Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/w7RJ0qFMHp7nvEyViZ-vTJGIcao.roa
File: w7RJ0qFMHp7nvEyViZ-vTJGIcao.roa (raw, json)
Hash identifier: PJDcv9FFHnZCI7jOVFW/jPAlpyEjM20PsPTiEkbCHP0=
Subject key identifier: C3:B4:49:D2:A1:4C:1E:9E:E7:BC:4C:95:89:9F:AF:4C:91:88:71:AA
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 0196AA70559487C434C4AB514C0E19BED60F
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/w7RJ0qFMHp7nvEyViZ-vTJGIcao.roa
Signing time: Wed 07 May 2025 11:10:10 +0000
ROA not before: Wed 07 May 2025 11:10:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 12586
IP address blocks: 5.83.128.0/19 maxlen: 32
5.83.128.0/20 maxlen: 32
5.83.136.0/24 maxlen: 24
5.83.151.0/24 maxlen: 32
5.83.156.0/24 maxlen: 24
5.83.157.0/24 maxlen: 24
5.83.158.0/24 maxlen: 24
5.175.128.0/24 maxlen: 32
5.175.129.0/24 maxlen: 32
5.175.130.0/24 maxlen: 32
5.175.131.0/24 maxlen: 32
5.175.133.0/24 maxlen: 32
5.175.143.0/24 maxlen: 24
5.175.218.0/24 maxlen: 32
5.175.219.0/24 maxlen: 32
5.175.220.0/24 maxlen: 24
5.175.225.0/24 maxlen: 32
5.175.226.0/24 maxlen: 32
5.175.227.0/24 maxlen: 32
5.175.228.0/24 maxlen: 32
5.175.229.0/24 maxlen: 32
5.175.230.0/24 maxlen: 32
5.175.231.0/24 maxlen: 32
5.175.232.0/24 maxlen: 32
5.175.235.0/24 maxlen: 32
5.175.236.0/24 maxlen: 24
5.175.240.0/24 maxlen: 32
5.175.241.0/24 maxlen: 32
5.175.242.0/24 maxlen: 32
5.175.243.0/24 maxlen: 32
5.175.244.0/24 maxlen: 32
5.175.251.0/24 maxlen: 32
5.175.252.0/24 maxlen: 32
5.175.253.0/24 maxlen: 32
5.175.254.0/24 maxlen: 32
5.175.255.0/24 maxlen: 32
5.230.0.0/15 maxlen: 32
5.230.6.0/24 maxlen: 32
5.230.11.0/24 maxlen: 32
5.230.102.0/24 maxlen: 32
5.230.224.0/24 maxlen: 32
5.231.24.0/24 maxlen: 24
5.231.30.0/24 maxlen: 24
5.231.43.0/24 maxlen: 24
5.231.48.0/24 maxlen: 24
5.231.49.0/24 maxlen: 24
5.231.50.0/24 maxlen: 24
5.231.51.0/24 maxlen: 24
5.231.52.0/24 maxlen: 24
5.231.53.0/24 maxlen: 24
5.231.94.0/24 maxlen: 24
5.231.104.0/24 maxlen: 24
5.231.105.0/24 maxlen: 24
5.231.111.0/24 maxlen: 24
5.231.114.0/24 maxlen: 24
5.231.115.0/24 maxlen: 24
5.231.125.0/24 maxlen: 24
5.231.204.0/24 maxlen: 24
5.231.232.0/24 maxlen: 24
5.231.233.0/24 maxlen: 24
77.90.0.0/18 maxlen: 32
77.90.21.0/24 maxlen: 24
77.90.49.0/24 maxlen: 24
83.243.80.0/21 maxlen: 32
83.243.86.0/24 maxlen: 24
85.93.0.0/19 maxlen: 32
85.93.12.0/24 maxlen: 24
85.93.15.0/24 maxlen: 24
85.118.160.0/21 maxlen: 32
85.118.167.0/24 maxlen: 24
87.239.128.0/21 maxlen: 32
87.239.129.0/24 maxlen: 24
89.106.64.0/19 maxlen: 32
89.106.70.0/24 maxlen: 24
89.106.72.0/24 maxlen: 24
89.106.73.0/24 maxlen: 24
89.106.89.0/24 maxlen: 24
89.106.91.0/24 maxlen: 24
89.106.94.0/24 maxlen: 24
89.144.0.0/18 maxlen: 32
89.144.6.0/24 maxlen: 24
89.144.7.0/24 maxlen: 24
89.144.17.0/24 maxlen: 24
89.144.18.0/24 maxlen: 24
89.144.21.0/24 maxlen: 24
89.144.34.0/24 maxlen: 24
89.144.38.0/24 maxlen: 24
89.144.39.0/24 maxlen: 24
89.144.47.0/24 maxlen: 24
89.144.48.0/24 maxlen: 24
89.144.49.0/24 maxlen: 24
89.144.50.0/24 maxlen: 24
89.144.51.0/24 maxlen: 24
89.144.52.0/24 maxlen: 24
89.144.59.0/24 maxlen: 24
89.144.60.0/24 maxlen: 24
94.103.160.0/20 maxlen: 32
94.249.128.0/17 maxlen: 32
94.249.172.0/24 maxlen: 24
94.249.173.0/24 maxlen: 24
94.249.194.0/24 maxlen: 24
94.249.212.0/24 maxlen: 24
94.249.214.0/24 maxlen: 24
94.249.215.0/24 maxlen: 24
94.249.233.0/24 maxlen: 24
94.249.238.0/24 maxlen: 24
94.249.239.0/24 maxlen: 24
95.215.32.0/22 maxlen: 32
178.18.144.0/20 maxlen: 32
178.18.151.0/24 maxlen: 24
185.13.156.0/22 maxlen: 32
185.13.159.0/24 maxlen: 24
185.47.140.0/24 maxlen: 32
185.47.141.0/24 maxlen: 32
185.47.142.0/24 maxlen: 24
185.121.71.0/24 maxlen: 32
193.28.251.0/24 maxlen: 32
195.110.14.0/23 maxlen: 32
217.69.160.0/20 maxlen: 32
217.69.167.0/24 maxlen: 24
217.69.170.0/24 maxlen: 24
2a00:12d8::/29 maxlen: 128
2a00:19d0::/29 maxlen: 128
2a00:cdc0::/32 maxlen: 128
2a01:bd40::/29 maxlen: 128
2a02:7a0::/29 maxlen: 128
2a02:2fc0::/29 maxlen: 128
2a02:2fc0::/48 maxlen: 48
2a02:2fc0:1::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 May 2025 20:10:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:aa:70:55:94:87:c4:34:c4:ab:51:4c:0e:19:be:d6:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: May 7 11:10:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c3b449d2a14c1e9ee7bc4c95899faf4c918871aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:50:e3:26:1e:06:f5:af:be:5c:3f:37:65:d1:
e6:b2:95:bc:2c:eb:7e:32:4b:ea:92:8f:f1:d1:3d:
c8:cf:7c:02:63:c8:56:f4:f9:ee:50:4e:13:b7:ee:
13:3a:23:82:a8:c0:1d:61:70:78:3d:00:21:f6:ed:
78:e2:4e:93:78:8a:f3:fd:1c:dc:5d:5c:c5:4d:d7:
2d:55:c5:1a:09:cd:87:b9:74:7d:5d:e3:af:f7:a5:
8a:a3:8e:27:76:60:dd:a7:96:3e:7a:93:d8:6c:e1:
ae:9b:99:0d:e3:9d:6d:49:ed:8c:30:5d:0d:a3:8f:
76:80:fe:56:d3:26:dd:fd:fa:ae:a4:e9:32:a0:40:
5c:95:27:bb:82:49:6e:25:d5:12:09:13:4e:1c:0c:
7c:f6:82:82:32:be:b0:93:65:ac:60:b5:17:cc:9f:
03:04:96:cb:31:ce:63:c8:4e:80:c9:f4:3b:1c:aa:
04:ef:a3:e3:53:bb:ab:3a:c3:dd:31:e6:a5:1b:9f:
96:08:f4:2d:b5:5f:7b:fe:af:06:91:09:42:45:ad:
df:d3:73:d1:e3:20:77:bd:ec:89:f5:4a:83:b1:8d:
c8:b7:18:df:bc:c5:c0:66:81:8b:21:b5:c7:0d:b1:
48:f1:90:b7:ca:dd:c9:48:ee:51:45:97:9a:9a:fe:
0c:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:B4:49:D2:A1:4C:1E:9E:E7:BC:4C:95:89:9F:AF:4C:91:88:71:AA
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/w7RJ0qFMHp7nvEyViZ-vTJGIcao.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.128.0/19
5.175.128.0/22
5.175.133.0/24
5.175.143.0/24
5.175.218.0-5.175.220.255
5.175.225.0-5.175.232.255
5.175.235.0-5.175.236.255
5.175.240.0-5.175.244.255
5.175.251.0-5.175.255.255
5.230.0.0/15
77.90.0.0/18
83.243.80.0/21
85.93.0.0/19
85.118.160.0/21
87.239.128.0/21
89.106.64.0/19
89.144.0.0/18
94.103.160.0/20
94.249.128.0/17
95.215.32.0/22
178.18.144.0/20
185.13.156.0/22
185.47.140.0-185.47.142.255
185.121.71.0/24
193.28.251.0/24
195.110.14.0/23
217.69.160.0/20
IPv6:
2a00:12d8::/29
2a00:19d0::/29
2a00:cdc0::/32
2a01:bd40::/29
2a02:7a0::/29
2a02:2fc0::/29
Signature Algorithm: sha256WithRSAEncryption
52:84:85:c1:11:9f:f0:3c:f3:36:5c:53:91:e7:6c:fb:5c:f9:
1f:35:02:50:cd:3d:08:1a:c5:2c:87:af:0f:84:da:f9:e6:7b:
45:5c:58:35:33:1e:33:6c:df:cf:7c:88:e5:5d:c0:2e:1e:5a:
74:ac:2d:0b:6f:d5:6f:a3:61:00:45:fa:d4:09:80:e1:20:f8:
f0:78:c7:c9:21:36:02:7a:cb:2f:e3:36:27:25:f7:53:0d:ea:
f7:e5:72:05:5e:ac:9b:e5:48:28:ac:ac:20:6c:ec:50:0b:c7:
c0:9c:81:d0:bd:37:1b:4d:91:b0:f7:02:f8:82:ea:df:59:34:
10:5d:80:df:18:9f:c1:89:35:e1:73:e0:1e:11:56:ff:61:85:
17:24:21:a7:e0:a6:b3:71:ba:69:22:b4:0e:25:dc:81:aa:98:
65:48:dd:eb:8a:73:90:f5:f5:dd:30:25:a6:4c:3a:e4:13:3a:
7a:e0:0c:88:a9:c9:6b:fe:b0:e3:28:76:3d:45:6e:0a:fc:49:
54:f4:36:03:7c:f4:3d:1f:df:2d:ac:26:a8:ad:78:2d:20:22:
fd:f6:f2:2b:be:09:d1:6e:40:6c:4d:8b:0d:b2:07:f1:fb:ab:
4c:05:de:c3:27:d5:18:bf:35:8e:94:88:a6:67:71:19:56:26:
1b:83:64:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 05:32:26 2025 by rpki-client