Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/MqRPdxOcA8CxpiFh0NtQWJ2GM2U.roa
File: MqRPdxOcA8CxpiFh0NtQWJ2GM2U.roa (raw, json)
Hash identifier: NG1xp7EDvl4MOXN1IYXOlwrt2Rlf2/aooQ3eDca/esw=
Subject key identifier: 32:A4:4F:77:13:9C:03:C0:B1:A6:21:61:D0:DB:50:58:9D:86:33:65
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 0194E6FE6A62145EB6949D7CE9F0C5A9A08D
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/MqRPdxOcA8CxpiFh0NtQWJ2GM2U.roa
Signing time: Sat 08 Feb 2025 19:17:00 +0000
ROA not before: Sat 08 Feb 2025 19:17:00 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 12586
IP address blocks: 5.83.128.0/19 maxlen: 32
5.83.128.0/20 maxlen: 32
5.83.145.0/24 maxlen: 24
5.83.151.0/24 maxlen: 32
5.83.156.0/24 maxlen: 24
5.83.157.0/24 maxlen: 24
5.175.128.0/24 maxlen: 32
5.175.129.0/24 maxlen: 32
5.175.130.0/24 maxlen: 32
5.175.131.0/24 maxlen: 32
5.175.133.0/24 maxlen: 32
5.175.142.0/24 maxlen: 24
5.175.143.0/24 maxlen: 24
5.175.218.0/24 maxlen: 32
5.175.219.0/24 maxlen: 32
5.175.220.0/24 maxlen: 32
5.175.225.0/24 maxlen: 32
5.175.226.0/24 maxlen: 32
5.175.227.0/24 maxlen: 32
5.175.228.0/24 maxlen: 32
5.175.229.0/24 maxlen: 32
5.175.230.0/24 maxlen: 32
5.175.231.0/24 maxlen: 32
5.175.232.0/24 maxlen: 32
5.175.235.0/24 maxlen: 32
5.175.240.0/24 maxlen: 32
5.175.241.0/24 maxlen: 32
5.175.242.0/24 maxlen: 32
5.175.243.0/24 maxlen: 32
5.175.244.0/24 maxlen: 32
5.175.251.0/24 maxlen: 32
5.175.252.0/24 maxlen: 32
5.175.253.0/24 maxlen: 32
5.175.254.0/24 maxlen: 32
5.175.255.0/24 maxlen: 32
5.230.0.0/15 maxlen: 32
5.230.6.0/24 maxlen: 32
5.230.11.0/24 maxlen: 32
5.230.102.0/24 maxlen: 32
5.230.224.0/24 maxlen: 32
5.231.24.0/24 maxlen: 24
5.231.104.0/24 maxlen: 24
5.231.233.0/24 maxlen: 32
5.231.254.0/24 maxlen: 24
77.90.0.0/18 maxlen: 32
83.243.80.0/21 maxlen: 32
85.93.0.0/19 maxlen: 32
85.93.5.0/24 maxlen: 24
85.93.20.0/24 maxlen: 32
85.118.160.0/21 maxlen: 32
87.239.128.0/21 maxlen: 32
87.239.130.0/24 maxlen: 24
89.106.64.0/19 maxlen: 32
89.144.0.0/18 maxlen: 32
94.103.160.0/20 maxlen: 32
94.249.128.0/17 maxlen: 32
94.249.138.0/24 maxlen: 24
95.215.32.0/22 maxlen: 32
178.18.144.0/20 maxlen: 32
178.18.151.0/24 maxlen: 32
185.13.156.0/22 maxlen: 32
185.47.140.0/24 maxlen: 32
185.47.141.0/24 maxlen: 32
185.121.71.0/24 maxlen: 32
193.28.251.0/24 maxlen: 32
195.110.14.0/23 maxlen: 32
217.69.160.0/20 maxlen: 32
2a00:12d8::/29 maxlen: 128
2a00:19d0::/29 maxlen: 128
2a00:cdc0::/32 maxlen: 128
2a01:bd40::/29 maxlen: 128
2a02:7a0::/29 maxlen: 128
2a02:2fc0::/29 maxlen: 128
Validation: Failed, certificate revoked on Mon 10 Feb 2025 05:05:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:e6:fe:6a:62:14:5e:b6:94:9d:7c:e9:f0:c5:a9:a0:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Feb 8 19:17:00 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=32a44f77139c03c0b1a62161d0db50589d863365
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:66:89:be:11:96:17:50:4d:dd:d9:53:f8:7b:
01:44:31:24:14:b4:d5:3f:a3:60:89:df:99:1c:70:
9a:1d:e0:61:03:70:56:3f:9a:6b:50:de:ac:65:91:
53:c6:89:22:da:28:93:37:21:13:b3:a0:d0:98:9b:
2a:53:f6:47:af:10:35:5e:21:2c:c8:25:e1:50:45:
b4:e5:ef:cb:4f:6c:f1:1d:c4:17:66:6b:f2:d0:68:
26:45:4d:6e:9f:6c:2c:3a:3c:07:96:ca:60:69:21:
74:9d:9e:74:f1:8e:b0:ff:7d:4a:b0:1b:6c:d8:2a:
bd:a4:84:ea:d3:9d:b8:d2:3a:bb:ff:4e:13:ff:0d:
ee:f5:ee:37:77:ea:04:23:c1:00:0f:39:1c:ac:bd:
6e:df:da:20:8f:d0:75:05:b6:00:a7:71:86:cd:a7:
69:6b:67:cc:e5:43:d4:c7:00:ac:ed:fd:96:43:5b:
ba:09:bc:4a:9d:2a:b3:52:92:90:18:3f:25:dc:e7:
2b:f9:47:fe:3d:ea:68:9b:f9:3c:da:4d:bb:7d:ae:
92:50:29:e8:7d:df:d3:50:fd:89:b7:2e:1a:36:9f:
09:b4:20:9e:85:ce:fa:0b:c6:59:87:62:f4:20:1d:
e3:5a:a7:07:07:be:35:3f:1e:d4:bc:38:ae:b2:35:
c6:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:A4:4F:77:13:9C:03:C0:B1:A6:21:61:D0:DB:50:58:9D:86:33:65
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/MqRPdxOcA8CxpiFh0NtQWJ2GM2U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.128.0/19
5.175.128.0/22
5.175.133.0/24
5.175.142.0/23
5.175.218.0-5.175.220.255
5.175.225.0-5.175.232.255
5.175.235.0/24
5.175.240.0-5.175.244.255
5.175.251.0-5.175.255.255
5.230.0.0/15
77.90.0.0/18
83.243.80.0/21
85.93.0.0/19
85.118.160.0/21
87.239.128.0/21
89.106.64.0/19
89.144.0.0/18
94.103.160.0/20
94.249.128.0/17
95.215.32.0/22
178.18.144.0/20
185.13.156.0/22
185.47.140.0/23
185.121.71.0/24
193.28.251.0/24
195.110.14.0/23
217.69.160.0/20
IPv6:
2a00:12d8::/29
2a00:19d0::/29
2a00:cdc0::/32
2a01:bd40::/29
2a02:7a0::/29
2a02:2fc0::/29
Signature Algorithm: sha256WithRSAEncryption
9b:22:42:ca:8b:27:5a:cf:34:14:6c:18:da:ac:97:5d:a1:38:
1a:ac:61:44:84:8c:86:87:8e:26:22:81:ef:57:cb:2e:00:49:
83:c9:62:42:9b:c5:2a:26:63:0a:d5:4b:95:a8:b4:30:56:e0:
6e:47:6b:ae:21:5d:8c:84:6c:ed:79:81:f8:a4:dc:79:6a:10:
79:14:19:c0:4a:80:e6:2c:b9:e5:22:e6:f4:cd:4d:03:9c:2c:
bc:7d:77:b8:f6:71:9a:3e:d4:72:0f:b6:c9:d5:c1:e3:d5:bf:
cd:cd:cd:49:6b:fc:be:36:a3:7c:ae:94:b0:bb:ff:68:06:6a:
18:88:ba:cd:97:9d:e4:4f:6b:1d:b8:81:f9:e7:6d:30:7d:5a:
ca:cb:b3:b8:7c:54:26:63:af:3a:55:e0:e0:34:bf:16:38:f0:
05:27:7b:ef:9a:7e:4f:47:93:4e:d2:0e:53:cb:d0:1a:9c:c8:
3c:75:2c:56:6b:95:72:e4:de:95:a3:4e:b9:7a:c9:ca:8d:7d:
71:9b:68:fd:6e:bd:78:08:c6:f6:9a:80:4e:8e:4d:80:e0:dc:
05:da:38:e2:43:7b:11:f0:c8:29:49:44:02:ed:58:e2:6d:a2:
8e:2a:ec:87:0c:ad:a4:a9:ad:16:93:8a:6a:5b:fe:b6:57:ff:
7a:42:fb:99
-----BEGIN CERTIFICATE-----
MIIF7zCCBNegAwIBAgISAZTm/mpiFF62lJ186fDFqaCNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNlNjA5NzY5ODY4NmUxNTU1ZjUxZjZjODgzYmM1YTU4NTQ5
YjIzNjIwHhcNMjUwMjA4MTkxNzAwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzMmE0NGY3NzEzOWMwM2MwYjFhNjIxNjFkMGRiNTA1ODlkODYzMzY1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy2aJvhGWF1BN3dlT+HsBRDEkFLTV
P6Ngid+ZHHCaHeBhA3BWP5prUN6sZZFTxoki2iiTNyETs6DQmJsqU/ZHrxA1XiEs
yCXhUEW05e/LT2zxHcQXZmvy0GgmRU1un2wsOjwHlspgaSF0nZ508Y6w/31KsBts
2Cq9pITq05240jq7/04T/w3u9e43d+oEI8EADzkcrL1u39ogj9B1BbYAp3GGzadp
a2fM5UPUxwCs7f2WQ1u6CbxKnSqzUpKQGD8l3Ocr+Uf+Pepom/k82k27fa6SUCno
fd/TUP2Jty4aNp8JtCCehc76C8ZZh2L0IB3jWqcHB741Px7UvDiusjXGpwIDAQAB
o4IC+zCCAvcwHQYDVR0OBBYEFDKkT3cTnAPAsaYhYdDbUFidhjNlMB8GA1UdIwQY
MBaAFD5gl2mGhuFVX1H2yIO8WlhUmyNiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGIt
ZTFiZDg4ZDNmZDA3LzEvTXFSUGR4T2NBOEN4cGlGaDBOdFFXSjJHTTJVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGItZTFiZDg4ZDNmZDA3
LzEvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBDwYIKwYBBQUHAQcBAf8Egf8wgfwwgccEAgABMIHAAwQF
BVOAAwQCBa+AAwQABa+FAwQBBa+OMAwDBAEFr9oDBAAFr9wwDAMEAAWv4QMEAAWv
6AMEAAWv6zAMAwQEBa/wAwQABa/0MAsDBAAFr/sDAwQFoAMDAQXmAwQGTVoAAwQD
U/NQAwQFVV0AAwQDVXagAwQDV++AAwQFWWpAAwQGWZAAAwQEXmegAwQHXvmAAwQC
X9cgAwQEshKQAwQCuQ2cAwQBuS+MAwQAuXlHAwQAwRz7AwQBw24OAwQE2UWgMDAE
AgACMCoDBQMqABLYAwUDKgAZ0AMFACoAzcADBQMqAb1AAwUDKgIHoAMFAyoCL8Aw
DQYJKoZIhvcNAQELBQADggEBAJsiQsqLJ1rPNBRsGNqsl12hOBqsYUSEjIaHjiYi
ge9Xyy4ASYPJYkKbxSomYwrVS5WotDBW4G5Ha64hXYyEbO15gfik3HlqEHkUGcBK
gOYsueUi5vTNTQOcLLx9d7j2cZo+1HIPtsnVwePVv83NzUlr/L42o3yulLC7/2gG
ahiIus2XneRPax24gfnnbTB9WsrLs7h8VCZjrzpV4OA0vxY48AUne++afk9Hk07S
DlPL0BqcyDx1LFZrlXLk3pWjTrl6ycqNfXGbaP1uvXgIxvaagE6OTYDg3AXaOOJD
exHwyClJRALtWOJtoo4q7IcMraSprRaTimpb/rZX/3pC+5k=
-----END CERTIFICATE-----
Generated at Mon Jun 16 03:25:10 2025 by rpki-client