Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/15089b-18d7-4ff0-9d28-b9b65402b928/1/WSrRlq7Ri2YWnxu3a0oSu_SbHNc.roa
File: WSrRlq7Ri2YWnxu3a0oSu_SbHNc.roa (raw, json)
Hash identifier: oH2OOUY0m2h2XMckORkIJyfMRHS1GmOvhfdWRNzcoyM=
Subject key identifier: 59:2A:D1:96:AE:D1:8B:66:16:9F:1B:B7:6B:4A:12:BB:F4:9B:1C:D7
Certificate issuer: /CN=aca66a5938af567a9e29b4f76f115607c2b8aa20
Certificate serial: 019E1F7BA2D5E479EF1F7CEBBA727CF8A01D
Authority key identifier: AC:A6:6A:59:38:AF:56:7A:9E:29:B4:F7:6F:11:56:07:C2:B8:AA:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rKZqWTivVnqeKbT3bxFWB8K4qiA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/15089b-18d7-4ff0-9d28-b9b65402b928/1/WSrRlq7Ri2YWnxu3a0oSu_SbHNc.roa
Signing time: Wed 13 May 2026 03:57:36 +0000
ROA not before: Wed 13 May 2026 03:57:36 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 22616
IP address blocks: 137.31.15.0/24 maxlen: 24
137.31.49.0/24 maxlen: 24
137.31.60.0/24 maxlen: 24
147.161.128.0/23 maxlen: 24
159.254.58.0/23 maxlen: 24
159.254.60.0/23 maxlen: 24
159.254.64.0/23 maxlen: 24
159.254.66.0/23 maxlen: 24
159.254.69.0/24 maxlen: 24
159.254.84.0/24 maxlen: 24
159.254.85.0/24 maxlen: 24
159.254.86.0/24 maxlen: 24
159.254.92.0/24 maxlen: 24
159.254.93.0/24 maxlen: 24
159.254.94.0/24 maxlen: 24
159.254.95.0/24 maxlen: 24
159.254.96.0/24 maxlen: 24
159.254.97.0/24 maxlen: 24
159.254.99.0/24 maxlen: 24
159.254.100.0/24 maxlen: 24
159.254.182.0/23 maxlen: 24
159.254.184.0/23 maxlen: 24
159.254.202.0/24 maxlen: 24
159.254.209.0/24 maxlen: 24
159.254.217.0/24 maxlen: 24
159.254.220.0/24 maxlen: 24
159.254.221.0/24 maxlen: 24
159.254.240.0/24 maxlen: 24
159.254.241.0/24 maxlen: 24
164.137.4.0/24 maxlen: 24
164.137.5.0/24 maxlen: 24
164.137.6.0/24 maxlen: 24
164.137.7.0/24 maxlen: 24
164.137.8.0/24 maxlen: 24
164.137.9.0/24 maxlen: 24
164.137.10.0/24 maxlen: 24
164.137.11.0/24 maxlen: 24
164.137.12.0/24 maxlen: 24
164.137.13.0/24 maxlen: 24
164.137.14.0/24 maxlen: 24
164.137.15.0/24 maxlen: 24
164.137.16.0/24 maxlen: 24
164.137.17.0/24 maxlen: 24
164.137.18.0/24 maxlen: 24
164.137.19.0/24 maxlen: 24
164.137.20.0/24 maxlen: 24
164.137.21.0/24 maxlen: 24
164.137.22.0/24 maxlen: 24
164.137.23.0/24 maxlen: 24
164.137.24.0/24 maxlen: 24
164.137.25.0/24 maxlen: 24
164.137.26.0/24 maxlen: 24
164.137.27.0/24 maxlen: 24
164.137.28.0/24 maxlen: 24
164.137.29.0/24 maxlen: 24
164.137.30.0/24 maxlen: 24
164.137.31.0/24 maxlen: 24
164.137.32.0/24 maxlen: 24
164.137.33.0/24 maxlen: 24
164.137.34.0/24 maxlen: 24
164.137.35.0/24 maxlen: 24
164.137.36.0/24 maxlen: 24
164.137.37.0/24 maxlen: 24
164.137.38.0/24 maxlen: 24
164.137.39.0/24 maxlen: 24
164.137.40.0/24 maxlen: 24
164.137.41.0/24 maxlen: 24
164.137.42.0/24 maxlen: 24
164.137.43.0/24 maxlen: 24
164.137.44.0/24 maxlen: 24
164.137.45.0/24 maxlen: 24
164.137.46.0/24 maxlen: 24
164.137.47.0/24 maxlen: 24
164.137.48.0/24 maxlen: 24
164.137.49.0/24 maxlen: 24
164.137.50.0/24 maxlen: 24
164.137.51.0/24 maxlen: 24
164.137.52.0/24 maxlen: 24
164.137.53.0/24 maxlen: 24
220.42.0.0/16 maxlen: 24
220.43.0.0/16 maxlen: 24
2a03:eec0:3212::/48 maxlen: 48
2a03:eec0:321b::/48 maxlen: 48
2a03:eec0:322b::/48 maxlen: 48
2a03:eec0:322c::/48 maxlen: 48
2a03:eec0:322d::/48 maxlen: 48
2a03:eec0:322e::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 13 May 2026 07:15:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:7b:a2:d5:e4:79:ef:1f:7c:eb:ba:72:7c:f8:a0:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aca66a5938af567a9e29b4f76f115607c2b8aa20
Validity
Not Before: May 13 03:57:36 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=592ad196aed18b66169f1bb76b4a12bbf49b1cd7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:e1:36:5d:6b:f0:fb:25:dd:6d:29:db:e2:e9:
e5:37:2a:44:fa:4e:00:5f:1a:9c:85:8b:25:3a:54:
a9:a3:f5:95:99:e7:d7:f5:6e:aa:aa:50:27:23:4b:
d5:d9:e3:62:37:51:f4:cd:f8:77:58:5a:a9:f7:8d:
43:6d:10:16:75:eb:27:f2:a7:57:d5:6c:ce:7d:87:
47:aa:54:fe:7d:43:0d:fb:36:da:bb:33:24:50:07:
78:a3:07:2b:c3:85:98:ac:22:65:8f:b2:89:25:24:
fb:8f:f7:6b:7b:f3:a9:0f:90:68:3a:2d:2b:28:41:
38:79:d2:d0:0c:23:60:b6:6e:06:95:db:ba:3a:5a:
5c:72:22:ba:9a:3d:ef:37:44:71:48:8f:01:63:72:
e5:95:64:00:45:5d:71:49:55:eb:2e:e8:21:fd:3a:
5a:c1:a0:18:f9:20:45:18:d1:0f:37:05:77:68:e9:
da:ea:93:f0:29:97:00:ce:d1:d9:1b:ca:79:aa:08:
f3:56:57:a8:83:c7:e2:42:b8:57:6f:fb:56:39:27:
fe:b8:89:dd:12:58:1c:dd:60:1b:92:a4:c5:b2:fd:
df:c2:88:6b:d2:5d:bb:ac:70:bd:39:ee:c9:98:ce:
11:65:b4:0d:20:2f:53:92:9b:e5:37:ea:31:4b:e1:
50:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:2A:D1:96:AE:D1:8B:66:16:9F:1B:B7:6B:4A:12:BB:F4:9B:1C:D7
X509v3 Authority Key Identifier:
keyid:AC:A6:6A:59:38:AF:56:7A:9E:29:B4:F7:6F:11:56:07:C2:B8:AA:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rKZqWTivVnqeKbT3bxFWB8K4qiA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/15089b-18d7-4ff0-9d28-b9b65402b928/1/WSrRlq7Ri2YWnxu3a0oSu_SbHNc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/15089b-18d7-4ff0-9d28-b9b65402b928/1/rKZqWTivVnqeKbT3bxFWB8K4qiA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
137.31.15.0/24
137.31.49.0/24
137.31.60.0/24
147.161.128.0/23
159.254.58.0-159.254.61.255
159.254.64.0/22
159.254.69.0/24
159.254.84.0-159.254.86.255
159.254.92.0-159.254.97.255
159.254.99.0-159.254.100.255
159.254.182.0-159.254.185.255
159.254.202.0/24
159.254.209.0/24
159.254.217.0/24
159.254.220.0/23
159.254.240.0/23
164.137.4.0-164.137.53.255
220.42.0.0/15
IPv6:
2a03:eec0:3212::/48
2a03:eec0:321b::/48
2a03:eec0:322b::-2a03:eec0:322e:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
94:23:c1:40:90:41:39:aa:8e:34:47:7c:3d:22:e2:9c:a1:c4:
03:2d:13:f1:71:42:9d:07:b2:36:2b:a8:3f:12:26:90:eb:bb:
ea:3e:5d:18:44:6d:e8:63:f7:4d:9d:96:de:21:54:dd:16:b2:
85:5b:48:39:47:92:83:b4:cb:7f:55:c9:be:4c:84:ac:e4:10:
86:b6:0c:d0:a2:aa:b0:60:f2:d3:c8:04:8f:16:38:4b:7f:95:
ac:5c:6b:9f:3a:50:70:df:e7:a3:f1:44:30:10:0d:7a:0e:95:
54:2b:16:0c:fb:98:4e:2e:f6:9f:2f:e0:9f:1f:8c:06:ad:b2:
81:f7:eb:b5:07:c6:71:32:3b:fe:29:08:c7:4c:fa:99:a5:f8:
2d:ba:38:9b:f3:45:82:92:6c:e7:85:52:5c:4d:cb:62:50:1f:
bb:7e:c1:0b:ce:34:de:e0:56:5d:4b:69:6d:1e:09:0a:16:3b:
f8:e2:9b:36:ce:a3:8a:3d:3b:41:da:35:ed:03:fd:1f:71:3a:
b8:4d:e6:1a:9c:84:72:d3:17:bb:8a:96:37:e3:41:74:67:09:
0d:95:af:a6:1b:a1:4a:0b:55:a4:ec:f2:c4:c0:7c:55:7f:10:
b9:3b:39:16:f8:d6:10:ba:30:8e:00:6b:23:e6:d7:d5:18:e4:
67:b3:75:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 12:40:20 2026 by rpki-client