Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/SQl2Ta_fxg-WpLi7kR_zED1OlXM.roa
File: SQl2Ta_fxg-WpLi7kR_zED1OlXM.roa (raw, json)
Hash identifier: EzEMOVYHo8HIwnG6s2DqGolAq/Qqj53IUx0ePUU7PxU=
Subject key identifier: 49:09:76:4D:AF:DF:C6:0F:96:A4:B8:BB:91:1F:F3:10:3D:4E:95:73
Certificate issuer: /CN=e9713ef25277e13dd73f44196fda5cec0fd9ce16
Certificate serial: 0197688C0B5BE80347226F5C0D307DBD69BC
Authority key identifier: E9:71:3E:F2:52:77:E1:3D:D7:3F:44:19:6F:DA:5C:EC:0F:D9:CE:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/SQl2Ta_fxg-WpLi7kR_zED1OlXM.roa
Signing time: Fri 13 Jun 2025 09:08:17 +0000
ROA not before: Fri 13 Jun 2025 09:08:17 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 9125
IP address blocks: 5.172.33.0/24 maxlen: 24
5.172.34.0/23 maxlen: 23
5.172.34.0/24 maxlen: 24
5.172.36.0/22 maxlen: 22
5.172.36.0/23 maxlen: 23
89.23.65.0/24 maxlen: 24
89.23.66.0/23 maxlen: 23
89.23.67.0/24 maxlen: 24
89.23.68.0/23 maxlen: 23
89.23.70.0/24 maxlen: 24
89.23.74.0/24 maxlen: 24
89.23.75.0/24 maxlen: 24
89.23.77.0/24 maxlen: 24
89.23.78.0/24 maxlen: 24
89.23.79.0/24 maxlen: 24
89.23.83.0/24 maxlen: 24
89.23.84.0/24 maxlen: 24
89.23.86.0/24 maxlen: 24
89.23.88.0/24 maxlen: 24
89.23.90.0/24 maxlen: 24
92.42.248.0/22 maxlen: 22
92.42.252.0/24 maxlen: 24
92.42.253.0/24 maxlen: 24
92.42.254.0/24 maxlen: 24
92.42.255.0/24 maxlen: 24
93.93.192.0/21 maxlen: 21
95.140.112.0/22 maxlen: 22
95.140.115.0/24 maxlen: 24
95.140.116.0/22 maxlen: 22
95.140.120.0/23 maxlen: 23
95.140.124.0/22 maxlen: 22
95.140.125.0/24 maxlen: 24
109.111.224.0/24 maxlen: 24
109.111.225.0/24 maxlen: 24
109.111.226.0/24 maxlen: 24
109.111.227.0/24 maxlen: 24
109.111.228.0/24 maxlen: 24
109.111.229.0/24 maxlen: 24
109.111.230.0/23 maxlen: 23
109.111.232.0/22 maxlen: 22
109.111.236.0/22 maxlen: 22
109.111.240.0/24 maxlen: 24
109.111.243.0/24 maxlen: 24
109.111.244.0/24 maxlen: 24
109.111.245.0/24 maxlen: 24
109.111.246.0/24 maxlen: 24
109.111.247.0/24 maxlen: 24
109.111.248.0/24 maxlen: 24
109.111.249.0/24 maxlen: 24
109.111.250.0/24 maxlen: 24
109.111.252.0/23 maxlen: 23
109.111.254.0/24 maxlen: 24
178.254.128.0/21 maxlen: 21
178.254.133.0/24 maxlen: 24
178.254.136.0/22 maxlen: 22
178.254.140.0/22 maxlen: 22
178.254.144.0/24 maxlen: 24
178.254.145.0/24 maxlen: 24
178.254.146.0/24 maxlen: 24
178.254.148.0/24 maxlen: 24
178.254.149.0/24 maxlen: 24
178.254.151.0/24 maxlen: 24
178.254.152.0/24 maxlen: 24
178.254.153.0/24 maxlen: 24
178.254.154.0/24 maxlen: 24
178.254.155.0/24 maxlen: 24
178.254.156.0/24 maxlen: 24
178.254.157.0/24 maxlen: 24
178.254.158.0/24 maxlen: 24
178.254.159.0/24 maxlen: 24
178.254.163.0/24 maxlen: 24
178.254.165.0/24 maxlen: 24
178.254.169.0/24 maxlen: 24
178.254.172.0/24 maxlen: 24
178.254.175.0/24 maxlen: 24
178.254.177.0/24 maxlen: 24
178.254.182.0/24 maxlen: 24
178.254.183.0/24 maxlen: 24
178.254.184.0/24 maxlen: 24
178.254.187.0/24 maxlen: 24
178.254.188.0/22 maxlen: 24
185.157.44.0/24 maxlen: 24
193.104.68.0/24 maxlen: 24
217.169.208.0/20 maxlen: 20
217.169.208.0/22 maxlen: 22
217.169.212.0/22 maxlen: 22
217.169.216.0/22 maxlen: 22
217.169.219.0/24 maxlen: 24
217.169.220.0/22 maxlen: 22
2a02:b58::/32 maxlen: 32
Validation: Failed, certificate revoked on Fri 13 Jun 2025 12:35:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:68:8c:0b:5b:e8:03:47:22:6f:5c:0d:30:7d:bd:69:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e9713ef25277e13dd73f44196fda5cec0fd9ce16
Validity
Not Before: Jun 13 09:08:17 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4909764dafdfc60f96a4b8bb911ff3103d4e9573
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:04:01:6b:74:4c:c7:89:18:b7:59:42:df:f9:
76:e0:f9:23:4e:9f:1b:5a:a0:8f:7e:0b:4d:da:60:
aa:d2:59:f4:44:96:00:71:d9:50:4b:98:86:61:37:
2e:0d:0d:5f:9a:25:44:6a:42:4b:48:d6:39:fe:40:
42:ee:03:2f:a4:1d:aa:f8:ae:7f:52:4b:e2:65:17:
d7:d4:8e:a2:08:74:da:77:a4:e0:9f:e5:c6:52:1b:
1b:62:85:2c:a6:83:34:ab:ee:15:f4:1b:74:98:f4:
cd:6c:0b:a9:4a:2d:64:6a:d7:c2:4d:76:98:77:d8:
bf:74:7a:71:35:15:49:ad:d4:5d:f1:74:13:f3:98:
36:3c:6e:d6:65:65:77:b6:31:52:42:5c:04:f0:7a:
a3:63:cf:fe:61:4a:d6:d0:07:30:fa:40:cd:f7:9c:
cd:cf:df:db:fa:05:04:28:e1:8e:52:2b:51:f6:fe:
a2:eb:e4:c5:59:b3:f0:82:8c:c5:a2:ac:e3:19:43:
ba:51:65:9d:63:97:a8:df:8c:f3:52:c8:ec:71:15:
ae:6a:94:98:b7:0c:e1:03:d4:cc:3c:f4:68:16:7a:
93:fd:a4:a3:77:1b:56:ca:f0:a1:a5:2b:d0:f0:82:
25:3d:df:b6:b3:07:38:29:61:4b:25:38:e9:2a:69:
f2:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:09:76:4D:AF:DF:C6:0F:96:A4:B8:BB:91:1F:F3:10:3D:4E:95:73
X509v3 Authority Key Identifier:
keyid:E9:71:3E:F2:52:77:E1:3D:D7:3F:44:19:6F:DA:5C:EC:0F:D9:CE:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/SQl2Ta_fxg-WpLi7kR_zED1OlXM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.172.33.0-5.172.39.255
89.23.65.0-89.23.70.255
89.23.74.0/23
89.23.77.0-89.23.79.255
89.23.83.0-89.23.84.255
89.23.86.0/24
89.23.88.0/24
89.23.90.0/24
92.42.248.0/21
93.93.192.0/21
95.140.112.0-95.140.121.255
95.140.124.0/22
109.111.224.0-109.111.240.255
109.111.243.0-109.111.250.255
109.111.252.0-109.111.254.255
178.254.128.0-178.254.146.255
178.254.148.0/23
178.254.151.0-178.254.159.255
178.254.163.0/24
178.254.165.0/24
178.254.169.0/24
178.254.172.0/24
178.254.175.0/24
178.254.177.0/24
178.254.182.0-178.254.184.255
178.254.187.0-178.254.191.255
185.157.44.0/24
193.104.68.0/24
217.169.208.0/20
IPv6:
2a02:b58::/32
Signature Algorithm: sha256WithRSAEncryption
2f:39:5b:43:cd:d4:54:82:18:c0:8d:bf:ad:9c:d4:3a:28:e1:
e9:a6:19:70:1a:55:36:8e:78:68:9f:2d:98:9c:75:95:41:40:
82:48:d4:b5:02:53:f0:c4:77:87:b7:2c:c7:d1:e3:5f:6a:95:
15:b4:a2:2d:96:b0:6f:4b:3d:a2:29:30:c3:fd:0f:aa:98:e6:
55:48:dd:4d:77:36:7a:69:e1:fe:0c:bd:1e:67:cc:fe:8b:7a:
b7:cf:bb:57:16:80:6c:1e:9d:b0:8d:7c:17:fa:84:28:65:18:
13:1a:0f:76:74:f5:ec:ea:be:e0:fa:9a:1a:db:ce:b7:00:1e:
8c:8b:ca:a6:e2:9a:05:c5:7a:dc:b3:84:16:74:4e:8d:6c:29:
d9:96:21:28:32:7c:14:f4:96:f4:19:e0:f1:cc:6e:f4:65:7e:
ff:01:0b:49:45:15:de:2c:30:09:f7:0d:93:d2:ec:d2:27:ca:
80:52:3c:d4:cc:b8:7c:e4:01:42:8d:f5:e6:09:b5:32:67:43:
ab:11:29:5e:8d:ad:eb:bc:22:5e:07:b5:91:6d:e0:e6:2c:6d:
17:83:50:8e:33:a0:26:d2:65:09:3a:c5:7b:52:bb:13:cf:97:
d8:71:c0:d8:56:4b:bd:e5:49:d8:5a:69:ec:7c:b9:f5:bf:6e:
00:4d:45:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 17 21:46:29 2025 by rpki-client