Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/8abeed-f53b-4776-a8e2-36e9a79bd950/1/1FBi4iCSiljCeKoG_HG7QmwEJeI.roa
File: 1FBi4iCSiljCeKoG_HG7QmwEJeI.roa (raw, json)
Hash identifier: 6D0GuX6o2NUFYegeUYQXeVoO4PEft5TvKRg59Z2jUUY=
Subject key identifier: D4:50:62:E2:20:92:8A:58:C2:78:AA:06:FC:71:BB:42:6C:04:25:E2
Certificate issuer: /CN=297c508d23b38315bbf45b726d22050a46127b8c
Certificate serial: 01975C4335BF86CB9100A1A2C9538999C23B
Authority key identifier: 29:7C:50:8D:23:B3:83:15:BB:F4:5B:72:6D:22:05:0A:46:12:7B:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KXxQjSOzgxW79FtybSIFCkYSe4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/8abeed-f53b-4776-a8e2-36e9a79bd950/1/1FBi4iCSiljCeKoG_HG7QmwEJeI.roa
Signing time: Tue 10 Jun 2025 23:53:17 +0000
ROA not before: Tue 10 Jun 2025 23:53:17 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 34177
IP address blocks: 5.133.68.0/22 maxlen: 22
62.193.32.0/19 maxlen: 19
62.244.84.0/22 maxlen: 22
62.244.86.0/23 maxlen: 23
62.244.88.0/23 maxlen: 23
62.244.89.0/24 maxlen: 24
62.244.96.0/22 maxlen: 22
62.244.112.0/22 maxlen: 22
62.244.117.0/24 maxlen: 24
62.244.119.0/24 maxlen: 24
78.31.40.0/21 maxlen: 21
78.109.240.0/20 maxlen: 20
80.74.64.0/20 maxlen: 24
80.245.16.0/20 maxlen: 20
82.210.0.0/19 maxlen: 19
82.210.32.0/19 maxlen: 19
83.118.192.0/19 maxlen: 19
83.142.144.0/21 maxlen: 21
84.239.64.0/18 maxlen: 24
91.90.96.0/21 maxlen: 21
94.228.176.0/20 maxlen: 20
95.141.96.0/20 maxlen: 20
141.101.56.0/21 maxlen: 24
159.180.224.0/19 maxlen: 19
176.57.32.0/21 maxlen: 21
178.16.160.0/20 maxlen: 20
185.4.44.0/22 maxlen: 24
185.5.108.0/22 maxlen: 22
185.10.176.0/22 maxlen: 24
185.18.208.0/22 maxlen: 22
185.19.48.0/22 maxlen: 22
185.41.4.0/22 maxlen: 22
185.47.240.0/22 maxlen: 24
185.81.52.0/22 maxlen: 22
185.132.116.0/22 maxlen: 22
185.137.254.0/23 maxlen: 24
185.156.80.0/22 maxlen: 22
185.163.28.0/22 maxlen: 22
185.171.156.0/22 maxlen: 22
185.180.244.0/22 maxlen: 22
185.191.92.0/22 maxlen: 22
185.211.24.0/22 maxlen: 22
185.213.160.0/22 maxlen: 22
185.218.248.0/22 maxlen: 22
185.249.28.0/22 maxlen: 22
194.213.124.0/23 maxlen: 23
195.15.128.0/18 maxlen: 18
195.49.132.0/22 maxlen: 22
195.200.160.0/19 maxlen: 19
212.106.96.0/19 maxlen: 19
2001:ab8::/29 maxlen: 32
2a00:6900::/29 maxlen: 48
2a01:4e00::/32 maxlen: 32
2a03:5d40::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 10 Jun 2025 23:58:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:5c:43:35:bf:86:cb:91:00:a1:a2:c9:53:89:99:c2:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=297c508d23b38315bbf45b726d22050a46127b8c
Validity
Not Before: Jun 10 23:53:17 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d45062e220928a58c278aa06fc71bb426c0425e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:73:d0:e2:be:01:4d:fa:43:95:c0:57:b1:3d:
aa:e7:be:9d:79:b0:49:15:ab:c2:b4:8f:24:59:46:
77:8d:ea:9a:7e:ad:67:37:b5:58:3d:c2:2a:6d:fb:
d7:64:ef:2f:65:c1:3a:1f:1c:d8:47:12:42:4e:90:
5a:50:ba:64:ec:6d:28:e9:ad:b7:7f:f6:9f:87:d4:
87:83:e4:66:cb:d4:49:29:ef:12:9b:71:bf:46:83:
4f:48:75:51:bc:2f:b3:50:a7:df:23:2d:7d:b6:e0:
de:38:5d:a2:6d:0c:c8:1b:cc:43:6f:a0:9c:33:00:
ac:f2:1c:94:58:3a:41:5f:c8:eb:b1:1d:d4:04:f2:
71:4e:da:89:68:54:be:84:b6:e8:c2:97:ff:c9:f1:
a5:7d:1f:53:d2:2f:10:ee:bf:12:16:59:cb:74:c0:
33:47:2b:6b:0c:2a:ab:82:68:99:2a:a1:93:de:bb:
51:ec:c3:a9:64:71:fd:15:44:4e:af:f2:57:45:52:
23:46:3a:10:d2:88:fd:e7:85:a8:9c:92:e9:05:dc:
09:47:08:9d:c2:d4:4b:03:fa:cb:df:55:99:3d:ac:
82:ad:20:40:e5:9e:84:17:87:76:14:86:19:d2:83:
43:14:4d:8c:87:cb:51:c3:60:21:2f:04:b4:1d:f3:
a4:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:50:62:E2:20:92:8A:58:C2:78:AA:06:FC:71:BB:42:6C:04:25:E2
X509v3 Authority Key Identifier:
keyid:29:7C:50:8D:23:B3:83:15:BB:F4:5B:72:6D:22:05:0A:46:12:7B:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KXxQjSOzgxW79FtybSIFCkYSe4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/8abeed-f53b-4776-a8e2-36e9a79bd950/1/1FBi4iCSiljCeKoG_HG7QmwEJeI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/8abeed-f53b-4776-a8e2-36e9a79bd950/1/KXxQjSOzgxW79FtybSIFCkYSe4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.133.68.0/22
62.193.32.0/19
62.244.84.0-62.244.89.255
62.244.96.0/22
62.244.112.0/22
62.244.117.0/24
62.244.119.0/24
78.31.40.0/21
78.109.240.0/20
80.74.64.0/20
80.245.16.0/20
82.210.0.0/18
83.118.192.0/19
83.142.144.0/21
84.239.64.0/18
91.90.96.0/21
94.228.176.0/20
95.141.96.0/20
141.101.56.0/21
159.180.224.0/19
176.57.32.0/21
178.16.160.0/20
185.4.44.0/22
185.5.108.0/22
185.10.176.0/22
185.18.208.0/22
185.19.48.0/22
185.41.4.0/22
185.47.240.0/22
185.81.52.0/22
185.132.116.0/22
185.137.254.0/23
185.156.80.0/22
185.163.28.0/22
185.171.156.0/22
185.180.244.0/22
185.191.92.0/22
185.211.24.0/22
185.213.160.0/22
185.218.248.0/22
185.249.28.0/22
194.213.124.0/23
195.15.128.0/18
195.49.132.0/22
195.200.160.0/19
212.106.96.0/19
IPv6:
2001:ab8::/29
2a00:6900::/29
2a01:4e00::/32
2a03:5d40::/32
Signature Algorithm: sha256WithRSAEncryption
96:4c:d2:80:e8:88:7d:cb:92:cc:eb:21:8b:88:15:af:de:89:
08:f3:36:9a:c1:ab:98:db:5f:c9:40:e3:c4:95:c3:24:ba:6a:
9c:9e:02:cb:6e:b1:2e:35:25:f4:e4:9e:28:54:92:2d:1a:24:
5e:dd:40:be:92:48:71:a2:33:a1:fc:4c:c7:42:60:2b:87:eb:
7e:8e:1b:f4:9c:32:e6:7d:b3:f0:8b:a7:50:e0:eb:70:63:f8:
9e:56:1b:cd:26:27:f1:fa:1d:46:1b:bc:ee:8b:ec:94:27:d3:
f1:ba:76:ae:ac:85:a1:f4:3b:31:08:3d:aa:0b:88:b0:58:25:
a3:be:46:f4:87:4b:04:77:e6:ba:8b:ae:17:2f:8f:42:a4:8f:
ab:73:8e:80:ee:24:a0:dd:b0:d1:29:6b:42:84:b0:fb:74:9e:
8e:50:fe:d4:e9:43:3d:c1:4a:2f:64:6f:55:b7:7e:b7:ea:b5:
a4:c8:46:53:78:f7:68:c7:fa:86:4d:cd:89:34:4f:d2:a6:fd:
ac:b5:4d:ea:ab:ab:bc:b6:52:99:4a:ba:43:8e:0d:aa:f1:64:
38:a1:b6:6a:5a:3f:de:38:69:ee:f9:4d:ad:21:c3:63:d1:32:
00:44:32:16:27:60:15:93:ae:47:1c:8f:de:49:40:43:08:10:
4c:fd:4b:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 11:27:40 2025 by rpki-client