Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/4Fpah-22POpOjhdml86vBu81ZOA.roa
File: 4Fpah-22POpOjhdml86vBu81ZOA.roa (raw, json)
Hash identifier: St59UHUloiJ28b7faE7Ai50xAKKHD5hDUvcUSrLhV5U=
Subject key identifier: E0:5A:5A:87:ED:B6:3C:EA:4E:8E:17:66:97:CE:AF:06:EF:35:64:E0
Certificate issuer: /CN=bb830630f23b070a2b7bdf529f73948c97eacd40
Certificate serial: 01961B28FADD50354545C61F3E93118638F9
Authority key identifier: BB:83:06:30:F2:3B:07:0A:2B:7B:DF:52:9F:73:94:8C:97:EA:CD:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u4MGMPI7Bwore99Sn3OUjJfqzUA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/4Fpah-22POpOjhdml86vBu81ZOA.roa
Signing time: Wed 09 Apr 2025 15:26:32 +0000
ROA not before: Wed 09 Apr 2025 15:26:32 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 44477
IP address blocks: 37.221.124.0/22 maxlen: 24
45.67.228.0/24 maxlen: 24
45.67.229.0/24 maxlen: 24
45.67.230.0/24 maxlen: 24
45.67.231.0/24 maxlen: 24
45.120.176.0/22 maxlen: 24
62.3.12.0/24 maxlen: 24
74.119.192.0/24 maxlen: 24
74.119.193.0/24 maxlen: 24
74.119.194.0/24 maxlen: 24
74.119.195.0/24 maxlen: 24
80.92.204.0/24 maxlen: 24
80.92.205.0/24 maxlen: 24
80.92.206.0/24 maxlen: 24
86.104.72.0/22 maxlen: 24
89.221.224.0/24 maxlen: 24
89.221.225.0/24 maxlen: 24
91.132.132.0/22 maxlen: 24
91.194.161.0/24 maxlen: 24
91.225.217.0/24 maxlen: 24
91.225.218.0/24 maxlen: 24
91.225.219.0/24 maxlen: 24
94.131.8.0/24 maxlen: 24
94.131.113.0/24 maxlen: 24
94.131.121.0/24 maxlen: 24
103.35.188.0/22 maxlen: 24
103.106.0.0/22 maxlen: 24
103.113.68.0/22 maxlen: 24
103.231.72.0/22 maxlen: 24
176.120.64.0/22 maxlen: 24
176.120.64.0/24 maxlen: 24
176.120.72.0/22 maxlen: 24
185.234.56.0/22 maxlen: 24
185.234.64.0/22 maxlen: 24
185.235.240.0/22 maxlen: 24
185.236.232.0/22 maxlen: 24
185.242.84.0/24 maxlen: 24
185.242.85.0/24 maxlen: 24
185.242.86.0/24 maxlen: 24
185.242.87.0/24 maxlen: 24
185.250.148.0/24 maxlen: 24
185.250.149.0/24 maxlen: 24
185.250.150.0/24 maxlen: 24
185.250.151.0/24 maxlen: 24
193.203.202.0/24 maxlen: 24
194.54.156.0/24 maxlen: 24
194.54.157.0/24 maxlen: 24
194.54.158.0/24 maxlen: 24
194.54.159.0/24 maxlen: 24
194.62.42.0/24 maxlen: 24
194.246.114.0/24 maxlen: 24
194.246.115.0/24 maxlen: 24
195.42.232.0/22 maxlen: 24
195.149.87.0/24 maxlen: 24
213.159.64.0/21 maxlen: 24
213.159.72.0/21 maxlen: 24
213.159.76.0/24 maxlen: 24
213.159.77.0/24 maxlen: 24
213.159.78.0/24 maxlen: 24
213.159.79.0/24 maxlen: 24
2a09:7c40::/32 maxlen: 32
2a09:7c41::/32 maxlen: 32
2a09:7c42::/32 maxlen: 32
2a09:7c43::/32 maxlen: 32
2a09:7c44::/32 maxlen: 32
2a09:7c45::/32 maxlen: 32
2a09:7c46::/32 maxlen: 32
2a09:7c47::/32 maxlen: 32
2a0b:cf45::/32 maxlen: 32
2a0b:cf46::/32 maxlen: 32
2a0b:cf47::/32 maxlen: 32
2a11:3805::/32 maxlen: 32
2a11:3c02::/32 maxlen: 32
2a11:3c03::/32 maxlen: 32
2a11:4c04::/32 maxlen: 32
2a11:4c05::/32 maxlen: 32
2a11:4c06::/32 maxlen: 32
2a14:2d80::/32 maxlen: 32
2a14:2d81::/32 maxlen: 32
2a14:2d82::/32 maxlen: 32
2a14:2d83::/32 maxlen: 32
2a14:2d85::/32 maxlen: 32
2a14:2d87::/32 maxlen: 32
2a14:2e80::/32 maxlen: 32
2a14:2f80::/32 maxlen: 32
2a14:3080::/32 maxlen: 32
2a14:3081::/32 maxlen: 32
2a14:3082::/32 maxlen: 32
2a14:3083::/32 maxlen: 32
2a14:3084::/32 maxlen: 32
2a14:3085::/32 maxlen: 32
2a14:3880::/32 maxlen: 32
Validation: Failed, certificate revoked on Sun 13 Apr 2025 20:45:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:1b:28:fa:dd:50:35:45:45:c6:1f:3e:93:11:86:38:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb830630f23b070a2b7bdf529f73948c97eacd40
Validity
Not Before: Apr 9 15:26:32 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e05a5a87edb63cea4e8e176697ceaf06ef3564e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:27:0d:f6:87:a8:18:d1:27:0e:41:c7:55:49:
4f:d9:2d:4a:10:d2:2f:ea:9e:0b:1f:09:30:e5:7e:
70:2b:b7:9c:b8:35:58:ce:40:67:f6:dd:29:a0:56:
10:ee:0c:f8:7d:a0:36:d3:54:3d:4a:75:57:cd:b7:
52:f5:ff:4b:f7:83:c7:f0:b9:60:ae:8b:4a:4a:7b:
f4:16:d2:1e:a2:8d:63:f9:93:a4:b8:9d:9b:ea:da:
ea:15:b5:89:d7:2c:fc:ec:49:48:57:7f:46:36:16:
4d:9f:e6:a7:09:a5:03:2f:5b:8c:e9:fc:9a:66:bc:
6d:5a:5e:d0:51:83:83:ed:28:d7:cb:1d:a6:9b:34:
ef:b5:d6:a9:51:c2:59:ba:63:65:45:ef:e8:93:d4:
27:0b:32:dd:98:95:aa:b8:e8:3f:2c:a7:d0:c4:27:
66:79:ba:fc:af:28:0d:2d:fb:5c:2c:d2:90:84:b8:
d8:bc:e3:55:3f:67:5c:1b:fa:5b:3d:86:22:42:44:
07:ee:68:87:35:79:ec:21:9b:1a:b1:27:4b:87:c5:
58:26:86:9d:26:11:d6:4f:76:43:1e:6f:0d:5e:cf:
d8:9d:14:7a:4d:18:87:d3:d8:34:9b:71:db:a6:33:
da:77:e8:9c:3a:30:41:b1:5b:04:a2:de:23:bd:d6:
50:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:5A:5A:87:ED:B6:3C:EA:4E:8E:17:66:97:CE:AF:06:EF:35:64:E0
X509v3 Authority Key Identifier:
keyid:BB:83:06:30:F2:3B:07:0A:2B:7B:DF:52:9F:73:94:8C:97:EA:CD:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u4MGMPI7Bwore99Sn3OUjJfqzUA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/4Fpah-22POpOjhdml86vBu81ZOA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/u4MGMPI7Bwore99Sn3OUjJfqzUA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.221.124.0/22
45.67.228.0/22
45.120.176.0/22
62.3.12.0/24
74.119.192.0/22
80.92.204.0-80.92.206.255
86.104.72.0/22
89.221.224.0/23
91.132.132.0/22
91.194.161.0/24
91.225.217.0-91.225.219.255
94.131.8.0/24
94.131.113.0/24
94.131.121.0/24
103.35.188.0/22
103.106.0.0/22
103.113.68.0/22
103.231.72.0/22
176.120.64.0/22
176.120.72.0/22
185.234.56.0/22
185.234.64.0/22
185.235.240.0/22
185.236.232.0/22
185.242.84.0/22
185.250.148.0/22
193.203.202.0/24
194.54.156.0/22
194.62.42.0/24
194.246.114.0/23
195.42.232.0/22
195.149.87.0/24
213.159.64.0/20
IPv6:
2a09:7c40::/29
2a0b:cf45::-2a0b:cf47:ffff:ffff:ffff:ffff:ffff:ffff
2a11:3805::/32
2a11:3c02::/31
2a11:4c04::-2a11:4c06:ffff:ffff:ffff:ffff:ffff:ffff
2a14:2d80::/30
2a14:2d85::/32
2a14:2d87::/32
2a14:2e80::/32
2a14:2f80::/32
2a14:3080::-2a14:3085:ffff:ffff:ffff:ffff:ffff:ffff
2a14:3880::/32
Signature Algorithm: sha256WithRSAEncryption
15:9a:3c:4a:fa:5a:77:cd:32:6b:80:a2:e3:9a:3d:4e:54:4a:
1d:68:66:e7:21:44:b5:b1:da:54:4c:ab:7a:92:99:6e:ac:ff:
8b:c3:89:f4:d9:e3:27:f2:26:54:80:ef:8c:97:17:ff:97:c6:
36:b1:b7:ee:7d:1e:fd:bb:de:8e:90:3c:1c:9a:e1:71:fe:fc:
1b:97:7a:6c:02:76:3a:c7:a0:21:13:ef:8a:7a:0b:44:23:ae:
c3:69:45:d9:bd:e9:e1:f5:bf:a2:cf:e2:98:57:04:04:fe:90:
9f:0c:ce:cb:97:58:29:a7:b2:17:4a:6c:e5:32:90:91:81:ed:
48:b4:0f:0e:9c:0f:b0:15:62:4b:88:22:3d:c3:43:d7:6a:e1:
8c:bf:2d:30:06:73:0f:1b:85:25:67:4c:6b:15:82:30:d3:a9:
7e:fa:c7:ec:40:32:21:4a:56:ff:49:4a:d8:f2:5e:ce:22:c5:
57:5b:fa:0e:fe:4f:2b:3a:50:0c:d2:c1:4b:29:78:b5:ea:7f:
d4:7d:8e:eb:01:a6:40:b5:3e:ea:84:16:e6:16:4e:9d:68:29:
a6:ad:b6:50:37:d8:71:0a:aa:03:d6:a4:e1:f5:50:4a:22:a7:
ce:20:df:9f:bb:a8:b1:bc:ec:6f:2b:ca:43:c9:a1:ce:64:ea:
78:1b:97:11
-----BEGIN CERTIFICATE-----
MIIGTDCCBTSgAwIBAgISAZYbKPrdUDVFRcYfPpMRhjj5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJiODMwNjMwZjIzYjA3MGEyYjdiZGY1MjlmNzM5NDhjOTdl
YWNkNDAwHhcNMjUwNDA5MTUyNjMyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlMDVhNWE4N2VkYjYzY2VhNGU4ZTE3NjY5N2NlYWYwNmVmMzU2NGUwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxycN9oeoGNEnDkHHVUlP2S1KENIv
6p4LHwkw5X5wK7ecuDVYzkBn9t0poFYQ7gz4faA201Q9SnVXzbdS9f9L94PH8Llg
rotKSnv0FtIeoo1j+ZOkuJ2b6trqFbWJ1yz87ElIV39GNhZNn+anCaUDL1uM6fya
ZrxtWl7QUYOD7SjXyx2mmzTvtdapUcJZumNlRe/ok9QnCzLdmJWquOg/LKfQxCdm
ebr8rygNLftcLNKQhLjYvONVP2dcG/pbPYYiQkQH7miHNXnsIZsasSdLh8VYJoad
JhHWT3ZDHm8NXs/YnRR6TRiH09g0m3HbpjPad+icOjBBsVsEot4jvdZQTwIDAQAB
o4IDWDCCA1QwHQYDVR0OBBYEFOBaWofttjzqTo4XZpfOrwbvNWTgMB8GA1UdIwQY
MBaAFLuDBjDyOwcKK3vfUp9zlIyX6s1AMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdTRNR01QSTdCd29yZTk5U24zT1VqSmZxelVBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85ZS9mNzZlMjAtNTg1OS00MTVkLTg2YjMt
MTE5ZWZjYmIyMDIzLzEvNEZwYWgtMjJQT3BPamhkbWw4NnZCdTgxWk9BLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85ZS9mNzZlMjAtNTg1OS00MTVkLTg2YjMtMTE5ZWZjYmIyMDIz
LzEvdTRNR01QSTdCd29yZTk5U24zT1VqSmZxelVBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBbAYIKwYBBQUHAQcBAf8EggFbMIIBVzCB3QQCAAEwgdYD
BAIl3XwDBAItQ+QDBAIteLADBAA+AwwDBAJKd8AwDAMEAlBczAMEAFBczgMEAlZo
SAMEAVnd4AMEAluEhAMEAFvCoTAMAwQAW+HZAwQCW+HYAwQAXoMIAwQAXoNxAwQA
XoN5AwQCZyO8AwQCZ2oAAwQCZ3FEAwQCZ+dIAwQCsHhAAwQCsHhIAwQCueo4AwQC
uepAAwQCuevwAwQCuezoAwQCufJUAwQCufqUAwQAwcvKAwQCwjacAwQAwj4qAwQB
wvZyAwQCwyroAwQAw5VXAwQE1Z9AMHUEAgACMG8DBQMqCXxAMA4DBQAqC89FAwUD
KgvPQAMFACoROAUDBQEqETwCMA4DBQIqEUwEAwUAKhFMBgMFAioULYADBQAqFC2F
AwUAKhQthwMFACoULoADBQAqFC+AMA4DBQcqFDCAAwUBKhQwhAMFACoUOIAwDQYJ
KoZIhvcNAQELBQADggEBABWaPEr6WnfNMmuAouOaPU5USh1oZuchRLWx2lRMq3qS
mW6s/4vDifTZ4yfyJlSA74yXF/+Xxjaxt+59Hv273o6QPBya4XH+/BuXemwCdjrH
oCET74p6C0QjrsNpRdm96eH1v6LP4phXBAT+kJ8MzsuXWCmnshdKbOUykJGB7Ui0
Dw6cD7AVYkuIIj3DQ9dq4Yy/LTAGcw8bhSVnTGsVgjDTqX76x+xAMiFKVv9JStjy
Xs4ixVdb+g7+Tys6UAzSwUspeLXqf9R9jusBpkC1PuqEFuYWTp1oKaattlA32HEK
qgPWpOH1UEoip84g35+7qLG87G8rykPJoc5k6ngblxE=
-----END CERTIFICATE-----
Generated at Mon May 12 14:38:00 2025 by rpki-client