Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/0gDpiSiPZUc1IkrJhDOCWnCITaE.roa
File: 0gDpiSiPZUc1IkrJhDOCWnCITaE.roa (raw, json)
Hash identifier: KQiK9t0UPEXb6+wNBQIb0vq7VtKq95j2ItengLHPNQk=
Subject key identifier: D2:00:E9:89:28:8F:65:47:35:22:4A:C9:84:33:82:5A:70:88:4D:A1
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 0196471E4E05074C0D5FD95C5B601E1B9E39
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/0gDpiSiPZUc1IkrJhDOCWnCITaE.roa
Signing time: Fri 18 Apr 2025 04:18:10 +0000
ROA not before: Fri 18 Apr 2025 04:18:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 12586
IP address blocks: 5.83.128.0/19 maxlen: 32
5.83.128.0/20 maxlen: 32
5.83.136.0/24 maxlen: 24
5.83.151.0/24 maxlen: 32
5.83.156.0/24 maxlen: 24
5.83.157.0/24 maxlen: 24
5.83.158.0/24 maxlen: 24
5.175.128.0/24 maxlen: 32
5.175.129.0/24 maxlen: 32
5.175.130.0/24 maxlen: 32
5.175.131.0/24 maxlen: 32
5.175.133.0/24 maxlen: 32
5.175.143.0/24 maxlen: 24
5.175.218.0/24 maxlen: 32
5.175.219.0/24 maxlen: 32
5.175.220.0/24 maxlen: 24
5.175.225.0/24 maxlen: 32
5.175.226.0/24 maxlen: 32
5.175.227.0/24 maxlen: 32
5.175.228.0/24 maxlen: 32
5.175.229.0/24 maxlen: 32
5.175.230.0/24 maxlen: 32
5.175.231.0/24 maxlen: 32
5.175.232.0/24 maxlen: 32
5.175.235.0/24 maxlen: 32
5.175.239.0/24 maxlen: 24
5.175.240.0/24 maxlen: 32
5.175.241.0/24 maxlen: 32
5.175.242.0/24 maxlen: 32
5.175.243.0/24 maxlen: 32
5.175.244.0/24 maxlen: 32
5.175.248.0/24 maxlen: 24
5.175.251.0/24 maxlen: 32
5.175.252.0/24 maxlen: 32
5.175.253.0/24 maxlen: 32
5.175.254.0/24 maxlen: 32
5.175.255.0/24 maxlen: 32
5.230.0.0/15 maxlen: 32
5.230.6.0/24 maxlen: 32
5.230.11.0/24 maxlen: 32
5.230.102.0/24 maxlen: 32
5.230.224.0/24 maxlen: 32
5.231.24.0/24 maxlen: 24
5.231.30.0/24 maxlen: 24
5.231.43.0/24 maxlen: 24
5.231.48.0/24 maxlen: 24
5.231.49.0/24 maxlen: 24
5.231.94.0/24 maxlen: 24
5.231.104.0/24 maxlen: 24
5.231.232.0/24 maxlen: 24
5.231.233.0/24 maxlen: 24
5.231.234.0/24 maxlen: 24
5.231.254.0/24 maxlen: 24
77.90.0.0/18 maxlen: 32
77.90.18.0/24 maxlen: 24
77.90.21.0/24 maxlen: 24
83.243.80.0/21 maxlen: 32
85.93.0.0/19 maxlen: 32
85.93.1.0/24 maxlen: 24
85.93.12.0/24 maxlen: 24
85.93.15.0/24 maxlen: 24
85.118.160.0/21 maxlen: 32
85.118.162.0/24 maxlen: 24
87.239.128.0/21 maxlen: 32
89.106.64.0/19 maxlen: 32
89.106.92.0/24 maxlen: 24
89.106.93.0/24 maxlen: 24
89.106.94.0/24 maxlen: 24
89.106.95.0/24 maxlen: 24
89.144.0.0/18 maxlen: 32
89.144.8.0/24 maxlen: 24
89.144.17.0/24 maxlen: 24
89.144.18.0/24 maxlen: 24
89.144.21.0/24 maxlen: 24
89.144.22.0/24 maxlen: 24
89.144.38.0/24 maxlen: 24
94.103.160.0/20 maxlen: 32
94.103.164.0/24 maxlen: 24
94.103.166.0/24 maxlen: 24
94.249.128.0/17 maxlen: 32
94.249.150.0/24 maxlen: 24
94.249.170.0/24 maxlen: 24
94.249.212.0/24 maxlen: 24
94.249.214.0/24 maxlen: 24
95.215.32.0/22 maxlen: 32
178.18.144.0/20 maxlen: 32
178.18.151.0/24 maxlen: 24
185.13.156.0/22 maxlen: 32
185.13.156.0/24 maxlen: 24
185.13.159.0/24 maxlen: 24
185.47.140.0/24 maxlen: 32
185.47.141.0/24 maxlen: 32
185.47.142.0/24 maxlen: 24
185.121.71.0/24 maxlen: 32
193.28.251.0/24 maxlen: 32
195.110.14.0/23 maxlen: 32
217.69.160.0/20 maxlen: 32
217.69.167.0/24 maxlen: 24
217.69.170.0/24 maxlen: 24
2a00:12d8::/29 maxlen: 128
2a00:19d0::/29 maxlen: 128
2a00:cdc0::/32 maxlen: 128
2a01:bd40::/29 maxlen: 128
2a02:7a0::/29 maxlen: 128
2a02:2fc0::/29 maxlen: 128
2a02:2fc0::/48 maxlen: 48
2a02:2fc0:1::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 18 Apr 2025 13:47:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:47:1e:4e:05:07:4c:0d:5f:d9:5c:5b:60:1e:1b:9e:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Apr 18 04:18:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d200e989288f654735224ac98433825a70884da1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:82:81:bd:06:93:b9:ef:45:f5:f5:b7:d6:8f:
83:d0:5f:b9:e5:01:67:d4:35:11:07:14:b9:8e:76:
8a:1e:e4:69:4b:7d:40:bd:81:63:a1:8b:2b:1f:3a:
0c:74:b4:14:38:61:d8:27:08:7f:b8:18:bd:09:01:
c0:4a:d5:f1:fe:79:93:ac:bd:ca:ec:04:f9:ff:0e:
10:6d:57:78:46:42:ca:28:61:18:c3:e0:d3:6a:3a:
56:03:e2:65:fb:31:a0:ea:13:15:b5:0e:f0:f5:c2:
6e:c4:50:51:6e:6c:9b:e8:bb:97:0c:2e:91:ad:49:
d8:81:e5:a9:41:fa:c5:fc:17:8a:60:fc:64:2d:76:
24:c3:bb:d4:fc:39:c7:02:ca:16:dc:17:e0:39:1d:
b2:ea:4c:f5:26:e1:73:26:07:d8:eb:6f:6d:93:d5:
1c:83:39:71:7f:d9:df:cf:3c:34:cb:39:b1:01:14:
9b:56:1b:9d:d6:6a:0c:48:34:37:ec:13:5a:16:76:
de:44:8f:f3:3b:65:28:28:34:30:d0:2e:68:6b:c0:
b6:f5:08:ac:3d:af:7c:4a:41:e3:73:4e:8c:a3:1a:
c8:3e:30:f8:5d:60:8e:f9:6a:99:04:b7:bf:cb:c0:
a3:78:0c:d2:ad:02:95:a4:e5:02:ac:8c:19:17:39:
81:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:00:E9:89:28:8F:65:47:35:22:4A:C9:84:33:82:5A:70:88:4D:A1
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/0gDpiSiPZUc1IkrJhDOCWnCITaE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.128.0/19
5.175.128.0/22
5.175.133.0/24
5.175.143.0/24
5.175.218.0-5.175.220.255
5.175.225.0-5.175.232.255
5.175.235.0/24
5.175.239.0-5.175.244.255
5.175.248.0/24
5.175.251.0-5.175.255.255
5.230.0.0/15
77.90.0.0/18
83.243.80.0/21
85.93.0.0/19
85.118.160.0/21
87.239.128.0/21
89.106.64.0/19
89.144.0.0/18
94.103.160.0/20
94.249.128.0/17
95.215.32.0/22
178.18.144.0/20
185.13.156.0/22
185.47.140.0-185.47.142.255
185.121.71.0/24
193.28.251.0/24
195.110.14.0/23
217.69.160.0/20
IPv6:
2a00:12d8::/29
2a00:19d0::/29
2a00:cdc0::/32
2a01:bd40::/29
2a02:7a0::/29
2a02:2fc0::/29
Signature Algorithm: sha256WithRSAEncryption
3b:ce:cd:cf:94:91:40:95:e7:50:85:c9:05:da:f0:13:e7:ec:
99:6d:ea:28:e6:63:3f:a1:f0:c4:c1:c2:45:bd:1c:31:0f:a9:
69:ff:52:7b:b5:93:36:91:c3:dd:20:c9:44:3c:e5:18:03:95:
43:8e:5e:30:2e:7a:b1:6b:fb:8f:68:b2:10:5c:80:bc:51:b9:
81:8a:c9:b5:ff:15:55:4f:33:84:75:7a:82:19:db:99:21:d3:
b4:a2:e8:64:52:be:ce:e9:15:74:8d:b5:ce:83:60:53:cf:a7:
ac:a9:94:c2:30:05:40:72:3a:45:c3:56:06:57:d1:7e:e2:7e:
b3:8d:47:20:f3:62:79:d0:7d:4a:6a:b5:9b:cc:af:30:83:23:
33:ef:cb:62:48:42:0a:3f:2e:2e:10:7a:4b:75:7d:e2:e3:be:
46:36:cb:b0:be:ed:5b:f7:e6:d0:d3:7d:79:ac:dd:0f:9d:a9:
79:9c:47:57:96:48:07:4f:d5:c2:0d:61:f3:0f:d0:d6:fb:ab:
b2:1b:db:75:82:c5:3e:2c:07:2f:36:60:ce:46:5f:f0:c6:f7:
a1:c5:3a:66:b3:f0:1e:4c:14:66:65:c7:7d:29:1d:74:81:0b:
90:b8:b1:9a:9b:eb:63:ea:ba:fd:7f:77:f5:07:b1:c8:35:21:
ab:75:ed:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 15:46:59 2025 by rpki-client