Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/e01285-660d-4cd2-ad1f-625245a00abf/1/mxce5etJHLUdfSNsM9Nx3Hyd4tI.roa
File: mxce5etJHLUdfSNsM9Nx3Hyd4tI.roa (raw, json)
Hash identifier: OxwDAxz7L8ovxsl2NxlhRry08P2f1XZNBOQjfbN/DvE=
Subject key identifier: 9B:17:1E:E5:EB:49:1C:B5:1D:7D:23:6C:33:D3:71:DC:7C:9D:E2:D2
Certificate issuer: /CN=c61953c08980adc94f2fa3a3c1ba95c40d21e7d3
Certificate serial: 0195FABEE799A922B82B2963DA83A488F530
Authority key identifier: C6:19:53:C0:89:80:AD:C9:4F:2F:A3:A3:C1:BA:95:C4:0D:21:E7:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xhlTwImArclPL6OjwbqVxA0h59M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/e01285-660d-4cd2-ad1f-625245a00abf/1/mxce5etJHLUdfSNsM9Nx3Hyd4tI.roa
Signing time: Thu 03 Apr 2025 08:22:49 +0000
ROA not before: Thu 03 Apr 2025 08:22:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 24685
IP address blocks: 31.172.136.0/23 maxlen: 32
31.172.136.0/24 maxlen: 32
31.172.137.0/24 maxlen: 32
31.172.140.0/24 maxlen: 32
31.172.141.0/24 maxlen: 32
80.92.231.0/24 maxlen: 32
80.92.233.0/24 maxlen: 32
80.92.234.0/24 maxlen: 32
80.92.235.0/24 maxlen: 32
82.117.229.0/24 maxlen: 32
92.60.178.0/23 maxlen: 32
92.60.178.0/24 maxlen: 32
92.60.179.0/24 maxlen: 32
128.0.170.0/24 maxlen: 32
128.0.172.0/24 maxlen: 32
128.0.174.0/24 maxlen: 32
185.38.209.0/24 maxlen: 32
185.39.196.0/24 maxlen: 32
185.45.244.0/22 maxlen: 32
193.111.0.0/24 maxlen: 32
193.111.48.0/23 maxlen: 32
212.110.134.0/23 maxlen: 32
Validation: Failed, certificate revoked on Thu 03 Apr 2025 08:31:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:fa:be:e7:99:a9:22:b8:2b:29:63:da:83:a4:88:f5:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c61953c08980adc94f2fa3a3c1ba95c40d21e7d3
Validity
Not Before: Apr 3 08:22:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9b171ee5eb491cb51d7d236c33d371dc7c9de2d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:5e:35:ee:48:46:e4:e1:74:b4:64:50:88:a8:
5b:86:67:4f:12:c2:83:be:e8:c7:35:d1:e7:18:a8:
3f:7d:76:6c:56:3a:c0:c9:7b:0a:5c:47:cf:d2:a2:
33:1d:35:1c:f9:3e:0a:18:37:ef:88:07:69:3d:c2:
1f:f4:b1:fc:e7:b7:02:c2:28:80:90:16:5f:4c:75:
89:28:95:20:eb:92:c2:9f:2e:7c:76:97:c1:e7:fd:
c4:75:ff:13:e0:0a:23:b4:ff:67:9d:b5:0d:15:01:
97:e6:a6:64:76:d9:e7:3e:a9:48:da:de:78:84:83:
51:72:0a:d2:f4:1d:9c:db:6f:37:0d:75:80:5b:d5:
0c:57:1c:37:45:3f:24:60:15:a6:28:fa:8f:d4:c1:
04:e0:d0:30:d7:49:d8:5e:46:f7:67:e1:26:80:5c:
2d:ed:ec:ed:86:18:59:4c:d1:8e:ac:17:ac:ad:1d:
35:2b:5e:08:62:8c:ee:f0:fa:e1:9c:4a:a2:de:19:
22:97:c0:5e:df:6a:f6:63:5f:f2:21:85:e2:72:f7:
d9:07:3a:22:92:fc:20:c8:f5:3d:b6:ac:68:15:17:
a5:71:8f:07:ed:c1:11:dd:4a:c1:59:1e:9a:5e:e1:
3b:48:c1:e3:60:dd:99:48:65:5a:9f:4b:d8:24:62:
26:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:17:1E:E5:EB:49:1C:B5:1D:7D:23:6C:33:D3:71:DC:7C:9D:E2:D2
X509v3 Authority Key Identifier:
keyid:C6:19:53:C0:89:80:AD:C9:4F:2F:A3:A3:C1:BA:95:C4:0D:21:E7:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xhlTwImArclPL6OjwbqVxA0h59M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/e01285-660d-4cd2-ad1f-625245a00abf/1/mxce5etJHLUdfSNsM9Nx3Hyd4tI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/e01285-660d-4cd2-ad1f-625245a00abf/1/xhlTwImArclPL6OjwbqVxA0h59M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.172.136.0/23
31.172.140.0/23
80.92.231.0/24
80.92.233.0-80.92.235.255
82.117.229.0/24
92.60.178.0/23
128.0.170.0/24
128.0.172.0/24
128.0.174.0/24
185.38.209.0/24
185.39.196.0/24
185.45.244.0/22
193.111.0.0/24
193.111.48.0/23
212.110.134.0/23
Signature Algorithm: sha256WithRSAEncryption
bf:d3:14:8b:42:d9:fd:14:ec:19:1d:10:c5:af:6e:28:44:06:
db:8a:a0:19:17:f5:b7:d2:c8:9b:d4:68:47:94:60:ef:f0:d4:
b3:92:69:4a:7c:37:42:20:ad:3e:1d:54:99:c2:55:b6:09:f4:
04:e9:f3:9f:66:d2:06:a6:00:81:bd:d7:0a:ab:cb:e7:43:93:
4d:54:80:21:71:93:78:31:58:29:4f:82:91:fc:58:34:fa:68:
f0:f0:78:32:3c:ab:8a:ad:d9:6c:8e:60:3b:86:08:20:bf:78:
ad:52:81:e2:21:21:5f:49:a1:7e:97:b3:e1:41:8f:d6:7f:7b:
b4:c7:f0:23:e1:ef:3d:0a:d4:da:59:ba:9d:06:4d:5d:62:32:
96:21:b8:a8:06:a8:58:74:1f:80:82:07:3d:1c:9b:7e:be:41:
1a:52:48:af:a0:29:bf:35:24:09:3b:bf:96:12:ef:70:04:78:
12:b7:be:62:e8:8d:23:73:63:de:51:ec:e4:4c:52:50:13:a5:
3c:cb:bc:70:94:f5:8e:0c:b5:b6:c0:ff:57:1e:a2:68:14:c1:
73:d6:ce:a4:dc:df:e2:c0:bc:19:a7:f8:bd:49:07:de:5a:22:
19:44:50:56:d9:8e:24:59:ba:d6:e8:c4:99:47:0c:47:a5:15:
89:41:b6:b4
-----BEGIN CERTIFICATE-----
MIIFWTCCBEGgAwIBAgISAZX6vueZqSK4Kylj2oOkiPUwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM2MTk1M2MwODk4MGFkYzk0ZjJmYTNhM2MxYmE5NWM0MGQy
MWU3ZDMwHhcNMjUwNDAzMDgyMjQ5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5YjE3MWVlNWViNDkxY2I1MWQ3ZDIzNmMzM2QzNzFkYzdjOWRlMmQyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqV417khG5OF0tGRQiKhbhmdPEsKD
vujHNdHnGKg/fXZsVjrAyXsKXEfP0qIzHTUc+T4KGDfviAdpPcIf9LH857cCwiiA
kBZfTHWJKJUg65LCny58dpfB5/3Edf8T4AojtP9nnbUNFQGX5qZkdtnnPqlI2t54
hINRcgrS9B2c2283DXWAW9UMVxw3RT8kYBWmKPqP1MEE4NAw10nYXkb3Z+EmgFwt
7ezthhhZTNGOrBesrR01K14IYozu8PrhnEqi3hkil8Be32r2Y1/yIYXicvfZBzoi
kvwgyPU9tqxoFRelcY8H7cER3UrBWR6aXuE7SMHjYN2ZSGVan0vYJGImLwIDAQAB
o4ICZTCCAmEwHQYDVR0OBBYEFJsXHuXrSRy1HX0jbDPTcdx8neLSMB8GA1UdIwQY
MBaAFMYZU8CJgK3JTy+jo8G6lcQNIefTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveGhsVHdJbUFyY2xQTDZPandicVZ4QTBoNTlNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNi9lMDEyODUtNjYwZC00Y2QyLWFkMWYt
NjI1MjQ1YTAwYWJmLzEvbXhjZTVldEpITFVkZlNOc005TngzSHlkNHRJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNi9lMDEyODUtNjYwZC00Y2QyLWFkMWYtNjI1MjQ1YTAwYWJm
LzEveGhsVHdJbUFyY2xQTDZPandicVZ4QTBoNTlNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHsGCCsGAQUFBwEHAQH/BGwwajBoBAIAATBiAwQBH6yIAwQB
H6yMAwQAUFznMAwDBABQXOkDBAJQXOgDBABSdeUDBAFcPLIDBACAAKoDBACAAKwD
BACAAK4DBAC5JtEDBAC5J8QDBAK5LfQDBADBbwADBAHBbzADBAHUboYwDQYJKoZI
hvcNAQELBQADggEBAL/TFItC2f0U7BkdEMWvbihEBtuKoBkX9bfSyJvUaEeUYO/w
1LOSaUp8N0IgrT4dVJnCVbYJ9ATp859m0gamAIG91wqry+dDk01UgCFxk3gxWClP
gpH8WDT6aPDweDI8q4qt2WyOYDuGCCC/eK1SgeIhIV9JoX6Xs+FBj9Z/e7TH8CPh
7z0K1NpZup0GTV1iMpYhuKgGqFh0H4CCBz0cm36+QRpSSK+gKb81JAk7v5YS73AE
eBK3vmLojSNzY95R7ORMUlATpTzLvHCU9Y4MtbbA/1ceomgUwXPWzqTc3+LAvBmn
+L1JB95aIhlEUFbZjiRZutboxJlHDEelFYlBtrQ=
-----END CERTIFICATE-----
Generated at Mon Jun 16 14:06:10 2025 by rpki-client