Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/ypNIzYteLEgYxltSUDPJxYgjwW8.roa
File: ypNIzYteLEgYxltSUDPJxYgjwW8.roa (raw, json)
Hash identifier: OjsFUk69KvX/ZwY2kqQEsqu3T3DCiCc0YM/9cqszzXs=
Subject key identifier: CA:93:48:CD:8B:5E:2C:48:18:C6:5B:52:50:33:C9:C5:88:23:C1:6F
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 0196A9AD54781C59803FF7E9F2D6769D30B2
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/ypNIzYteLEgYxltSUDPJxYgjwW8.roa
Signing time: Wed 07 May 2025 07:37:10 +0000
ROA not before: Wed 07 May 2025 07:37:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 0
IP address blocks: 2.59.253.0/24 maxlen: 24
5.252.132.0/22 maxlen: 24
31.13.211.0/24 maxlen: 24
45.9.157.0/24 maxlen: 24
45.12.253.0/24 maxlen: 24
45.66.228.0/24 maxlen: 24
45.66.231.0/24 maxlen: 24
45.81.39.0/24 maxlen: 24
45.88.64.0/24 maxlen: 24
45.89.247.0/24 maxlen: 24
45.90.89.0/24 maxlen: 24
45.139.106.0/24 maxlen: 24
45.141.158.0/24 maxlen: 24
45.141.159.0/24 maxlen: 24
45.151.90.0/24 maxlen: 24
79.110.50.0/24 maxlen: 24
81.31.192.0/22 maxlen: 24
81.161.238.0/24 maxlen: 24
83.219.97.0/24 maxlen: 24
84.54.48.0/24 maxlen: 24
87.120.87.0/24 maxlen: 24
87.120.89.0/24 maxlen: 24
87.120.126.0/23 maxlen: 24
87.120.166.0/24 maxlen: 24
87.121.22.0/24 maxlen: 24
87.121.38.0/24 maxlen: 24
87.121.45.0/24 maxlen: 24
87.121.87.0/24 maxlen: 24
87.121.124.0/23 maxlen: 24
87.121.165.0/24 maxlen: 24
91.92.70.0/24 maxlen: 24
92.119.196.0/23 maxlen: 24
92.249.50.0/24 maxlen: 24
93.123.45.0/24 maxlen: 24
93.123.47.0/24 maxlen: 24
93.123.85.0/24 maxlen: 24
93.123.109.0/24 maxlen: 24
93.123.117.0/24 maxlen: 24
93.123.119.0/24 maxlen: 24
94.103.125.0/24 maxlen: 24
94.154.160.0/23 maxlen: 24
94.154.161.0/24 maxlen: 24
94.154.162.0/23 maxlen: 24
94.156.64.0/21 maxlen: 32
94.156.105.0/24 maxlen: 24
94.156.167.0/24 maxlen: 24
94.156.232.0/24 maxlen: 24
94.156.239.0/24 maxlen: 24
141.98.1.0/24 maxlen: 24
141.98.6.0/24 maxlen: 24
171.22.73.0/24 maxlen: 24
171.22.74.0/23 maxlen: 24
178.215.227.0/24 maxlen: 24
185.216.84.0/22 maxlen: 24
193.25.216.0/24 maxlen: 24
193.35.18.0/24 maxlen: 24
193.222.96.0/24 maxlen: 24
193.222.98.0/24 maxlen: 24
194.55.186.0/24 maxlen: 24
194.169.175.0/24 maxlen: 24
212.115.41.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 07 May 2025 08:05:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a9:ad:54:78:1c:59:80:3f:f7:e9:f2:d6:76:9d:30:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: May 7 07:37:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ca9348cd8b5e2c4818c65b525033c9c58823c16f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:fd:a8:53:6f:4c:91:a3:62:c8:91:83:ac:f4:
6f:55:22:35:77:2d:40:88:77:3a:27:cf:80:e3:57:
c3:4e:05:2e:02:01:53:63:e5:f9:f5:5b:de:2a:82:
fd:87:9c:a1:a8:3f:7a:26:f4:14:4b:32:42:af:d3:
89:03:75:96:3b:64:3f:8f:ba:76:4a:93:17:96:08:
66:3b:75:bf:3d:10:42:17:49:70:ee:75:fc:ef:b2:
b6:74:e8:d4:81:c7:2f:24:39:8d:9f:59:6e:fe:c9:
77:78:4e:b6:5e:94:42:29:ca:52:87:11:b2:0d:69:
37:23:dd:2c:1d:8b:ff:3c:47:ca:b3:3a:fa:61:7b:
6a:e2:54:6c:ed:3a:86:b1:b1:13:aa:d5:d9:68:23:
57:45:4a:0b:ac:0e:3d:76:c8:fb:de:05:95:27:b3:
c4:9a:f1:35:9f:bd:f0:bd:0b:79:0d:02:4c:9f:51:
02:ba:ec:57:f4:73:97:47:12:9e:0e:99:20:c5:03:
ab:0f:1f:72:f3:da:4f:8a:36:e2:de:f7:88:2d:dd:
27:58:90:3a:52:44:7a:c9:8a:8e:ea:b5:65:0f:aa:
5f:cb:e4:2e:26:42:d5:7f:b8:fb:28:33:01:fe:d0:
bd:9e:df:38:e4:a8:49:b6:14:39:18:85:2f:af:e9:
0c:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:93:48:CD:8B:5E:2C:48:18:C6:5B:52:50:33:C9:C5:88:23:C1:6F
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/ypNIzYteLEgYxltSUDPJxYgjwW8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.59.253.0/24
5.252.132.0/22
31.13.211.0/24
45.9.157.0/24
45.12.253.0/24
45.66.228.0/24
45.66.231.0/24
45.81.39.0/24
45.88.64.0/24
45.89.247.0/24
45.90.89.0/24
45.139.106.0/24
45.141.158.0/23
45.151.90.0/24
79.110.50.0/24
81.31.192.0/22
81.161.238.0/24
83.219.97.0/24
84.54.48.0/24
87.120.87.0/24
87.120.89.0/24
87.120.126.0/23
87.120.166.0/24
87.121.22.0/24
87.121.38.0/24
87.121.45.0/24
87.121.87.0/24
87.121.124.0/23
87.121.165.0/24
91.92.70.0/24
92.119.196.0/23
92.249.50.0/24
93.123.45.0/24
93.123.47.0/24
93.123.85.0/24
93.123.109.0/24
93.123.117.0/24
93.123.119.0/24
94.103.125.0/24
94.154.160.0/22
94.156.64.0/21
94.156.105.0/24
94.156.167.0/24
94.156.232.0/24
94.156.239.0/24
141.98.1.0/24
141.98.6.0/24
171.22.73.0-171.22.75.255
178.215.227.0/24
185.216.84.0/22
193.25.216.0/24
193.35.18.0/24
193.222.96.0/24
193.222.98.0/24
194.55.186.0/24
194.169.175.0/24
212.115.41.0/24
Signature Algorithm: sha256WithRSAEncryption
61:8e:eb:66:a9:98:8d:b2:9d:dd:3c:55:33:8f:af:82:25:15:
88:df:f6:62:a2:ea:e9:75:86:5f:0c:07:fc:f4:eb:b1:bd:ff:
b1:d6:d7:5d:aa:e2:1d:7a:74:c3:44:0e:92:d1:31:b7:4a:8d:
8e:3f:01:73:b0:8b:c3:b6:80:fe:ee:71:14:4f:f8:59:7b:e9:
81:4f:99:75:56:a3:f1:ac:96:e1:41:12:61:71:3e:dd:c6:26:
56:80:7b:83:aa:78:a6:f2:3b:73:33:ef:dd:8e:0a:19:7b:b9:
77:2c:e2:ee:92:e7:b9:14:ba:9e:9d:87:f6:79:25:03:f9:30:
23:a0:66:42:1c:57:fa:03:8b:e2:4e:b2:fe:7a:61:f8:2a:64:
58:91:bc:4b:9f:4c:8c:1b:c2:d4:06:fe:87:ee:64:d2:7d:b2:
ea:87:89:67:f0:57:9e:0c:98:02:83:7c:30:69:5e:7a:ef:bc:
b2:8f:7f:e4:39:e5:3d:57:07:1b:44:62:5a:c5:3c:2f:87:fe:
dc:0c:78:35:a8:6e:78:32:81:90:fe:ec:1a:d8:77:32:fc:3e:
91:ee:f6:73:a3:d5:a8:bd:4e:ae:c9:25:bd:6c:86:8f:4e:67:
08:67:bd:8b:e4:7a:36:91:3c:c1:9c:1b:b2:6a:92:9d:19:35:
6b:76:b2:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 17:42:11 2025 by rpki-client