Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/340dcd-3aee-4012-9233-c15532baff7d/1/JQbKzLiXioj71_u-MdomxlC3Wf8.roa
File: JQbKzLiXioj71_u-MdomxlC3Wf8.roa (raw, json)
Hash identifier: bp8vDWag95o2Qc+DhqhRQf6u2+wJfYdYx7JCmtcv/GI=
Subject key identifier: 25:06:CA:CC:B8:97:8A:88:FB:D7:FB:BE:31:DA:26:C6:50:B7:59:FF
Certificate issuer: /CN=be550b8eff90cccee9f8d3134b6438996b7d27cd
Certificate serial: 0196432528113C74D05849BCDDCA435B5D6C
Authority key identifier: BE:55:0B:8E:FF:90:CC:CE:E9:F8:D3:13:4B:64:38:99:6B:7D:27:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vlULjv-QzM7p-NMTS2Q4mWt9J80.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/340dcd-3aee-4012-9233-c15532baff7d/1/JQbKzLiXioj71_u-MdomxlC3Wf8.roa
Signing time: Thu 17 Apr 2025 09:47:10 +0000
ROA not before: Thu 17 Apr 2025 09:47:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 204170
IP address blocks: 5.102.176.0/21 maxlen: 21
5.102.176.0/24 maxlen: 24
5.102.178.0/24 maxlen: 24
5.102.179.0/24 maxlen: 24
5.102.180.0/24 maxlen: 24
5.102.181.0/24 maxlen: 24
5.102.182.0/24 maxlen: 24
5.102.183.0/24 maxlen: 24
78.111.32.0/20 maxlen: 20
78.111.32.0/24 maxlen: 24
78.111.33.0/24 maxlen: 24
78.111.34.0/24 maxlen: 24
78.111.35.0/24 maxlen: 24
78.111.36.0/24 maxlen: 24
78.111.37.0/24 maxlen: 24
78.111.38.0/24 maxlen: 24
78.111.39.0/24 maxlen: 24
78.111.40.0/24 maxlen: 24
78.111.41.0/24 maxlen: 24
78.111.42.0/24 maxlen: 24
78.111.43.0/24 maxlen: 24
78.111.44.0/24 maxlen: 24
78.111.45.0/24 maxlen: 24
78.111.46.0/24 maxlen: 24
78.111.47.0/24 maxlen: 24
84.242.32.0/20 maxlen: 20
84.242.32.0/24 maxlen: 24
84.242.33.0/24 maxlen: 24
84.242.34.0/24 maxlen: 24
84.242.35.0/24 maxlen: 24
84.242.36.0/24 maxlen: 24
84.242.37.0/24 maxlen: 24
84.242.38.0/24 maxlen: 24
84.242.39.0/24 maxlen: 24
84.242.40.0/24 maxlen: 24
84.242.41.0/24 maxlen: 24
84.242.42.0/24 maxlen: 24
84.242.43.0/24 maxlen: 24
84.242.44.0/24 maxlen: 24
84.242.45.0/24 maxlen: 24
84.242.46.0/24 maxlen: 24
84.242.47.0/24 maxlen: 24
94.176.16.0/20 maxlen: 20
94.176.16.0/24 maxlen: 24
94.176.17.0/24 maxlen: 24
94.176.18.0/24 maxlen: 24
94.176.19.0/24 maxlen: 24
94.176.20.0/24 maxlen: 24
94.176.21.0/24 maxlen: 24
94.176.22.0/24 maxlen: 24
94.176.23.0/24 maxlen: 24
94.176.24.0/24 maxlen: 24
94.176.25.0/24 maxlen: 24
94.176.26.0/24 maxlen: 24
94.176.27.0/24 maxlen: 24
94.176.28.0/24 maxlen: 24
94.176.29.0/24 maxlen: 24
94.176.30.0/24 maxlen: 24
94.176.31.0/24 maxlen: 24
96.9.128.0/19 maxlen: 19
96.9.128.0/24 maxlen: 24
96.9.129.0/24 maxlen: 24
96.9.130.0/24 maxlen: 24
96.9.131.0/24 maxlen: 24
96.9.132.0/24 maxlen: 24
96.9.133.0/24 maxlen: 24
96.9.134.0/24 maxlen: 24
96.9.135.0/24 maxlen: 24
96.9.136.0/24 maxlen: 24
96.9.137.0/24 maxlen: 24
96.9.138.0/24 maxlen: 24
96.9.139.0/24 maxlen: 24
96.9.140.0/24 maxlen: 24
96.9.141.0/24 maxlen: 24
96.9.142.0/24 maxlen: 24
96.9.143.0/24 maxlen: 24
96.9.144.0/24 maxlen: 24
96.9.146.0/24 maxlen: 24
96.9.147.0/24 maxlen: 24
96.9.148.0/24 maxlen: 24
96.9.149.0/24 maxlen: 24
96.9.150.0/24 maxlen: 24
96.9.151.0/24 maxlen: 24
96.9.152.0/24 maxlen: 24
96.9.153.0/24 maxlen: 24
96.9.154.0/24 maxlen: 24
96.9.155.0/24 maxlen: 24
96.9.156.0/24 maxlen: 24
96.9.157.0/24 maxlen: 24
96.9.158.0/24 maxlen: 24
96.9.159.0/24 maxlen: 24
141.105.168.0/21 maxlen: 21
141.105.168.0/24 maxlen: 24
141.105.169.0/24 maxlen: 24
141.105.170.0/24 maxlen: 24
141.105.171.0/24 maxlen: 24
141.105.172.0/24 maxlen: 24
141.105.173.0/24 maxlen: 24
141.105.174.0/24 maxlen: 24
141.105.175.0/24 maxlen: 24
178.20.16.0/21 maxlen: 21
178.20.16.0/24 maxlen: 24
178.20.17.0/24 maxlen: 24
178.20.18.0/24 maxlen: 24
178.20.19.0/24 maxlen: 24
178.20.20.0/24 maxlen: 24
178.20.21.0/24 maxlen: 24
178.20.22.0/24 maxlen: 24
178.20.23.0/24 maxlen: 24
185.29.140.0/22 maxlen: 22
185.29.140.0/24 maxlen: 24
185.29.141.0/24 maxlen: 24
185.29.142.0/24 maxlen: 24
185.29.143.0/24 maxlen: 24
185.112.104.0/22 maxlen: 22
185.112.104.0/24 maxlen: 24
185.112.105.0/24 maxlen: 24
185.112.106.0/24 maxlen: 24
185.112.107.0/24 maxlen: 24
199.48.224.0/24 maxlen: 24
206.167.33.0/24 maxlen: 24
2a0a:c740:2::/48 maxlen: 48
2a0a:c740:4::/48 maxlen: 48
2a0a:c740:5::/48 maxlen: 48
2a0a:c740:7::/48 maxlen: 48
2a0a:c740:8::/48 maxlen: 48
2a0a:c740:a::/48 maxlen: 48
2a0a:c740:100::/48 maxlen: 48
2a0a:c740:1009::/48 maxlen: 48
2a0a:c740:2000::/48 maxlen: 48
2a0a:c740:9998::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 28 Apr 2025 05:12:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:43:25:28:11:3c:74:d0:58:49:bc:dd:ca:43:5b:5d:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be550b8eff90cccee9f8d3134b6438996b7d27cd
Validity
Not Before: Apr 17 09:47:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2506caccb8978a88fbd7fbbe31da26c650b759ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:fd:0c:49:26:91:fb:e0:7b:e3:92:37:ff:1a:
13:8b:20:32:cd:90:f5:fc:5d:bb:32:bf:76:e8:66:
f6:85:5c:13:ee:c5:a2:df:14:60:4f:21:4d:13:7f:
fa:bf:83:da:45:15:88:52:cc:8b:c9:68:15:13:2a:
e8:9c:ea:84:53:61:f9:fd:19:78:11:eb:3a:7d:a6:
af:8d:dd:72:93:01:4f:e8:4b:37:70:49:ea:24:54:
23:02:b8:bc:8a:96:12:62:be:e0:69:0a:29:da:6d:
1d:c8:88:6e:c8:65:ae:f2:9b:fd:f4:9f:85:5f:49:
eb:69:ad:f7:91:7f:16:e8:85:8a:ae:0e:b7:92:8d:
6e:40:45:6c:be:db:83:fd:a4:f6:f2:de:e6:83:bc:
f0:50:b1:95:37:3b:9f:ab:3b:c2:e0:4c:e5:e9:f2:
7c:be:db:3e:2d:1b:ad:9e:7f:c1:81:2b:d9:ee:e6:
1a:da:1c:41:eb:ec:39:37:63:ff:01:43:73:47:9a:
de:ae:a0:80:99:74:fc:b3:1f:7a:b6:2a:77:4e:fe:
16:1d:c9:fe:7b:ea:7b:dc:d4:61:2b:89:88:24:c9:
f4:d5:46:39:f0:ee:14:00:ee:b3:0a:48:54:b6:d1:
05:88:8c:d3:10:2a:8c:38:55:bf:ec:9d:85:a1:00:
52:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:06:CA:CC:B8:97:8A:88:FB:D7:FB:BE:31:DA:26:C6:50:B7:59:FF
X509v3 Authority Key Identifier:
keyid:BE:55:0B:8E:FF:90:CC:CE:E9:F8:D3:13:4B:64:38:99:6B:7D:27:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vlULjv-QzM7p-NMTS2Q4mWt9J80.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/340dcd-3aee-4012-9233-c15532baff7d/1/JQbKzLiXioj71_u-MdomxlC3Wf8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/340dcd-3aee-4012-9233-c15532baff7d/1/vlULjv-QzM7p-NMTS2Q4mWt9J80.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.102.176.0/21
78.111.32.0/20
84.242.32.0/20
94.176.16.0/20
96.9.128.0/19
141.105.168.0/21
178.20.16.0/21
185.29.140.0/22
185.112.104.0/22
199.48.224.0/24
206.167.33.0/24
IPv6:
2a0a:c740:2::/48
2a0a:c740:4::/47
2a0a:c740:7::-2a0a:c740:8:ffff:ffff:ffff:ffff:ffff
2a0a:c740:a::/48
2a0a:c740:100::/48
2a0a:c740:1009::/48
2a0a:c740:2000::/48
2a0a:c740:9998::/48
Signature Algorithm: sha256WithRSAEncryption
23:db:87:5a:2f:42:f0:c3:20:07:49:fa:b7:1c:b3:5c:6c:07:
8e:09:72:f8:bd:46:4f:b9:b7:b8:33:64:88:26:20:b3:44:75:
b6:ee:a2:57:c8:ae:73:f1:41:73:f2:66:97:48:3d:56:eb:68:
88:09:49:91:b2:df:fe:66:8d:50:3e:92:57:25:af:04:80:25:
98:50:24:f9:42:71:c5:54:5b:ec:ab:54:d5:d1:a3:34:4e:ea:
f5:5f:3e:9b:30:89:a1:df:bf:23:26:0e:e5:ee:2a:20:ba:0a:
77:0b:74:0a:df:12:e2:7d:45:5a:0e:1d:24:7f:94:ac:23:2e:
10:57:b8:9f:a9:c1:44:81:1a:a0:54:f5:0e:65:08:2f:a9:e3:
ea:12:de:f2:1b:9e:7f:c5:4d:a2:f4:b7:66:1f:00:5c:dd:0b:
d7:ba:36:25:9c:1a:9d:07:d7:a8:f1:c1:6c:4d:cb:c2:6f:2d:
f2:de:86:6e:ab:d6:23:6c:06:1f:c8:0e:56:16:85:4c:77:d7:
a8:e9:8c:bb:dd:13:93:7f:be:62:aa:c5:d2:ed:fd:9b:e9:64:
b5:45:e0:11:a9:7e:62:01:da:13:9a:b7:47:96:28:b3:be:b5:
10:e4:75:1b:8f:f0:25:83:a5:93:a6:a3:79:76:88:5e:39:4f:
3d:ba:04:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 08:28:39 2025 by rpki-client