Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/496d56-86ff-48be-bde3-271fde2dc655/1/yNQBJZdplBJJhowuEVFcHDdrWDA.roa
File: yNQBJZdplBJJhowuEVFcHDdrWDA.roa (raw, json)
Hash identifier: AD/BFzP2hSpQKphWPW7T52sXo/FaR0Fj5SU50+VCmkQ=
Subject key identifier: C8:D4:01:25:97:69:94:12:49:86:8C:2E:11:51:5C:1C:37:6B:58:30
Certificate issuer: /CN=75790c7ecf24d28be2e13fe069118cee27d58002
Certificate serial: 018FA8F29A66F6E72BE6976273B912C41A97
Authority key identifier: 75:79:0C:7E:CF:24:D2:8B:E2:E1:3F:E0:69:11:8C:EE:27:D5:80:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dXkMfs8k0ovi4T_gaRGM7ifVgAI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/496d56-86ff-48be-bde3-271fde2dc655/1/yNQBJZdplBJJhowuEVFcHDdrWDA.roa
Signing time: Fri 24 May 2024 04:53:42 +0000
ROA not before: Fri 24 May 2024 04:53:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 12302
IP address blocks: 31.5.0.0/16 maxlen: 16
31.5.0.0/17 maxlen: 17
31.5.128.0/17 maxlen: 17
31.14.35.0/24 maxlen: 24
62.121.64.0/18 maxlen: 24
77.81.16.0/20 maxlen: 21
78.96.0.0/15 maxlen: 16
81.89.0.0/20 maxlen: 21
82.208.128.0/18 maxlen: 19
82.210.128.0/18 maxlen: 19
83.103.128.0/17 maxlen: 18
84.117.0.0/16 maxlen: 16
84.117.0.0/17 maxlen: 17
84.117.128.0/17 maxlen: 17
85.186.0.0/16 maxlen: 17
85.204.0.0/20 maxlen: 21
85.204.0.0/21 maxlen: 21
85.204.184.0/21 maxlen: 22
85.204.188.0/22 maxlen: 22
86.104.136.0/21 maxlen: 22
86.105.64.0/20 maxlen: 21
86.106.32.0/19 maxlen: 20
86.106.48.0/20 maxlen: 20
89.33.72.0/21 maxlen: 22
89.38.72.0/22 maxlen: 23
89.42.248.0/21 maxlen: 22
89.42.252.0/22 maxlen: 22
89.44.78.0/23 maxlen: 23
89.44.78.0/24 maxlen: 24
89.136.0.0/15 maxlen: 16
93.113.32.0/23 maxlen: 23
93.113.241.0/24 maxlen: 24
93.113.242.0/23 maxlen: 23
93.117.66.0/23 maxlen: 23
93.117.138.0/23 maxlen: 23
93.117.154.0/23 maxlen: 23
93.118.46.0/23 maxlen: 23
93.119.126.0/23 maxlen: 23
93.119.137.0/24 maxlen: 24
93.119.138.0/23 maxlen: 23
93.119.224.0/23 maxlen: 23
93.119.226.0/24 maxlen: 24
95.76.0.0/15 maxlen: 16
185.63.136.0/22 maxlen: 23
188.208.117.0/24 maxlen: 24
188.208.118.0/23 maxlen: 23
188.214.153.0/24 maxlen: 24
188.214.195.0/24 maxlen: 24
188.214.196.0/23 maxlen: 23
188.240.64.0/22 maxlen: 22
188.240.64.0/23 maxlen: 23
188.240.66.0/23 maxlen: 23
193.178.165.0/24 maxlen: 24
194.102.99.0/24 maxlen: 24
194.102.146.0/24 maxlen: 24
194.102.248.0/21 maxlen: 22
194.105.17.0/24 maxlen: 24
194.105.24.0/22 maxlen: 22
194.105.28.0/22 maxlen: 23
195.234.172.0/24 maxlen: 24
213.164.224.0/19 maxlen: 20
2a04:2400::/27 maxlen: 27
2a04:2400::/28 maxlen: 28
2a04:2410::/28 maxlen: 28
Validation: Failed, certificate revoked on Fri 24 May 2024 05:11:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:a8:f2:9a:66:f6:e7:2b:e6:97:62:73:b9:12:c4:1a:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75790c7ecf24d28be2e13fe069118cee27d58002
Validity
Not Before: May 24 04:53:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c8d401259769941249868c2e11515c1c376b5830
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:2e:80:18:63:53:b7:5e:4a:66:0c:ee:f6:8e:
9e:c6:b2:c4:3b:7d:32:a3:71:27:a0:e4:6b:b6:8c:
34:29:05:cb:3d:8b:28:f0:dc:58:ab:c3:eb:e8:aa:
44:56:38:2e:24:d2:44:0a:9a:72:c6:85:70:cf:3f:
4d:30:4b:70:1c:b9:39:29:76:7d:66:93:12:be:e6:
f2:d8:6e:0a:ef:a3:7a:b8:4e:06:17:33:bd:68:43:
ac:9e:42:bb:89:4e:02:e8:2f:cf:64:48:b0:7b:d2:
30:0d:42:03:2f:ea:4e:6d:28:2f:f0:21:42:7e:e2:
04:5f:bd:06:55:71:0e:23:a2:60:b0:7e:2a:e6:d5:
0f:46:46:69:49:bf:92:55:c6:74:e1:91:78:95:d9:
61:01:27:21:d1:1b:fd:24:f5:fe:30:a6:06:ab:96:
59:2a:8b:0e:1f:3f:72:85:31:02:a7:5a:c1:b5:87:
f8:da:57:95:26:cd:0e:11:6d:d3:a0:bd:cc:15:d2:
57:22:22:55:5f:c8:5c:67:85:dc:78:63:67:7e:65:
f7:29:c1:91:31:61:05:de:9e:9e:13:02:19:41:81:
c4:3b:ea:f3:2a:e4:15:45:3d:7c:fe:c8:d7:37:b6:
a0:0e:0e:d5:03:20:9c:04:2e:79:35:37:56:89:6f:
83:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:D4:01:25:97:69:94:12:49:86:8C:2E:11:51:5C:1C:37:6B:58:30
X509v3 Authority Key Identifier:
keyid:75:79:0C:7E:CF:24:D2:8B:E2:E1:3F:E0:69:11:8C:EE:27:D5:80:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dXkMfs8k0ovi4T_gaRGM7ifVgAI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/496d56-86ff-48be-bde3-271fde2dc655/1/yNQBJZdplBJJhowuEVFcHDdrWDA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/496d56-86ff-48be-bde3-271fde2dc655/1/dXkMfs8k0ovi4T_gaRGM7ifVgAI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.5.0.0/16
31.14.35.0/24
62.121.64.0/18
77.81.16.0/20
78.96.0.0/15
81.89.0.0/20
82.208.128.0/18
82.210.128.0/18
83.103.128.0/17
84.117.0.0/16
85.186.0.0/16
85.204.0.0/20
85.204.184.0/21
86.104.136.0/21
86.105.64.0/20
86.106.32.0/19
89.33.72.0/21
89.38.72.0/22
89.42.248.0/21
89.44.78.0/23
89.136.0.0/15
93.113.32.0/23
93.113.241.0-93.113.243.255
93.117.66.0/23
93.117.138.0/23
93.117.154.0/23
93.118.46.0/23
93.119.126.0/23
93.119.137.0-93.119.139.255
93.119.224.0-93.119.226.255
95.76.0.0/15
185.63.136.0/22
188.208.117.0-188.208.119.255
188.214.153.0/24
188.214.195.0-188.214.197.255
188.240.64.0/22
193.178.165.0/24
194.102.99.0/24
194.102.146.0/24
194.102.248.0/21
194.105.17.0/24
194.105.24.0/21
195.234.172.0/24
213.164.224.0/19
IPv6:
2a04:2400::/27
Signature Algorithm: sha256WithRSAEncryption
26:50:8f:89:ba:62:fc:0f:73:c5:f4:05:7d:c1:93:67:34:3f:
2a:40:f1:61:b4:62:55:bd:31:97:b5:1a:80:f9:33:2f:53:1a:
bc:0f:2a:0b:75:ce:c7:df:2f:0c:92:da:16:ff:2f:e7:1c:97:
5d:47:ae:9d:79:0b:6b:39:54:f0:75:b6:8a:04:87:ad:b6:ed:
74:12:fa:ae:65:87:8d:fc:f7:ef:b7:76:61:89:06:35:9f:e6:
36:ce:41:c7:af:14:f0:41:75:06:0e:dc:b4:0e:3a:54:c6:13:
b5:bd:d5:4d:55:1c:08:da:7c:8b:5f:4f:b9:18:72:d1:82:75:
fc:a7:06:95:62:53:d2:6d:0b:a7:f8:03:98:01:31:3a:aa:5b:
bc:f4:87:71:75:a5:61:5f:76:11:60:f8:dd:73:06:85:f8:82:
0e:4b:46:27:c9:90:b9:63:a2:09:8f:a7:c9:3a:1e:a8:4a:49:
97:73:c2:d3:71:17:1c:93:2e:7a:49:1e:1a:5a:47:e0:c5:30:
63:36:7d:66:d0:1c:34:aa:d3:f4:63:ef:8f:4f:95:91:16:a2:
ac:50:7f:dc:be:3f:7e:5b:46:c8:78:74:7a:91:7f:b7:17:97:
b8:d1:9a:e1:fc:1e:13:b3:4d:f3:93:c1:ce:9c:b1:b9:f2:88:
5c:0d:44:f8
-----BEGIN CERTIFICATE-----
MIIGOjCCBSKgAwIBAgISAY+o8ppm9ucr5pdic7kSxBqXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc1NzkwYzdlY2YyNGQyOGJlMmUxM2ZlMDY5MTE4Y2VlMjdk
NTgwMDIwHhcNMjQwNTI0MDQ1MzQyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjOGQ0MDEyNTk3Njk5NDEyNDk4NjhjMmUxMTUxNWMxYzM3NmI1ODMwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnC6AGGNTt15KZgzu9o6exrLEO30y
o3EnoORrtow0KQXLPYso8NxYq8Pr6KpEVjguJNJECppyxoVwzz9NMEtwHLk5KXZ9
ZpMSvuby2G4K76N6uE4GFzO9aEOsnkK7iU4C6C/PZEiwe9IwDUIDL+pObSgv8CFC
fuIEX70GVXEOI6JgsH4q5tUPRkZpSb+SVcZ04ZF4ldlhASch0Rv9JPX+MKYGq5ZZ
KosOHz9yhTECp1rBtYf42leVJs0OEW3ToL3MFdJXIiJVX8hcZ4XceGNnfmX3KcGR
MWEF3p6eEwIZQYHEO+rzKuQVRT18/sjXN7agDg7VAyCcBC55NTdWiW+DlwIDAQAB
o4IDRjCCA0IwHQYDVR0OBBYEFMjUASWXaZQSSYaMLhFRXBw3a1gwMB8GA1UdIwQY
MBaAFHV5DH7PJNKL4uE/4GkRjO4n1YACMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZFhrTWZzOGswb3ZpNFRfZ2FSR003aWZWZ0FJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Mi80OTZkNTYtODZmZi00OGJlLWJkZTMt
MjcxZmRlMmRjNjU1LzEveU5RQkpaZHBsQkpKaG93dUVWRmNIRGRyV0RBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Mi80OTZkNTYtODZmZi00OGJlLWJkZTMtMjcxZmRlMmRjNjU1
LzEvZFhrTWZzOGswb3ZpNFRfZ2FSR003aWZWZ0FJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBWgYIKwYBBQUHAQcBAf8EggFJMIIBRTCCATIEAgABMIIB
KgMDAB8FAwQAHw4jAwQGPnlAAwQETVEQAwMBTmADBARRWQADBAZS0IADBAZS0oAD
BAdTZ4ADAwBUdQMDAFW6AwQEVcwAAwQDVcy4AwQDVmiIAwQEVmlAAwQFVmogAwQD
WSFIAwQCWSZIAwQDWSr4AwQBWSxOAwMBWYgDBAFdcSAwDAMEAF1x8QMEAl1x8AME
AV11QgMEAV11igMEAV11mgMEAV12LgMEAV13fjAMAwQAXXeJAwQCXXeIMAwDBAVd
d+ADBABdd+IDAwFfTAMEArk/iDAMAwQAvNB1AwQDvNBwAwQAvNaZMAwDBAC81sMD
BAG81sQDBAK88EADBADBsqUDBADCZmMDBADCZpIDBAPCZvgDBADCaREDBAPCaRgD
BADD6qwDBAXVpOAwDQQCAAIwBwMFBSoEJAAwDQYJKoZIhvcNAQELBQADggEBACZQ
j4m6YvwPc8X0BX3Bk2c0PypA8WG0YlW9MZe1GoD5My9TGrwPKgt1zsffLwyS2hb/
L+ccl11Hrp15C2s5VPB1tooEh6227XQS+q5lh4389++3dmGJBjWf5jbOQcevFPBB
dQYO3LQOOlTGE7W91U1VHAjafItfT7kYctGCdfynBpViU9JtC6f4A5gBMTqqW7z0
h3F1pWFfdhFg+N1zBoX4gg5LRifJkLljogmPp8k6HqhKSZdzwtNxFxyTLnpJHhpa
R+DFMGM2fWbQHDSq0/Rj749PlZEWoqxQf9y+P35bRsh4dHqRf7cXl7jRmuH8HhOz
TfOTwc6csbnyiFwNRPg=
-----END CERTIFICATE-----
Generated at Mon May 12 11:31:18 2025 by rpki-client