Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/b79a68-5b02-4097-a2e3-0a43b7a3eb54/1/m4laPJSJByixi64hknrFF0WoOqo.roa
File: m4laPJSJByixi64hknrFF0WoOqo.roa (raw, json)
Hash identifier: 0tb15SN7Kpz+EgD1CGbGLJG8xymEYx8AS97HVBAf5mk=
Subject key identifier: 9B:89:5A:3C:94:89:07:28:B1:8B:AE:21:92:7A:C5:17:45:A8:3A:AA
Certificate issuer: /CN=66ed3ba68c78bff2c4724400ade6348482fb4364
Certificate serial: 018F6F1A2A15A934C085C16B0A12065860C1
Authority key identifier: 66:ED:3B:A6:8C:78:BF:F2:C4:72:44:00:AD:E6:34:84:82:FB:43:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zu07pox4v_LEckQAreY0hIL7Q2Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/b79a68-5b02-4097-a2e3-0a43b7a3eb54/1/m4laPJSJByixi64hknrFF0WoOqo.roa
Signing time: Sun 12 May 2024 23:18:56 +0000
ROA not before: Sun 12 May 2024 23:18:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 64289
IP address blocks: 185.225.24.0/24 maxlen: 24
185.225.26.0/24 maxlen: 24
192.189.157.0/24 maxlen: 24
2a14:3f80:8::/45 maxlen: 45
2a14:3f80:10::/45 maxlen: 45
2a14:3f80:18::/45 maxlen: 45
2a14:3f80:20::/45 maxlen: 45
2a14:3f80:28::/45 maxlen: 45
2a14:3f80:80::/45 maxlen: 45
2a14:3f80:88::/45 maxlen: 45
2a14:3f80:100::/45 maxlen: 45
2a14:3f80:108::/45 maxlen: 45
2a14:3f80:800::/38 maxlen: 38
2a14:3f80:c00::/38 maxlen: 38
2a14:3f80:1000::/38 maxlen: 38
2a14:3f80:1400::/38 maxlen: 38
2a14:3f80:1800::/38 maxlen: 38
2a14:3f80:2000::/38 maxlen: 38
2a14:3f80:2400::/38 maxlen: 38
2a14:3f80:2800::/38 maxlen: 38
2a14:3f80:3000::/38 maxlen: 38
2a14:3f80:3400::/38 maxlen: 38
2a14:3f80:3800::/38 maxlen: 38
2a14:3f80:3c00::/38 maxlen: 38
2a14:3f80:4000::/38 maxlen: 38
2a14:3f80:4400::/38 maxlen: 38
2a14:3f80:6000::/38 maxlen: 38
2a14:3f80:7000::/38 maxlen: 38
2a14:3f80:8800::/38 maxlen: 38
2a14:3f82:4000::/38 maxlen: 38
Validation: Failed, certificate revoked on Mon 13 May 2024 00:11:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:6f:1a:2a:15:a9:34:c0:85:c1:6b:0a:12:06:58:60:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66ed3ba68c78bff2c4724400ade6348482fb4364
Validity
Not Before: May 12 23:18:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9b895a3c94890728b18bae21927ac51745a83aaa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:e4:1d:d5:3e:c5:b5:70:79:6d:68:26:1a:0f:
3e:5f:74:55:62:ad:52:cd:2c:43:8a:05:88:e3:d9:
76:9d:64:34:9c:91:ab:8e:2f:ce:fb:2f:84:0c:5b:
4f:92:e5:26:ea:74:28:86:9a:df:b6:45:dd:39:89:
4b:43:d8:31:d1:33:fb:34:63:24:5d:2f:2c:f3:9c:
74:8f:f3:f2:83:22:73:34:fb:a8:2b:17:4c:a7:22:
50:7f:2b:84:be:f1:ab:2f:43:c3:d6:92:12:25:74:
4d:74:3c:33:21:79:45:1f:89:99:23:60:af:61:74:
3d:9b:93:10:82:3d:18:a8:26:30:17:a2:5d:87:d4:
d4:f9:87:20:eb:17:6e:c7:6f:a0:ee:45:31:0f:b9:
51:47:06:5f:25:78:10:02:e4:ab:6d:86:34:11:4b:
98:d4:33:65:ac:a1:91:bc:be:7e:61:28:a8:1d:17:
45:0b:62:f0:45:08:19:ad:9a:cb:bf:a6:72:6a:45:
69:17:0f:a0:eb:9c:97:8a:61:0a:e6:cb:c3:ab:0c:
2b:7c:34:6b:9c:4c:df:5e:18:78:45:90:dc:e5:34:
c0:a4:66:dc:55:c0:fd:bf:f8:8c:8c:65:90:80:1b:
c5:a0:fb:01:d4:e5:a8:7d:be:fd:55:a5:1e:4a:27:
16:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:89:5A:3C:94:89:07:28:B1:8B:AE:21:92:7A:C5:17:45:A8:3A:AA
X509v3 Authority Key Identifier:
keyid:66:ED:3B:A6:8C:78:BF:F2:C4:72:44:00:AD:E6:34:84:82:FB:43:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zu07pox4v_LEckQAreY0hIL7Q2Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/b79a68-5b02-4097-a2e3-0a43b7a3eb54/1/m4laPJSJByixi64hknrFF0WoOqo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/b79a68-5b02-4097-a2e3-0a43b7a3eb54/1/Zu07pox4v_LEckQAreY0hIL7Q2Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.225.24.0/24
185.225.26.0/24
192.189.157.0/24
IPv6:
2a14:3f80:8::-2a14:3f80:2f:ffff:ffff:ffff:ffff:ffff
2a14:3f80:80::/44
2a14:3f80:100::/44
2a14:3f80:800::-2a14:3f80:1bff:ffff:ffff:ffff:ffff:ffff
2a14:3f80:2000::-2a14:3f80:2bff:ffff:ffff:ffff:ffff:ffff
2a14:3f80:3000::-2a14:3f80:47ff:ffff:ffff:ffff:ffff:ffff
2a14:3f80:6000::/38
2a14:3f80:7000::/38
2a14:3f80:8800::/38
2a14:3f82:4000::/38
Signature Algorithm: sha256WithRSAEncryption
9d:45:59:9f:2f:0d:04:5c:73:ce:51:98:7d:53:06:a5:6c:91:
4c:bf:44:af:d1:69:3a:4d:06:0b:ba:01:35:40:1b:40:03:e4:
0c:36:a4:5c:a0:0c:4c:60:da:44:9f:b0:e4:1c:ae:58:88:8d:
61:02:d6:d2:6a:29:8d:86:b8:8e:30:ad:95:48:55:73:5c:11:
70:c1:bb:75:0f:b3:c2:bc:8f:9d:75:d8:af:1d:c9:97:00:f6:
8d:ef:c3:1f:ab:b2:2f:7e:62:64:07:53:c6:f4:76:8c:08:61:
e3:c4:4c:c7:5b:28:1a:97:f2:23:30:90:63:9f:95:60:1c:bc:
fd:e0:b1:83:3d:0d:93:d6:f8:9d:a0:83:41:64:32:99:02:19:
e7:b7:6c:08:18:c5:d8:ca:3c:42:cc:0a:db:87:74:3f:a6:dd:
03:66:d9:ad:c3:90:87:4b:0f:e3:0d:73:f4:68:8f:2d:43:d2:
07:b2:89:27:9b:8a:a3:41:87:cd:86:74:b0:c0:8b:8c:a7:7a:
4b:6c:82:af:56:3d:52:60:20:73:ec:1b:e6:5d:6d:b2:26:88:
7b:7c:18:cd:6e:ab:13:79:92:4c:66:26:2e:18:f1:62:43:d6:
15:84:a6:2c:62:b4:ca:db:c5:d4:b1:81:7f:27:02:1b:86:c4:
72:94:5a:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:36 2024 by rpki-client on console-ams.rpki-client.org