Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/b79a68-5b02-4097-a2e3-0a43b7a3eb54/1/1fyHeHOOrbOm1BMBVxe9Z0JhRRs.roa
File: 1fyHeHOOrbOm1BMBVxe9Z0JhRRs.roa (raw, json)
Hash identifier: vX8FIu9190YpYK95UjMIqBxPlPgwhX8lhJSYqpi4WYQ=
Subject key identifier: D5:FC:87:78:73:8E:AD:B3:A6:D4:13:01:57:17:BD:67:42:61:45:1B
Certificate issuer: /CN=66ed3ba68c78bff2c4724400ade6348482fb4364
Certificate serial: 019461D7AAB91CA03367C88127DF05D9F40D
Authority key identifier: 66:ED:3B:A6:8C:78:BF:F2:C4:72:44:00:AD:E6:34:84:82:FB:43:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zu07pox4v_LEckQAreY0hIL7Q2Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/b79a68-5b02-4097-a2e3-0a43b7a3eb54/1/1fyHeHOOrbOm1BMBVxe9Z0JhRRs.roa
Signing time: Mon 13 Jan 2025 22:45:11 +0000
ROA not before: Mon 13 Jan 2025 22:45:11 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 64289
IP address blocks: 185.225.24.0/24 maxlen: 24
185.225.26.0/24 maxlen: 24
2a14:3f80:8::/45 maxlen: 45
2a14:3f80:10::/45 maxlen: 45
2a14:3f80:18::/45 maxlen: 45
2a14:3f80:20::/45 maxlen: 45
2a14:3f80:28::/45 maxlen: 45
2a14:3f80:60::/45 maxlen: 45
2a14:3f80:80::/45 maxlen: 45
2a14:3f80:88::/45 maxlen: 45
2a14:3f80:100::/45 maxlen: 45
2a14:3f80:108::/45 maxlen: 45
2a14:3f80:3d1::/48 maxlen: 48
2a14:3f80:800::/38 maxlen: 38
2a14:3f80:c00::/38 maxlen: 38
2a14:3f80:1000::/38 maxlen: 38
2a14:3f80:1400::/38 maxlen: 38
2a14:3f80:1800::/38 maxlen: 38
2a14:3f80:2000::/38 maxlen: 38
2a14:3f80:2400::/38 maxlen: 38
2a14:3f80:2800::/38 maxlen: 38
2a14:3f80:3000::/38 maxlen: 38
2a14:3f80:3400::/38 maxlen: 38
2a14:3f80:3800::/38 maxlen: 38
2a14:3f80:3c00::/38 maxlen: 38
2a14:3f80:4000::/38 maxlen: 38
2a14:3f80:4400::/38 maxlen: 38
2a14:3f80:5000::/38 maxlen: 38
2a14:3f80:6000::/38 maxlen: 38
2a14:3f80:7000::/38 maxlen: 38
2a14:3f80:8800::/38 maxlen: 38
2a14:3f80:af38::/45 maxlen: 45
2a14:3f81:5800::/38 maxlen: 38
2a14:3f82:4000::/38 maxlen: 38
2a14:3f82:6000::/38 maxlen: 38
2a14:3f82:7000::/38 maxlen: 38
2a14:3f82:8800::/38 maxlen: 38
2a14:3f87:2800::/38 maxlen: 38
2a14:3f87:4800::/38 maxlen: 38
2a14:3f87:6800::/38 maxlen: 38
2a14:3f87:9800::/38 maxlen: 38
2a14:3f87:c800::/38 maxlen: 38
2a14:3f87:f000::/38 maxlen: 38
2a14:3f87:fc00::/38 maxlen: 38
Validation: Failed, certificate revoked on Wed 22 Jan 2025 08:04:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:61:d7:aa:b9:1c:a0:33:67:c8:81:27:df:05:d9:f4:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66ed3ba68c78bff2c4724400ade6348482fb4364
Validity
Not Before: Jan 13 22:45:11 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d5fc8778738eadb3a6d413015717bd674261451b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:e0:9e:9a:0b:4f:e9:7f:89:01:86:8d:11:59:
ce:0b:b1:b1:3d:db:90:04:e7:f0:93:49:bb:e8:1b:
a3:b7:e9:23:c9:21:e7:d6:7c:a9:db:32:cc:04:63:
b1:ea:78:3b:cd:a4:41:10:9f:5f:c4:10:7a:d5:d9:
60:5b:d0:75:e8:17:2d:09:30:2d:ef:49:82:13:fe:
d1:99:cd:f3:c3:83:1e:20:34:29:96:fb:88:f5:bd:
60:3b:25:4c:5c:d1:fb:24:db:c6:7a:51:91:e2:77:
66:96:47:f8:c9:f1:4a:f7:cf:53:bc:e9:36:69:cf:
3a:50:35:e2:4e:c1:45:70:03:0d:13:bd:81:04:b1:
9e:4f:fa:34:81:25:61:25:02:09:62:61:05:c0:70:
95:51:c3:c0:e8:12:01:79:67:ff:27:dd:16:7b:99:
ce:1e:3e:91:eb:01:8e:10:b0:64:ec:bb:d4:a4:99:
13:f4:d0:7a:da:30:3c:a8:8b:58:38:c0:7f:3e:02:
e5:c6:80:e9:38:d7:1c:e4:02:b1:db:21:f9:77:b7:
fb:2a:ef:92:db:00:53:79:15:1f:37:b2:30:eb:45:
bb:3e:d8:ee:8f:f8:bc:43:14:3a:23:f4:ad:1a:dd:
a9:1f:af:74:10:7a:0a:34:98:f1:1e:56:19:14:8d:
02:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:FC:87:78:73:8E:AD:B3:A6:D4:13:01:57:17:BD:67:42:61:45:1B
X509v3 Authority Key Identifier:
keyid:66:ED:3B:A6:8C:78:BF:F2:C4:72:44:00:AD:E6:34:84:82:FB:43:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zu07pox4v_LEckQAreY0hIL7Q2Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/b79a68-5b02-4097-a2e3-0a43b7a3eb54/1/1fyHeHOOrbOm1BMBVxe9Z0JhRRs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/b79a68-5b02-4097-a2e3-0a43b7a3eb54/1/Zu07pox4v_LEckQAreY0hIL7Q2Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.225.24.0/24
185.225.26.0/24
IPv6:
2a14:3f80:8::-2a14:3f80:2f:ffff:ffff:ffff:ffff:ffff
2a14:3f80:60::/45
2a14:3f80:80::/44
2a14:3f80:100::/44
2a14:3f80:3d1::/48
2a14:3f80:800::-2a14:3f80:1bff:ffff:ffff:ffff:ffff:ffff
2a14:3f80:2000::-2a14:3f80:2bff:ffff:ffff:ffff:ffff:ffff
2a14:3f80:3000::-2a14:3f80:47ff:ffff:ffff:ffff:ffff:ffff
2a14:3f80:5000::/38
2a14:3f80:6000::/38
2a14:3f80:7000::/38
2a14:3f80:8800::/38
2a14:3f80:af38::/45
2a14:3f81:5800::/38
2a14:3f82:4000::/38
2a14:3f82:6000::/38
2a14:3f82:7000::/38
2a14:3f82:8800::/38
2a14:3f87:2800::/38
2a14:3f87:4800::/38
2a14:3f87:6800::/38
2a14:3f87:9800::/38
2a14:3f87:c800::/38
2a14:3f87:f000::/38
2a14:3f87:fc00::/38
Signature Algorithm: sha256WithRSAEncryption
c3:a2:2c:85:07:d1:0d:0e:35:78:80:ec:0c:25:fe:96:4f:0e:
1d:1d:2f:61:0b:03:e9:f3:d8:4c:97:ee:72:ed:47:91:01:e0:
19:b6:df:5f:8b:a9:3a:26:eb:da:28:e6:8a:d8:c3:32:b9:e0:
50:bb:51:48:4f:ee:96:49:21:67:7a:5f:54:7d:d7:4a:34:e0:
ee:26:7e:fb:49:ef:94:61:ca:b9:26:5f:bf:64:88:66:76:63:
63:72:1b:17:25:18:af:e9:1c:01:1c:1a:0d:ab:4f:6d:03:4c:
af:66:a4:82:69:62:6f:ea:b6:0e:dd:8d:7d:b8:47:cf:f9:59:
0e:bd:a3:b3:17:35:ad:a3:58:3a:db:0a:32:75:89:e7:b8:f7:
88:bb:55:f2:c9:36:f6:c1:36:89:0f:7a:0c:a4:bb:02:47:39:
5f:a2:dd:38:54:ea:77:dd:e8:58:25:22:69:00:46:0d:e7:96:
c1:6f:22:1c:e7:98:aa:21:98:8d:fc:ff:35:27:a1:6a:c5:fa:
28:01:bf:6f:3c:f4:5c:43:1f:26:40:d4:b2:6c:cb:ab:01:63:
de:cb:34:95:3d:a9:12:92:c5:55:99:d8:8a:6d:03:37:d1:a6:
a4:b6:53:af:6b:46:eb:e7:e3:6f:ef:ce:47:19:91:0d:11:22:
6b:03:a7:4e
-----BEGIN CERTIFICATE-----
MIIGCjCCBPKgAwIBAgISAZRh16q5HKAzZ8iBJ98F2fQNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY2ZWQzYmE2OGM3OGJmZjJjNDcyNDQwMGFkZTYzNDg0ODJm
YjQzNjQwHhcNMjUwMTEzMjI0NTExWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkNWZjODc3ODczOGVhZGIzYTZkNDEzMDE1NzE3YmQ2NzQyNjE0NTFiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp+CemgtP6X+JAYaNEVnOC7GxPduQ
BOfwk0m76Bujt+kjySHn1nyp2zLMBGOx6ng7zaRBEJ9fxBB61dlgW9B16BctCTAt
70mCE/7Rmc3zw4MeIDQplvuI9b1gOyVMXNH7JNvGelGR4ndmlkf4yfFK989TvOk2
ac86UDXiTsFFcAMNE72BBLGeT/o0gSVhJQIJYmEFwHCVUcPA6BIBeWf/J90We5nO
Hj6R6wGOELBk7LvUpJkT9NB62jA8qItYOMB/PgLlxoDpONcc5AKx2yH5d7f7Ku+S
2wBTeRUfN7Iw60W7Ptjuj/i8QxQ6I/StGt2pH690EHoKNJjxHlYZFI0CeQIDAQAB
o4IDFjCCAxIwHQYDVR0OBBYEFNX8h3hzjq2zptQTAVcXvWdCYUUbMB8GA1UdIwQY
MBaAFGbtO6aMeL/yxHJEAK3mNISC+0NkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWnUwN3BveDR2X0xFY2tRQXJlWTBoSUw3UTJRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS9iNzlhNjgtNWIwMi00MDk3LWEyZTMt
MGE0M2I3YTNlYjU0LzEvMWZ5SGVIT09yYk9tMUJNQlZ4ZTlaMEpoUlJzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNS9iNzlhNjgtNWIwMi00MDk3LWEyZTMtMGE0M2I3YTNlYjU0
LzEvWnUwN3BveDR2X0xFY2tRQXJlWTBoSUw3UTJRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBKgYIKwYBBQUHAQcBAf8EggEZMIIBFTASBAIAATAMAwQA
ueEYAwQAueEaMIH+BAIAAjCB9zASAwcDKhQ/gAAIAwcEKhQ/gAAgAwcDKhQ/gABg
AwcEKhQ/gACAAwcEKhQ/gAEAAwcAKhQ/gAPRMBADBgMqFD+ACAMGAioUP4AYMBAD
BgUqFD+AIAMGAioUP4AoMBADBgQqFD+AMAMGAyoUP4BAAwYCKhQ/gFADBgIqFD+A
YAMGAioUP4BwAwYCKhQ/gIgDBwMqFD+ArzgDBgIqFD+BWAMGAioUP4JAAwYCKhQ/
gmADBgIqFD+CcAMGAioUP4KIAwYCKhQ/hygDBgIqFD+HSAMGAioUP4doAwYCKhQ/
h5gDBgIqFD+HyAMGAioUP4fwAwYCKhQ/h/wwDQYJKoZIhvcNAQELBQADggEBAMOi
LIUH0Q0ONXiA7Awl/pZPDh0dL2ELA+nz2EyX7nLtR5EB4Bm231+LqTom69oo5orY
wzK54FC7UUhP7pZJIWd6X1R910o04O4mfvtJ75RhyrkmX79kiGZ2Y2NyGxclGK/p
HAEcGg2rT20DTK9mpIJpYm/qtg7djX24R8/5WQ69o7MXNa2jWDrbCjJ1iee494i7
VfLJNvbBNokPegykuwJHOV+i3ThU6nfd6FglImkARg3nlsFvIhznmKohmI38/zUn
oWrF+igBv2889FxDHyZA1LJsy6sBY97LNJU9qRKSxVWZ2IptAzfRpqS2U69rRuvn
42/vzkcZkQ0RImsDp04=
-----END CERTIFICATE-----
Generated at Thu Apr 17 20:51:36 2025 by rpki-client