/24
46.232.116.0/22
46.232.124.0/22
149.126.193.0/24
149.126.195.0-149.126.196.255
149.126.198.0/24
149.126.201.0-149.126.202.255
149.126.204.0/23
149.126.208.0/24
149.126.210.0/24
149.126.214.0/24
149.126.224.0-149.126.226.255
149.126.228.0/24
149.126.231.0/24
149.126.236.0/22
149.126.242.0/24
149.126.244.0/23
149.126.247.0-149.126.250.255
149.126.253.0-149.126.255.255
Signature Algorithm: sha256WithRSAEncryption
12:02:40:ca:b7:d7:5e:78:1b:f1:59:89:b5:92:7a:cc:25:18:
c7:32:35:40:e9:ec:67:d6:3a:92:3c:d7:f3:79:36:e7:9e:98:
1d:1c:4a:4d:b0:f5:5c:73:72:97:d4:26:e9:23:4a:7d:f1:c4:
2f:cf:87:e6:85:9f:30:4c:7b:f8:1a:f0:2f:17:9c:66:73:d9:
61:49:29:18:3f:08:60:c5:5f:b9:f4:22:c0:54:e7:77:69:ca:
f6:8b:b6:0c:a4:3f:72:2d:b5:e9:85:14:17:56:0f:ed:cc:ca:
3c:1b:43:45:82:ea:ed:a1:5f:35:d3:5e:00:84:ca:b6:01:7e:
05:04:34:c7:8e:77:c9:ab:ec:3f:9f:a2:76:f7:c7:c2:f8:98:
9f:5f:14:4a:48:77:77:dd:46:bf:ca:ee:07:fa:81:bd:01:05:
2d:5e:46:b0:26:1d:d2:26:98:3d:11:b1:44:a9:c8:4e:84:00:
21:a8:e4:15:02:a5:f0:00:a9:36:b1:83:03:b3:1f:f3:4f:3f:
94:3b:cb:8f:17:09:24:d5:be:02:f1:22:14:6a:62:9d:4b:ff:
9b:bc:92:aa:bd:56:7f:49:f5:41:bd:08:54:88:79:3e:69:54:
c0:15:55:a7:88:aa:01:fc:0a:fc:30:27:21:c6:61:57:b6:55:
9c:8a:e1:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 5 09:18:26 2025 by rpki-client