Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/yhlbU0RPaAVBjao0pafO6vMJsKE.roa
File: yhlbU0RPaAVBjao0pafO6vMJsKE.roa (raw, json)
Hash identifier: 0t48SH6ZEmMovKariruoualMa9uFn8ieoG2+cssxEuA=
Subject key identifier: CA:19:5B:53:44:4F:68:05:41:8D:AA:34:A5:A7:CE:EA:F3:09:B0:A1
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 0196ACAE5D9804F86D5A4051BB5AE38B523D
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/yhlbU0RPaAVBjao0pafO6vMJsKE.roa
Signing time: Wed 07 May 2025 21:37:10 +0000
ROA not before: Wed 07 May 2025 21:37:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 12586
IP address blocks: 5.83.128.0/19 maxlen: 32
5.83.128.0/20 maxlen: 32
5.83.136.0/24 maxlen: 24
5.83.151.0/24 maxlen: 32
5.83.156.0/24 maxlen: 24
5.83.157.0/24 maxlen: 24
5.83.158.0/24 maxlen: 24
5.175.128.0/24 maxlen: 32
5.175.129.0/24 maxlen: 32
5.175.130.0/24 maxlen: 32
5.175.131.0/24 maxlen: 32
5.175.133.0/24 maxlen: 32
5.175.143.0/24 maxlen: 24
5.175.218.0/24 maxlen: 32
5.175.219.0/24 maxlen: 32
5.175.220.0/24 maxlen: 24
5.175.225.0/24 maxlen: 32
5.175.226.0/24 maxlen: 32
5.175.227.0/24 maxlen: 32
5.175.228.0/24 maxlen: 32
5.175.229.0/24 maxlen: 32
5.175.230.0/24 maxlen: 32
5.175.231.0/24 maxlen: 32
5.175.232.0/24 maxlen: 32
5.175.235.0/24 maxlen: 32
5.175.236.0/24 maxlen: 24
5.175.240.0/24 maxlen: 32
5.175.241.0/24 maxlen: 32
5.175.242.0/24 maxlen: 32
5.175.243.0/24 maxlen: 32
5.175.244.0/24 maxlen: 32
5.175.251.0/24 maxlen: 32
5.175.252.0/24 maxlen: 32
5.175.253.0/24 maxlen: 32
5.175.254.0/24 maxlen: 32
5.175.255.0/24 maxlen: 32
5.230.0.0/15 maxlen: 32
5.230.6.0/24 maxlen: 32
5.230.11.0/24 maxlen: 32
5.230.102.0/24 maxlen: 32
5.230.224.0/24 maxlen: 32
5.231.24.0/24 maxlen: 24
5.231.30.0/24 maxlen: 24
5.231.43.0/24 maxlen: 24
5.231.48.0/24 maxlen: 24
5.231.49.0/24 maxlen: 24
5.231.50.0/24 maxlen: 24
5.231.51.0/24 maxlen: 24
5.231.52.0/24 maxlen: 24
5.231.53.0/24 maxlen: 24
5.231.94.0/24 maxlen: 24
5.231.104.0/24 maxlen: 24
5.231.105.0/24 maxlen: 24
5.231.111.0/24 maxlen: 24
5.231.114.0/24 maxlen: 24
5.231.115.0/24 maxlen: 24
5.231.125.0/24 maxlen: 24
5.231.204.0/24 maxlen: 24
5.231.232.0/24 maxlen: 24
5.231.233.0/24 maxlen: 24
77.90.0.0/18 maxlen: 32
77.90.21.0/24 maxlen: 24
77.90.49.0/24 maxlen: 24
83.243.80.0/21 maxlen: 32
83.243.86.0/24 maxlen: 24
85.93.0.0/19 maxlen: 32
85.93.12.0/24 maxlen: 24
85.93.15.0/24 maxlen: 24
85.118.160.0/21 maxlen: 32
85.118.167.0/24 maxlen: 24
87.239.128.0/21 maxlen: 32
87.239.129.0/24 maxlen: 24
89.106.64.0/19 maxlen: 32
89.106.70.0/24 maxlen: 24
89.106.72.0/24 maxlen: 24
89.106.73.0/24 maxlen: 24
89.106.89.0/24 maxlen: 24
89.106.91.0/24 maxlen: 24
89.106.94.0/24 maxlen: 24
89.144.0.0/18 maxlen: 32
89.144.6.0/24 maxlen: 24
89.144.7.0/24 maxlen: 24
89.144.17.0/24 maxlen: 24
89.144.18.0/24 maxlen: 24
89.144.21.0/24 maxlen: 24
89.144.34.0/24 maxlen: 24
89.144.38.0/24 maxlen: 24
89.144.39.0/24 maxlen: 24
89.144.47.0/24 maxlen: 24
89.144.48.0/24 maxlen: 24
89.144.49.0/24 maxlen: 24
89.144.50.0/24 maxlen: 24
89.144.51.0/24 maxlen: 24
89.144.52.0/24 maxlen: 24
89.144.59.0/24 maxlen: 24
89.144.60.0/24 maxlen: 24
94.103.160.0/20 maxlen: 32
94.249.128.0/17 maxlen: 32
94.249.172.0/24 maxlen: 24
94.249.173.0/24 maxlen: 24
94.249.180.0/24 maxlen: 24
94.249.181.0/24 maxlen: 24
94.249.182.0/24 maxlen: 24
94.249.191.0/24 maxlen: 24
94.249.194.0/24 maxlen: 24
94.249.212.0/24 maxlen: 24
94.249.214.0/24 maxlen: 24
94.249.215.0/24 maxlen: 24
94.249.233.0/24 maxlen: 24
94.249.238.0/24 maxlen: 24
94.249.239.0/24 maxlen: 24
95.215.32.0/22 maxlen: 32
178.18.144.0/20 maxlen: 32
178.18.151.0/24 maxlen: 24
185.13.156.0/22 maxlen: 32
185.13.159.0/24 maxlen: 24
185.47.140.0/24 maxlen: 32
185.47.141.0/24 maxlen: 32
185.47.142.0/24 maxlen: 24
185.121.71.0/24 maxlen: 32
193.28.251.0/24 maxlen: 32
195.110.14.0/23 maxlen: 32
217.69.160.0/20 maxlen: 32
217.69.167.0/24 maxlen: 24
217.69.170.0/24 maxlen: 24
2a00:12d8::/29 maxlen: 128
2a00:19d0::/29 maxlen: 128
2a00:cdc0::/32 maxlen: 128
2a01:bd40::/29 maxlen: 128
2a02:7a0::/29 maxlen: 128
2a02:2fc0::/29 maxlen: 128
2a02:2fc0::/48 maxlen: 48
2a02:2fc0:1::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 08 May 2025 04:09:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ac:ae:5d:98:04:f8:6d:5a:40:51:bb:5a:e3:8b:52:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: May 7 21:37:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ca195b53444f6805418daa34a5a7ceeaf309b0a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:82:c6:53:e6:3c:fd:1d:57:11:0c:cb:bd:de:
b2:09:54:24:34:ee:a9:c1:d3:67:1e:56:cb:1d:9e:
b2:c8:16:84:a7:c9:e7:01:f8:9b:6b:65:2b:2a:d1:
16:9f:78:d4:03:a4:d0:7a:2c:9c:ec:98:e7:cf:ae:
d7:36:19:2e:1f:46:a6:50:d7:08:bb:82:23:f6:cf:
e4:15:f6:53:39:c5:51:27:7d:81:69:6e:83:99:1b:
b5:6d:f9:1f:0b:a5:ef:05:f1:47:68:7e:dc:03:45:
38:fd:52:d3:f8:ad:66:ed:e3:e5:a0:83:6e:ac:3c:
c4:9c:d4:13:a9:d3:a0:dc:e9:9a:3e:a4:ef:49:36:
64:91:3e:94:91:34:9c:0f:1d:1f:4e:53:f4:8e:d9:
0c:0e:e9:e9:85:e5:7a:2e:e0:c5:4a:d1:b0:f0:5e:
4e:9c:d6:e5:01:b4:6d:db:89:0c:ee:cc:19:71:37:
f6:5b:26:5e:e3:88:3f:57:ed:8b:9e:98:d9:74:50:
f6:b5:f2:c7:0a:dd:59:e6:86:b4:7a:fe:f6:85:20:
18:c3:41:d5:60:24:7d:ab:94:55:51:45:ff:ad:16:
70:3d:38:39:a5:ff:31:11:aa:7e:fe:ab:4c:72:30:
d1:fa:c0:1b:14:4f:29:c8:18:40:8e:d0:2e:63:df:
1f:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:19:5B:53:44:4F:68:05:41:8D:AA:34:A5:A7:CE:EA:F3:09:B0:A1
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/yhlbU0RPaAVBjao0pafO6vMJsKE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.128.0/19
5.175.128.0/22
5.175.133.0/24
5.175.143.0/24
5.175.218.0-5.175.220.255
5.175.225.0-5.175.232.255
5.175.235.0-5.175.236.255
5.175.240.0-5.175.244.255
5.175.251.0-5.175.255.255
5.230.0.0/15
77.90.0.0/18
83.243.80.0/21
85.93.0.0/19
85.118.160.0/21
87.239.128.0/21
89.106.64.0/19
89.144.0.0/18
94.103.160.0/20
94.249.128.0/17
95.215.32.0/22
178.18.144.0/20
185.13.156.0/22
185.47.140.0-185.47.142.255
185.121.71.0/24
193.28.251.0/24
195.110.14.0/23
217.69.160.0/20
IPv6:
2a00:12d8::/29
2a00:19d0::/29
2a00:cdc0::/32
2a01:bd40::/29
2a02:7a0::/29
2a02:2fc0::/29
Signature Algorithm: sha256WithRSAEncryption
d7:32:9a:fd:c6:5f:e1:98:49:af:a0:75:1e:9b:6c:a6:bd:ed:
9c:f1:50:90:68:47:e3:5d:be:82:41:cb:d2:79:58:4d:6a:9e:
e0:de:de:63:2a:68:03:04:13:6e:08:fd:0a:a8:e8:6b:43:72:
1c:51:43:a7:4c:84:7c:c9:1c:25:3e:06:f2:66:70:d9:81:98:
bd:0a:ad:da:70:21:44:58:f1:7f:80:20:32:e3:74:24:f9:71:
b6:99:e0:76:26:15:ad:f1:47:01:4e:56:99:0f:12:79:d7:1a:
62:c7:55:69:e3:1b:31:e4:88:4f:90:9f:ef:9b:57:22:c1:d6:
8a:20:78:83:23:0f:c6:bb:e5:6e:a8:03:b1:21:fe:a2:e0:13:
3e:29:41:20:dd:d2:70:3a:17:93:c9:65:e3:90:71:20:7f:20:
fb:a3:99:87:2c:d5:97:e1:be:63:f6:1d:b4:b1:10:9f:05:ee:
0e:10:ec:25:a7:31:16:1b:83:b5:4d:6a:5d:01:90:61:ef:48:
08:24:aa:d0:d1:2f:da:ee:8b:bf:4e:67:30:5b:9e:cc:68:29:
85:6e:21:35:8c:46:b3:55:2c:b4:70:a7:a6:48:42:27:9b:5f:
c9:c4:2a:cc:56:fd:64:c5:6f:9b:07:ea:46:0f:44:87:95:ea:
dd:ec:6b:40
-----BEGIN CERTIFICATE-----
MIIGATCCBOmgAwIBAgISAZasrl2YBPhtWkBRu1rji1I9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNlNjA5NzY5ODY4NmUxNTU1ZjUxZjZjODgzYmM1YTU4NTQ5
YjIzNjIwHhcNMjUwNTA3MjEzNzEwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjYTE5NWI1MzQ0NGY2ODA1NDE4ZGFhMzRhNWE3Y2VlYWYzMDliMGExMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs4LGU+Y8/R1XEQzLvd6yCVQkNO6p
wdNnHlbLHZ6yyBaEp8nnAfiba2UrKtEWn3jUA6TQeiyc7Jjnz67XNhkuH0amUNcI
u4Ij9s/kFfZTOcVRJ32BaW6DmRu1bfkfC6XvBfFHaH7cA0U4/VLT+K1m7ePloINu
rDzEnNQTqdOg3OmaPqTvSTZkkT6UkTScDx0fTlP0jtkMDunpheV6LuDFStGw8F5O
nNblAbRt24kM7swZcTf2WyZe44g/V+2LnpjZdFD2tfLHCt1Z5oa0ev72hSAYw0HV
YCR9q5RVUUX/rRZwPTg5pf8xEap+/qtMcjDR+sAbFE8pyBhAjtAuY98f1wIDAQAB
o4IDDTCCAwkwHQYDVR0OBBYEFMoZW1NET2gFQY2qNKWnzurzCbChMB8GA1UdIwQY
MBaAFD5gl2mGhuFVX1H2yIO8WlhUmyNiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGIt
ZTFiZDg4ZDNmZDA3LzEveWhsYlUwUlBhQVZCamFvMHBhZk82dk1Kc0tFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGItZTFiZDg4ZDNmZDA3
LzEvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBIQYIKwYBBQUHAQcBAf8EggEQMIIBDDCB1wQCAAEwgdAD
BAUFU4ADBAIFr4ADBAAFr4UDBAAFr48wDAMEAQWv2gMEAAWv3DAMAwQABa/hAwQA
Ba/oMAwDBAAFr+sDBAAFr+wwDAMEBAWv8AMEAAWv9DALAwQABa/7AwMEBaADAwEF
5gMEBk1aAAMEA1PzUAMEBVVdAAMEA1V2oAMEA1fvgAMEBVlqQAMEBlmQAAMEBF5n
oAMEB175gAMEAl/XIAMEBLISkAMEArkNnDAMAwQCuS+MAwQAuS+OAwQAuXlHAwQA
wRz7AwQBw24OAwQE2UWgMDAEAgACMCoDBQMqABLYAwUDKgAZ0AMFACoAzcADBQMq
Ab1AAwUDKgIHoAMFAyoCL8AwDQYJKoZIhvcNAQELBQADggEBANcymv3GX+GYSa+g
dR6bbKa97ZzxUJBoR+NdvoJBy9J5WE1qnuDe3mMqaAMEE24I/Qqo6GtDchxRQ6dM
hHzJHCU+BvJmcNmBmL0KrdpwIURY8X+AIDLjdCT5cbaZ4HYmFa3xRwFOVpkPEnnX
GmLHVWnjGzHkiE+Qn++bVyLB1oogeIMjD8a75W6oA7Eh/qLgEz4pQSDd0nA6F5PJ
ZeOQcSB/IPujmYcs1ZfhvmP2HbSxEJ8F7g4Q7CWnMRYbg7VNal0BkGHvSAgkqtDR
L9rui79OZzBbnsxoKYVuITWMRrNVLLRwp6ZIQiebX8nEKsxW/WTFb5sH6kYPRIeV
6t3sa0A=
-----END CERTIFICATE-----
Generated at Sun Jun 15 08:46:22 2025 by rpki-client