Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/AUFbH3uo3Gpot_05wqdLeY2S8gw.roa
File: AUFbH3uo3Gpot_05wqdLeY2S8gw.roa (raw, json)
Hash identifier: lWhJmJCBT3gTISClUu9M8+LdsPvvAe6MVNJ9XMiPcd8=
Subject key identifier: 01:41:5B:1F:7B:A8:DC:6A:68:B7:FD:39:C2:A7:4B:79:8D:92:F2:0C
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 01964068C76BF431929434BF234883F6905B
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/AUFbH3uo3Gpot_05wqdLeY2S8gw.roa
Signing time: Wed 16 Apr 2025 21:02:10 +0000
ROA not before: Wed 16 Apr 2025 21:02:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 12586
IP address blocks: 5.83.128.0/19 maxlen: 32
5.83.128.0/20 maxlen: 32
5.83.136.0/24 maxlen: 24
5.83.151.0/24 maxlen: 32
5.83.156.0/24 maxlen: 24
5.83.157.0/24 maxlen: 24
5.83.158.0/24 maxlen: 24
5.175.128.0/24 maxlen: 32
5.175.129.0/24 maxlen: 32
5.175.130.0/24 maxlen: 32
5.175.131.0/24 maxlen: 32
5.175.133.0/24 maxlen: 32
5.175.143.0/24 maxlen: 24
5.175.218.0/24 maxlen: 32
5.175.219.0/24 maxlen: 32
5.175.220.0/24 maxlen: 24
5.175.225.0/24 maxlen: 32
5.175.226.0/24 maxlen: 32
5.175.227.0/24 maxlen: 32
5.175.228.0/24 maxlen: 32
5.175.229.0/24 maxlen: 32
5.175.230.0/24 maxlen: 32
5.175.231.0/24 maxlen: 32
5.175.232.0/24 maxlen: 32
5.175.235.0/24 maxlen: 32
5.175.239.0/24 maxlen: 24
5.175.240.0/24 maxlen: 32
5.175.241.0/24 maxlen: 32
5.175.242.0/24 maxlen: 32
5.175.243.0/24 maxlen: 32
5.175.244.0/24 maxlen: 32
5.175.248.0/24 maxlen: 24
5.175.251.0/24 maxlen: 32
5.175.252.0/24 maxlen: 32
5.175.253.0/24 maxlen: 32
5.175.254.0/24 maxlen: 32
5.175.255.0/24 maxlen: 32
5.230.0.0/15 maxlen: 32
5.230.6.0/24 maxlen: 32
5.230.11.0/24 maxlen: 32
5.230.102.0/24 maxlen: 32
5.230.224.0/24 maxlen: 32
5.231.24.0/24 maxlen: 24
5.231.30.0/24 maxlen: 24
5.231.43.0/24 maxlen: 24
5.231.48.0/24 maxlen: 24
5.231.49.0/24 maxlen: 24
5.231.94.0/24 maxlen: 24
5.231.104.0/24 maxlen: 24
5.231.232.0/24 maxlen: 24
5.231.233.0/24 maxlen: 24
5.231.234.0/24 maxlen: 24
77.90.0.0/18 maxlen: 32
77.90.18.0/24 maxlen: 24
77.90.21.0/24 maxlen: 24
83.243.80.0/21 maxlen: 32
85.93.0.0/19 maxlen: 32
85.93.1.0/24 maxlen: 24
85.93.6.0/24 maxlen: 24
85.93.12.0/24 maxlen: 24
85.93.15.0/24 maxlen: 24
85.118.160.0/21 maxlen: 32
85.118.162.0/24 maxlen: 24
87.239.128.0/21 maxlen: 32
89.106.64.0/19 maxlen: 32
89.106.92.0/24 maxlen: 24
89.106.93.0/24 maxlen: 24
89.106.94.0/24 maxlen: 24
89.106.95.0/24 maxlen: 24
89.144.0.0/18 maxlen: 32
89.144.8.0/24 maxlen: 24
89.144.17.0/24 maxlen: 24
89.144.18.0/24 maxlen: 24
89.144.21.0/24 maxlen: 24
89.144.22.0/24 maxlen: 24
89.144.38.0/24 maxlen: 24
94.103.160.0/20 maxlen: 32
94.103.164.0/24 maxlen: 24
94.103.166.0/24 maxlen: 24
94.249.128.0/17 maxlen: 32
94.249.150.0/24 maxlen: 24
94.249.170.0/24 maxlen: 24
94.249.207.0/24 maxlen: 24
94.249.212.0/24 maxlen: 24
94.249.214.0/24 maxlen: 24
95.215.32.0/22 maxlen: 32
95.215.32.0/24 maxlen: 24
178.18.144.0/20 maxlen: 32
178.18.151.0/24 maxlen: 24
185.13.156.0/22 maxlen: 32
185.13.156.0/24 maxlen: 24
185.13.159.0/24 maxlen: 24
185.47.140.0/24 maxlen: 32
185.47.141.0/24 maxlen: 32
185.47.142.0/24 maxlen: 24
185.121.69.0/24 maxlen: 24
185.121.71.0/24 maxlen: 32
193.28.251.0/24 maxlen: 32
195.110.14.0/23 maxlen: 32
217.69.160.0/20 maxlen: 32
217.69.167.0/24 maxlen: 24
217.69.170.0/24 maxlen: 24
2a00:12d8::/29 maxlen: 128
2a00:19d0::/29 maxlen: 128
2a00:cdc0::/32 maxlen: 128
2a01:bd40::/29 maxlen: 128
2a02:7a0::/29 maxlen: 128
2a02:2fc0::/29 maxlen: 128
2a02:2fc0::/48 maxlen: 48
2a02:2fc0:1::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 16 Apr 2025 23:41:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:40:68:c7:6b:f4:31:92:94:34:bf:23:48:83:f6:90:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Apr 16 21:02:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=01415b1f7ba8dc6a68b7fd39c2a74b798d92f20c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:6a:5b:59:91:43:e6:7a:fe:33:e1:83:d4:8f:
a8:55:18:17:04:9f:1b:a3:1e:77:21:da:ec:3f:09:
4c:e2:e1:44:3b:e2:b5:30:6c:c1:bf:6b:33:57:87:
62:bb:c3:1f:e6:b1:71:2f:c3:37:1e:79:aa:57:44:
16:06:2f:fa:7e:55:ac:5f:cf:8e:d5:b4:b9:4c:32:
9d:9d:b4:fc:df:24:cb:57:e3:d2:74:03:d9:34:c8:
5c:c9:97:0f:98:3e:e5:ab:a3:ce:0d:5a:80:ec:bd:
1c:26:69:f8:04:73:a9:ce:ef:8e:c4:16:40:3d:17:
39:e0:01:3d:26:f6:30:cf:8a:d9:88:33:cd:cd:10:
b0:bb:1f:47:e0:5b:a1:ed:bf:59:05:aa:b0:bd:37:
e1:1c:e2:57:a1:39:27:02:f7:2e:16:ce:36:d6:98:
26:62:92:e2:1e:cc:aa:aa:55:61:8f:f0:7d:19:4c:
93:8c:45:00:b7:a0:75:c4:17:d6:2d:2b:9e:27:a8:
72:f3:27:2e:47:69:6f:64:d2:2c:d0:72:ca:37:53:
41:18:b8:66:d8:51:1e:59:c1:15:84:d0:6d:6d:8f:
86:a3:9e:16:f5:83:63:66:f9:78:6c:2d:a1:58:9f:
1a:d4:1e:ed:c7:f0:0f:49:dc:14:6a:6d:d4:bf:df:
81:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:41:5B:1F:7B:A8:DC:6A:68:B7:FD:39:C2:A7:4B:79:8D:92:F2:0C
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/AUFbH3uo3Gpot_05wqdLeY2S8gw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.128.0/19
5.175.128.0/22
5.175.133.0/24
5.175.143.0/24
5.175.218.0-5.175.220.255
5.175.225.0-5.175.232.255
5.175.235.0/24
5.175.239.0-5.175.244.255
5.175.248.0/24
5.175.251.0-5.175.255.255
5.230.0.0/15
77.90.0.0/18
83.243.80.0/21
85.93.0.0/19
85.118.160.0/21
87.239.128.0/21
89.106.64.0/19
89.144.0.0/18
94.103.160.0/20
94.249.128.0/17
95.215.32.0/22
178.18.144.0/20
185.13.156.0/22
185.47.140.0-185.47.142.255
185.121.69.0/24
185.121.71.0/24
193.28.251.0/24
195.110.14.0/23
217.69.160.0/20
IPv6:
2a00:12d8::/29
2a00:19d0::/29
2a00:cdc0::/32
2a01:bd40::/29
2a02:7a0::/29
2a02:2fc0::/29
Signature Algorithm: sha256WithRSAEncryption
04:37:03:e3:c5:59:3f:6a:0c:6c:fd:3a:ae:14:7b:0c:21:82:
1b:d0:b2:c8:64:b8:de:0a:a5:20:4c:e6:0f:af:68:77:8e:e3:
c4:2e:32:8f:72:2e:2e:0f:b7:0a:11:25:e2:b2:73:c2:dc:06:
7f:91:09:55:fb:4c:bd:d0:98:88:da:d6:85:a9:81:66:49:a2:
40:d8:a4:57:8c:4d:d1:c0:a6:86:f4:83:03:3f:59:8e:74:7d:
65:c9:2e:6e:a2:c8:4a:27:bf:8a:16:57:ad:99:f1:4e:ff:58:
36:5c:64:ed:0f:09:d6:ec:06:23:89:78:b7:bb:c4:b6:74:2a:
6b:b3:66:69:65:66:41:2c:9a:49:62:c3:fc:42:98:78:ca:a0:
77:b5:d2:18:93:e4:8b:01:6a:f6:a7:74:fa:df:0a:45:9f:9a:
6b:76:fd:20:f3:f9:2b:24:7b:c4:07:2a:b2:7a:e4:f8:9d:7e:
b3:6c:41:d8:2c:01:1f:a6:32:12:f8:8f:ab:2c:4e:cb:97:d7:
11:56:7e:a8:a6:76:a3:9d:da:64:fe:b3:7e:86:fe:01:be:82:
30:ac:1a:20:b1:be:e4:c0:ea:cb:8f:81:97:64:7d:4b:62:5d:
6f:20:d4:d5:9b:93:41:78:9a:32:9f:bf:86:0e:47:e4:44:88:
94:98:10:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 08:20:46 2025 by rpki-client