Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/moMq1DNDAlING1T4d09RVnduWbQ.roa
File: moMq1DNDAlING1T4d09RVnduWbQ.roa (raw, json)
Hash identifier: qmINlvvLIg5UvAd++XsNJlT2hH5ZScFfbkfUxPElKXA=
Subject key identifier: 9A:83:2A:D4:33:43:02:52:0D:1B:54:F8:77:4F:51:56:77:6E:59:B4
Certificate issuer: /CN=bb830630f23b070a2b7bdf529f73948c97eacd40
Certificate serial: 01961139E8A51AB1B245A7B08FDFE46AA0B0
Authority key identifier: BB:83:06:30:F2:3B:07:0A:2B:7B:DF:52:9F:73:94:8C:97:EA:CD:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u4MGMPI7Bwore99Sn3OUjJfqzUA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/moMq1DNDAlING1T4d09RVnduWbQ.roa
Signing time: Mon 07 Apr 2025 17:08:49 +0000
ROA not before: Mon 07 Apr 2025 17:08:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 44477
IP address blocks: 37.221.124.0/22 maxlen: 24
45.67.228.0/24 maxlen: 24
45.67.229.0/24 maxlen: 24
45.67.230.0/24 maxlen: 24
45.67.231.0/24 maxlen: 24
45.120.176.0/22 maxlen: 24
62.3.12.0/24 maxlen: 24
74.119.192.0/24 maxlen: 24
74.119.193.0/24 maxlen: 24
74.119.194.0/24 maxlen: 24
74.119.195.0/24 maxlen: 24
80.92.204.0/24 maxlen: 24
80.92.205.0/24 maxlen: 24
80.92.206.0/24 maxlen: 24
86.104.72.0/22 maxlen: 24
89.221.224.0/24 maxlen: 24
89.221.225.0/24 maxlen: 24
91.132.132.0/22 maxlen: 24
91.194.161.0/24 maxlen: 24
91.225.217.0/24 maxlen: 24
91.225.218.0/24 maxlen: 24
91.225.219.0/24 maxlen: 24
94.131.8.0/24 maxlen: 24
103.35.188.0/22 maxlen: 24
103.106.0.0/22 maxlen: 24
103.113.68.0/22 maxlen: 24
103.231.72.0/22 maxlen: 24
176.120.64.0/22 maxlen: 24
176.120.64.0/24 maxlen: 24
176.120.72.0/22 maxlen: 24
185.234.56.0/22 maxlen: 24
185.234.64.0/22 maxlen: 24
185.235.240.0/22 maxlen: 24
185.236.232.0/22 maxlen: 24
185.242.84.0/24 maxlen: 24
185.242.85.0/24 maxlen: 24
185.242.86.0/24 maxlen: 24
185.242.87.0/24 maxlen: 24
185.250.148.0/24 maxlen: 24
185.250.149.0/24 maxlen: 24
185.250.150.0/24 maxlen: 24
185.250.151.0/24 maxlen: 24
193.203.202.0/24 maxlen: 24
194.54.156.0/24 maxlen: 24
194.54.157.0/24 maxlen: 24
194.54.158.0/24 maxlen: 24
194.54.159.0/24 maxlen: 24
194.62.42.0/24 maxlen: 24
194.246.114.0/24 maxlen: 24
194.246.115.0/24 maxlen: 24
195.42.232.0/22 maxlen: 24
195.149.87.0/24 maxlen: 24
213.159.64.0/21 maxlen: 24
213.159.72.0/21 maxlen: 24
213.159.76.0/24 maxlen: 24
213.159.77.0/24 maxlen: 24
213.159.78.0/24 maxlen: 24
213.159.79.0/24 maxlen: 24
2a09:7c40::/32 maxlen: 32
2a09:7c41::/32 maxlen: 32
2a09:7c42::/32 maxlen: 32
2a09:7c43::/32 maxlen: 32
2a09:7c44::/32 maxlen: 32
2a09:7c45::/32 maxlen: 32
2a09:7c46::/32 maxlen: 32
2a09:7c47::/32 maxlen: 32
2a0b:cf45::/32 maxlen: 32
2a0b:cf46::/32 maxlen: 32
2a0b:cf47::/32 maxlen: 32
2a11:3805::/32 maxlen: 32
2a11:3c02::/32 maxlen: 32
2a11:3c03::/32 maxlen: 32
2a11:4c04::/32 maxlen: 32
2a11:4c05::/32 maxlen: 32
2a11:4c06::/32 maxlen: 32
2a14:2d80::/32 maxlen: 32
2a14:2d81::/32 maxlen: 32
2a14:2d82::/32 maxlen: 32
2a14:2d83::/32 maxlen: 32
2a14:2d85::/32 maxlen: 32
2a14:2d87::/32 maxlen: 32
2a14:2e80::/32 maxlen: 32
2a14:2f80::/32 maxlen: 32
2a14:3080::/32 maxlen: 32
2a14:3081::/32 maxlen: 32
2a14:3082::/32 maxlen: 32
2a14:3083::/32 maxlen: 32
2a14:3084::/32 maxlen: 32
2a14:3085::/32 maxlen: 32
2a14:3880::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 09 Apr 2025 15:25:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:11:39:e8:a5:1a:b1:b2:45:a7:b0:8f:df:e4:6a:a0:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb830630f23b070a2b7bdf529f73948c97eacd40
Validity
Not Before: Apr 7 17:08:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9a832ad4334302520d1b54f8774f5156776e59b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:83:3d:4b:41:08:8c:52:a7:4c:e4:59:2f:3d:
ed:10:e9:6a:e5:ba:d5:f4:40:8c:eb:1d:e6:57:d1:
70:5a:1b:a2:9a:c8:fd:6a:7e:ee:66:fd:4b:36:d2:
e1:02:e0:77:bf:54:24:ce:76:34:ab:dd:c9:b5:f0:
cd:e2:9b:27:01:89:17:9c:be:2e:58:87:a0:9e:29:
0b:0d:74:78:e7:4a:ac:e4:f7:83:51:fc:fb:6c:d6:
b1:40:fe:9c:46:2f:97:90:cb:3f:86:a4:bc:16:3b:
6c:26:48:29:14:7a:9a:c8:a4:fe:60:b9:97:72:62:
bb:42:d4:9e:59:74:4e:81:a0:ec:16:41:d4:47:fa:
eb:3d:dc:a7:48:fe:70:67:89:b4:cf:f0:d9:18:30:
2c:75:2d:5c:5d:be:bf:5d:1c:e9:42:3d:b1:95:5f:
20:d1:20:94:eb:cf:59:4e:21:7b:e1:a4:aa:bb:a7:
08:a3:24:e4:d5:33:7f:8c:0b:60:e0:17:5d:76:a0:
5e:d9:5b:2a:f4:19:b6:b0:09:30:e5:ef:1f:42:9e:
33:5c:e9:97:b7:cf:f5:81:2c:b4:fc:29:73:7a:bc:
12:22:54:1d:66:8f:a2:04:58:26:f3:6e:75:b5:39:
e8:bf:00:e9:39:4b:92:97:85:ce:29:06:cf:97:73:
44:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:83:2A:D4:33:43:02:52:0D:1B:54:F8:77:4F:51:56:77:6E:59:B4
X509v3 Authority Key Identifier:
keyid:BB:83:06:30:F2:3B:07:0A:2B:7B:DF:52:9F:73:94:8C:97:EA:CD:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u4MGMPI7Bwore99Sn3OUjJfqzUA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/moMq1DNDAlING1T4d09RVnduWbQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/u4MGMPI7Bwore99Sn3OUjJfqzUA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.221.124.0/22
45.67.228.0/22
45.120.176.0/22
62.3.12.0/24
74.119.192.0/22
80.92.204.0-80.92.206.255
86.104.72.0/22
89.221.224.0/23
91.132.132.0/22
91.194.161.0/24
91.225.217.0-91.225.219.255
94.131.8.0/24
103.35.188.0/22
103.106.0.0/22
103.113.68.0/22
103.231.72.0/22
176.120.64.0/22
176.120.72.0/22
185.234.56.0/22
185.234.64.0/22
185.235.240.0/22
185.236.232.0/22
185.242.84.0/22
185.250.148.0/22
193.203.202.0/24
194.54.156.0/22
194.62.42.0/24
194.246.114.0/23
195.42.232.0/22
195.149.87.0/24
213.159.64.0/20
IPv6:
2a09:7c40::/29
2a0b:cf45::-2a0b:cf47:ffff:ffff:ffff:ffff:ffff:ffff
2a11:3805::/32
2a11:3c02::/31
2a11:4c04::-2a11:4c06:ffff:ffff:ffff:ffff:ffff:ffff
2a14:2d80::/30
2a14:2d85::/32
2a14:2d87::/32
2a14:2e80::/32
2a14:2f80::/32
2a14:3080::-2a14:3085:ffff:ffff:ffff:ffff:ffff:ffff
2a14:3880::/32
Signature Algorithm: sha256WithRSAEncryption
84:f8:6a:e3:9a:d0:37:a4:3a:87:b0:2b:69:14:32:0d:29:36:
69:fd:06:9e:60:60:29:26:c3:4c:e5:b4:6a:4b:0d:ff:5d:11:
92:f6:b8:52:d2:ce:80:14:a9:b2:95:0b:43:fa:b2:b6:c2:6f:
88:0b:2a:6b:f8:46:45:9b:b9:1d:28:a2:ff:8f:f3:fc:58:dd:
f9:30:26:93:e0:c5:7f:07:fb:44:cb:f6:fd:cb:47:65:a3:9a:
71:7a:02:31:02:7b:87:94:72:53:67:55:53:18:e3:c6:94:6c:
80:f4:91:99:b1:03:10:bb:5a:2f:d0:4a:73:bd:b7:b0:67:68:
46:cf:8d:a0:6b:f4:fd:57:27:98:6e:ca:0c:56:4f:2e:a5:b0:
d2:7d:75:f2:1b:2b:f9:f4:49:47:47:7a:71:c1:f2:02:9b:21:
28:c9:60:17:7d:a0:38:cf:bb:44:ee:90:c1:bb:d4:38:72:6e:
5c:d5:d3:74:22:ef:c1:47:af:be:13:38:f3:c0:46:af:22:4f:
e2:b1:62:f3:a8:f7:04:3e:93:f0:71:f1:dd:63:6f:7a:18:0c:
fd:7b:42:a5:67:78:5d:c1:c0:4c:8a:1d:c3:1e:4c:7d:14:eb:
52:b7:fb:21:6d:cd:68:7d:e0:56:ff:0a:b8:79:a0:30:a4:11:
27:36:77:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 11:53:50 2025 by rpki-client