Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/9911ac-4cf2-4ee5-8d63-049bdc6b8ef3/1/elVrW7GsJdEG0AHH5dcV885M4Js.roa
File: elVrW7GsJdEG0AHH5dcV885M4Js.roa (raw, json)
Hash identifier: UdwSlXQZ/zZ7JOfAaFoyhZ+19ZEq7p03gyl6iG8NxTw=
Subject key identifier: 7A:55:6B:5B:B1:AC:25:D1:06:D0:01:C7:E5:D7:15:F3:CE:4C:E0:9B
Certificate issuer: /CN=97429de8bcc3be474abbda2be2a89d0f3208c385
Certificate serial: 019864C946092F227AE3ECD591C672DADB5D
Authority key identifier: 97:42:9D:E8:BC:C3:BE:47:4A:BB:DA:2B:E2:A8:9D:0F:32:08:C3:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l0Kd6LzDvkdKu9or4qidDzIIw4U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/9911ac-4cf2-4ee5-8d63-049bdc6b8ef3/1/elVrW7GsJdEG0AHH5dcV885M4Js.roa
Signing time: Fri 01 Aug 2025 08:39:28 +0000
ROA not before: Fri 01 Aug 2025 08:39:28 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 41833
IP address blocks: 46.227.248.0/21 maxlen: 21
46.227.248.0/24 maxlen: 24
46.227.249.0/24 maxlen: 24
46.227.250.0/24 maxlen: 24
46.227.251.0/24 maxlen: 24
46.227.252.0/24 maxlen: 24
46.227.253.0/24 maxlen: 24
46.227.254.0/24 maxlen: 24
46.227.255.0/24 maxlen: 24
89.249.208.0/20 maxlen: 20
89.249.208.0/24 maxlen: 24
89.249.208.136/29 maxlen: 29
89.249.209.0/24 maxlen: 24
89.249.210.0/24 maxlen: 24
89.249.211.0/24 maxlen: 24
89.249.212.0/24 maxlen: 24
89.249.212.0/28 maxlen: 28
89.249.213.0/24 maxlen: 24
89.249.214.0/24 maxlen: 24
89.249.215.0/24 maxlen: 24
89.249.216.0/24 maxlen: 24
89.249.217.0/24 maxlen: 24
89.249.218.0/24 maxlen: 24
89.249.219.0/24 maxlen: 24
89.249.220.0/24 maxlen: 24
89.249.220.64/28 maxlen: 28
89.249.221.0/24 maxlen: 24
89.249.221.80/29 maxlen: 29
89.249.222.0/24 maxlen: 24
89.249.223.0/24 maxlen: 24
93.185.224.0/20 maxlen: 20
93.185.224.0/24 maxlen: 24
93.185.225.0/24 maxlen: 24
93.185.226.0/24 maxlen: 24
93.185.227.0/24 maxlen: 24
93.185.228.0/24 maxlen: 24
93.185.229.0/24 maxlen: 24
93.185.229.0/30 maxlen: 30
93.185.230.0/24 maxlen: 24
93.185.231.0/24 maxlen: 24
93.185.231.0/29 maxlen: 29
93.185.232.0/24 maxlen: 24
93.185.233.0/24 maxlen: 24
93.185.234.0/24 maxlen: 24
93.185.235.0/24 maxlen: 24
93.185.236.0/24 maxlen: 24
93.185.236.136/29 maxlen: 29
93.185.237.0/24 maxlen: 24
93.185.238.0/24 maxlen: 24
93.185.239.0/24 maxlen: 24
95.141.48.0/20 maxlen: 20
95.141.48.0/24 maxlen: 24
95.141.49.0/24 maxlen: 24
95.141.50.0/24 maxlen: 24
95.141.51.0/24 maxlen: 24
95.141.52.0/24 maxlen: 24
95.141.53.0/24 maxlen: 24
95.141.54.0/24 maxlen: 24
95.141.55.0/24 maxlen: 24
95.141.56.0/24 maxlen: 24
95.141.57.0/24 maxlen: 24
95.141.58.0/24 maxlen: 24
95.141.59.0/24 maxlen: 24
95.141.60.0/24 maxlen: 24
95.141.61.0/24 maxlen: 24
95.141.62.0/24 maxlen: 24
95.141.63.0/24 maxlen: 24
141.138.176.0/20 maxlen: 20
141.138.176.0/24 maxlen: 24
141.138.177.0/24 maxlen: 24
141.138.178.0/24 maxlen: 24
141.138.179.0/24 maxlen: 24
141.138.180.0/24 maxlen: 24
141.138.181.0/24 maxlen: 24
141.138.182.0/24 maxlen: 24
141.138.183.0/24 maxlen: 24
141.138.184.0/24 maxlen: 24
141.138.185.0/24 maxlen: 24
141.138.186.0/24 maxlen: 24
141.138.186.96/29 maxlen: 29
141.138.186.144/29 maxlen: 29
141.138.187.0/24 maxlen: 24
141.138.188.0/24 maxlen: 24
141.138.189.0/24 maxlen: 24
141.138.190.0/24 maxlen: 24
141.138.191.0/24 maxlen: 24
141.138.191.208/29 maxlen: 29
185.58.200.0/22 maxlen: 22
185.58.200.0/24 maxlen: 24
185.58.201.0/24 maxlen: 24
185.58.202.0/24 maxlen: 24
185.58.203.0/24 maxlen: 24
2a02:f50::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 06 Aug 2025 06:05:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:64:c9:46:09:2f:22:7a:e3:ec:d5:91:c6:72:da:db:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97429de8bcc3be474abbda2be2a89d0f3208c385
Validity
Not Before: Aug 1 08:39:28 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7a556b5bb1ac25d106d001c7e5d715f3ce4ce09b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:29:dc:02:49:ce:c3:5e:22:24:de:71:87:55:
da:ea:fd:61:d7:37:5c:17:c4:6a:3a:a1:28:e6:ac:
77:d6:76:18:70:af:79:ee:58:da:06:aa:07:a6:98:
a0:96:a7:5c:37:10:13:1f:cb:09:6f:bc:c9:ac:e7:
ef:c5:6a:5a:5a:eb:da:3e:98:08:82:53:ba:3c:55:
94:0f:1f:85:67:22:be:5e:26:4c:31:f5:f3:f3:12:
cb:94:7a:6a:a4:2f:df:08:fa:bb:73:c1:db:43:e8:
70:13:ae:fc:9b:e6:02:a9:b0:04:10:fa:17:70:27:
2f:5b:d3:36:2e:2e:25:4b:44:14:22:38:10:0b:47:
37:f7:e6:bf:10:50:c7:00:1f:73:83:40:c0:1f:c9:
26:6e:0f:24:45:e1:dc:72:8b:7a:46:f1:d7:10:4f:
d0:44:67:a4:6c:d3:b2:1b:60:5a:a8:b6:7b:e7:12:
61:24:ad:61:5d:fe:91:68:a6:97:87:00:9c:4b:c9:
04:d6:e8:24:ec:75:8c:e6:55:08:dc:8a:35:a5:e6:
ad:6e:5f:be:cb:2f:c8:29:80:89:26:11:79:2d:0b:
e6:68:e3:5b:e8:07:ee:2a:61:3e:7a:d9:76:02:cb:
cc:8f:3f:84:f3:77:74:8b:a1:87:f8:bd:98:0a:dc:
fe:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:55:6B:5B:B1:AC:25:D1:06:D0:01:C7:E5:D7:15:F3:CE:4C:E0:9B
X509v3 Authority Key Identifier:
keyid:97:42:9D:E8:BC:C3:BE:47:4A:BB:DA:2B:E2:A8:9D:0F:32:08:C3:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l0Kd6LzDvkdKu9or4qidDzIIw4U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/9911ac-4cf2-4ee5-8d63-049bdc6b8ef3/1/elVrW7GsJdEG0AHH5dcV885M4Js.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/9911ac-4cf2-4ee5-8d63-049bdc6b8ef3/1/l0Kd6LzDvkdKu9or4qidDzIIw4U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.227.248.0/21
89.249.208.0/20
93.185.224.0/20
95.141.48.0/20
141.138.176.0/20
185.58.200.0/22
IPv6:
2a02:f50::/32
Signature Algorithm: sha256WithRSAEncryption
5c:00:25:ed:23:83:41:1a:e5:df:d7:1a:e9:e1:0d:5e:bd:bb:
f9:86:56:2e:77:34:ed:e7:37:9a:71:81:6b:96:c9:8a:4e:b4:
ec:3d:2d:0d:8b:99:20:8b:34:5b:f3:16:44:87:96:cf:fe:f5:
0f:6b:2d:a2:e3:5c:f3:fb:a8:ce:c8:b5:11:7d:b1:12:8d:52:
95:31:43:62:74:29:01:73:89:b5:10:0c:fe:57:d1:78:f1:83:
8c:cb:ee:58:bf:f1:b3:b2:48:b6:bc:65:9f:5d:bd:b7:46:7e:
13:35:be:22:83:88:19:72:cc:6b:d6:7a:87:5c:1b:25:a9:47:
1d:da:7a:06:d4:be:0c:e2:46:f0:b2:a2:93:ee:c3:ab:33:18:
27:86:bf:48:e0:35:6c:3b:bb:50:2b:23:d9:53:85:12:5a:7b:
c6:48:72:4d:d5:0e:f1:3b:b5:6e:92:f9:be:e3:3c:11:ca:85:
2d:76:1c:8d:fc:50:39:da:30:6e:c7:2f:54:e1:5b:df:16:2f:
7b:f0:1c:c8:39:ba:22:a8:44:a1:39:90:c4:0b:2a:21:fe:57:
4d:61:68:8c:52:53:70:b9:d2:5f:c8:c7:01:35:13:2a:4b:2c:
96:c6:c3:ce:b7:48:26:11:db:d2:19:c5:61:2a:5b:3e:aa:c1:
32:39:09:7d
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgISAZhkyUYJLyJ64+zVkcZy2ttdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk3NDI5ZGU4YmNjM2JlNDc0YWJiZGEyYmUyYTg5ZDBmMzIw
OGMzODUwHhcNMjUwODAxMDgzOTI4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3YTU1NmI1YmIxYWMyNWQxMDZkMDAxYzdlNWQ3MTVmM2NlNGNlMDliMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtSncAknOw14iJN5xh1Xa6v1h1zdc
F8RqOqEo5qx31nYYcK957ljaBqoHppiglqdcNxATH8sJb7zJrOfvxWpaWuvaPpgI
glO6PFWUDx+FZyK+XiZMMfXz8xLLlHpqpC/fCPq7c8HbQ+hwE678m+YCqbAEEPoX
cCcvW9M2Li4lS0QUIjgQC0c39+a/EFDHAB9zg0DAH8kmbg8kReHccot6RvHXEE/Q
RGekbNOyG2BaqLZ75xJhJK1hXf6RaKaXhwCcS8kE1ugk7HWM5lUI3Io1peatbl++
yy/IKYCJJhF5LQvmaONb6AfuKmE+etl2AsvMjz+E83d0i6GH+L2YCtz+mQIDAQAB
o4ICNjCCAjIwHQYDVR0OBBYEFHpVa1uxrCXRBtABx+XXFfPOTOCbMB8GA1UdIwQY
MBaAFJdCnei8w75HSrvaK+KonQ8yCMOFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbDBLZDZMekR2a2RLdTlvcjRxaWREeklJdzRVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC85OTExYWMtNGNmMi00ZWU1LThkNjMt
MDQ5YmRjNmI4ZWYzLzEvZWxWclc3R3NKZEVHMEFISDVkY1Y4ODVNNEpzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZC85OTExYWMtNGNmMi00ZWU1LThkNjMtMDQ5YmRjNmI4ZWYz
LzEvbDBLZDZMekR2a2RLdTlvcjRxaWREeklJdzRVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEwGCCsGAQUFBwEHAQH/BD0wOzAqBAIAATAkAwQDLuP4AwQE
WfnQAwQEXbngAwQEX40wAwQEjYqwAwQCuTrIMA0EAgACMAcDBQAqAg9QMA0GCSqG
SIb3DQEBCwUAA4IBAQBcACXtI4NBGuXf1xrp4Q1evbv5hlYudzTt5zeacYFrlsmK
TrTsPS0Ni5kgizRb8xZEh5bP/vUPay2i41zz+6jOyLURfbESjVKVMUNidCkBc4m1
EAz+V9F48YOMy+5Yv/Gzski2vGWfXb23Rn4TNb4ig4gZcsxr1nqHXBslqUcd2noG
1L4M4kbwsqKT7sOrMxgnhr9I4DVsO7tQKyPZU4USWnvGSHJN1Q7xO7Vukvm+4zwR
yoUtdhyN/FA52jBuxy9U4VvfFi978BzIOboiqEShOZDECyoh/ldNYWiMUlNwudJf
yMcBNRMqSyyWxsPOt0gmEdvSGcVhKls+qsEyOQl9
-----END CERTIFICATE-----
Generated at Wed Aug 6 13:14:03 2025 by rpki-client