Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/b79a68-5b02-4097-a2e3-0a43b7a3eb54/1/aNuI8NHboaGozj75aKMNt5aRX98.roa
File: aNuI8NHboaGozj75aKMNt5aRX98.roa (raw, json)
Hash identifier: rVL1En8U1imCYE4dF8KIIya+meVgf/0hI6vf63GVUOA=
Subject key identifier: 68:DB:88:F0:D1:DB:A1:A1:A8:CE:3E:F9:68:A3:0D:B7:96:91:5F:DF
Certificate issuer: /CN=66ed3ba68c78bff2c4724400ade6348482fb4364
Certificate serial: 0197780F99C55DE62A7BB65C7EB18E27F5CC
Authority key identifier: 66:ED:3B:A6:8C:78:BF:F2:C4:72:44:00:AD:E6:34:84:82:FB:43:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zu07pox4v_LEckQAreY0hIL7Q2Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/b79a68-5b02-4097-a2e3-0a43b7a3eb54/1/aNuI8NHboaGozj75aKMNt5aRX98.roa
Signing time: Mon 16 Jun 2025 09:26:17 +0000
ROA not before: Mon 16 Jun 2025 09:26:17 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 64289
IP address blocks: 185.225.24.0/24 maxlen: 24
185.225.26.0/24 maxlen: 24
192.189.157.0/24 maxlen: 24
194.110.60.0/24 maxlen: 24
2a14:3f80::/45 maxlen: 45
2a14:3f80:8::/45 maxlen: 45
2a14:3f80:10::/45 maxlen: 45
2a14:3f80:18::/45 maxlen: 45
2a14:3f80:20::/45 maxlen: 45
2a14:3f80:28::/45 maxlen: 45
2a14:3f80:60::/45 maxlen: 45
2a14:3f80:80::/45 maxlen: 45
2a14:3f80:88::/45 maxlen: 45
2a14:3f80:100::/45 maxlen: 45
2a14:3f80:108::/45 maxlen: 45
2a14:3f80:3d1::/48 maxlen: 48
2a14:3f80:800::/38 maxlen: 38
2a14:3f80:c00::/38 maxlen: 38
2a14:3f80:1000::/38 maxlen: 38
2a14:3f80:1400::/38 maxlen: 38
2a14:3f80:1800::/38 maxlen: 38
2a14:3f80:1ed0::/45 maxlen: 45
2a14:3f80:2000::/38 maxlen: 38
2a14:3f80:2400::/38 maxlen: 38
2a14:3f80:2800::/38 maxlen: 38
2a14:3f80:3000::/38 maxlen: 38
2a14:3f80:3400::/38 maxlen: 38
2a14:3f80:3800::/38 maxlen: 38
2a14:3f80:3c00::/38 maxlen: 38
2a14:3f80:4000::/38 maxlen: 38
2a14:3f80:4400::/38 maxlen: 38
2a14:3f80:5000::/38 maxlen: 38
2a14:3f80:6000::/38 maxlen: 38
2a14:3f80:7000::/38 maxlen: 38
2a14:3f80:8800::/38 maxlen: 38
2a14:3f80:af38::/45 maxlen: 45
2a14:3f81:5800::/38 maxlen: 38
2a14:3f82:4000::/38 maxlen: 38
2a14:3f82:6000::/38 maxlen: 38
2a14:3f82:7000::/38 maxlen: 38
2a14:3f82:8800::/38 maxlen: 38
2a14:3f87:2800::/38 maxlen: 38
2a14:3f87:4800::/38 maxlen: 38
2a14:3f87:6800::/38 maxlen: 38
2a14:3f87:9800::/38 maxlen: 38
2a14:3f87:c800::/38 maxlen: 38
2a14:3f87:e000::/38 maxlen: 38
2a14:3f87:f000::/38 maxlen: 38
2a14:3f87:fc00::/38 maxlen: 38
Validation: Failed, certificate revoked on Fri 20 Jun 2025 07:25:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:78:0f:99:c5:5d:e6:2a:7b:b6:5c:7e:b1:8e:27:f5:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66ed3ba68c78bff2c4724400ade6348482fb4364
Validity
Not Before: Jun 16 09:26:17 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=68db88f0d1dba1a1a8ce3ef968a30db796915fdf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:39:09:76:43:4e:b5:0b:e7:d3:00:66:5a:4a:
3e:42:32:89:45:78:94:79:c7:fb:03:77:92:54:03:
9f:2d:c6:8f:b8:00:58:3c:50:6f:95:3f:03:b6:b2:
b7:6c:cd:62:9c:1d:19:7e:4f:d0:fb:b2:d9:ba:d8:
1d:62:68:0e:61:f6:3b:0f:8f:ae:17:93:5c:6d:54:
9b:bf:c5:71:c3:ac:ab:01:5e:2c:c3:ca:42:e1:c7:
3e:fa:dc:7c:0c:77:1f:e2:d9:0e:e3:44:04:bf:72:
c8:19:85:c8:d8:c7:f4:d6:65:7a:2d:8b:67:bf:2c:
f6:9d:fe:57:94:0e:c6:40:e4:30:78:69:e3:bb:e2:
81:6d:a9:8d:70:94:96:60:d7:f6:8e:24:1b:55:67:
43:1b:6a:21:30:62:98:10:b8:e1:cf:ab:1d:25:0c:
95:5d:8d:f7:e0:41:59:ca:25:39:cd:ed:e6:9b:e7:
76:f0:35:d5:06:50:d6:27:1f:47:82:ad:da:8a:7d:
2d:aa:11:12:f3:8e:0a:58:c0:e3:23:37:cb:db:bc:
6d:27:74:d2:fd:c3:07:7a:b5:8c:30:b3:dc:07:b0:
55:19:a9:f6:d4:b7:5e:28:b1:0e:72:d3:81:70:2b:
72:de:97:c6:53:4b:88:0a:79:be:3a:5c:0a:7c:9e:
ce:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:DB:88:F0:D1:DB:A1:A1:A8:CE:3E:F9:68:A3:0D:B7:96:91:5F:DF
X509v3 Authority Key Identifier:
keyid:66:ED:3B:A6:8C:78:BF:F2:C4:72:44:00:AD:E6:34:84:82:FB:43:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zu07pox4v_LEckQAreY0hIL7Q2Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/b79a68-5b02-4097-a2e3-0a43b7a3eb54/1/aNuI8NHboaGozj75aKMNt5aRX98.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/b79a68-5b02-4097-a2e3-0a43b7a3eb54/1/Zu07pox4v_LEckQAreY0hIL7Q2Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.225.24.0/24
185.225.26.0/24
192.189.157.0/24
194.110.60.0/24
IPv6:
2a14:3f80::-2a14:3f80:2f:ffff:ffff:ffff:ffff:ffff
2a14:3f80:60::/45
2a14:3f80:80::/44
2a14:3f80:100::/44
2a14:3f80:3d1::/48
2a14:3f80:800::-2a14:3f80:1bff:ffff:ffff:ffff:ffff:ffff
2a14:3f80:1ed0::/45
2a14:3f80:2000::-2a14:3f80:2bff:ffff:ffff:ffff:ffff:ffff
2a14:3f80:3000::-2a14:3f80:47ff:ffff:ffff:ffff:ffff:ffff
2a14:3f80:5000::/38
2a14:3f80:6000::/38
2a14:3f80:7000::/38
2a14:3f80:8800::/38
2a14:3f80:af38::/45
2a14:3f81:5800::/38
2a14:3f82:4000::/38
2a14:3f82:6000::/38
2a14:3f82:7000::/38
2a14:3f82:8800::/38
2a14:3f87:2800::/38
2a14:3f87:4800::/38
2a14:3f87:6800::/38
2a14:3f87:9800::/38
2a14:3f87:c800::/38
2a14:3f87:e000::/38
2a14:3f87:f000::/38
2a14:3f87:fc00::/38
Signature Algorithm: sha256WithRSAEncryption
af:b5:2a:3a:e8:84:e0:83:b5:a1:ad:76:e8:1a:f5:f7:84:6c:
6c:2e:ab:74:b4:ae:05:d2:cf:5f:0e:12:f6:21:aa:89:bc:94:
cb:e9:ae:7c:e4:96:29:e3:8f:ec:60:5b:0f:49:d2:ad:fc:4a:
a9:0b:3c:9a:32:83:b3:ec:fd:11:9e:f0:e5:d2:5f:1e:1a:46:
91:6f:f0:50:18:80:6e:45:51:92:12:e5:23:fa:28:59:a3:45:
4c:2b:b1:80:5a:a7:1a:ce:28:30:f9:8a:06:33:df:ee:f8:03:
97:e8:8f:8a:27:fb:20:6d:6a:c7:37:6b:5f:c5:f1:54:5a:41:
6b:0d:05:a3:a8:07:eb:29:45:2a:5e:a3:cc:a3:b7:f1:b4:3a:
8e:d7:d9:e0:d4:98:ed:d5:f5:28:37:c6:b3:0c:7c:f5:27:05:
51:29:64:c0:08:45:2e:34:21:5f:31:93:d1:30:c3:17:25:0c:
0e:f8:3b:5a:8a:27:e7:6f:91:ad:b3:3e:8c:7e:b8:f5:fd:0c:
16:e2:ea:b9:22:00:4e:ee:38:2f:ed:1b:c2:79:cf:0e:b6:3b:
04:3d:fe:1c:9b:15:95:92:8c:4e:2c:cb:33:b2:4e:1d:42:78:
cc:69:a5:e6:26:78:76:14:32:a5:c2:ac:65:56:ab:dc:90:e9:
13:3e:dc:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 08:34:02 2025 by rpki-client