Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/b79a68-5b02-4097-a2e3-0a43b7a3eb54/1/q692rxR12xfPUZPBR9iDmwS_nd0.roa
File: q692rxR12xfPUZPBR9iDmwS_nd0.roa (raw, json)
Hash identifier: X8cJn7RZs7CaljCau9cebcu1r/Td4IbKY9AZHHhq4qA=
Subject key identifier: AB:AF:76:AF:14:75:DB:17:CF:51:93:C1:47:D8:83:9B:04:BF:9D:DD
Certificate issuer: /CN=66ed3ba68c78bff2c4724400ade6348482fb4364
Certificate serial: 018EEF5939A95811DFD9E2750ACC7161B499
Authority key identifier: 66:ED:3B:A6:8C:78:BF:F2:C4:72:44:00:AD:E6:34:84:82:FB:43:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zu07pox4v_LEckQAreY0hIL7Q2Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/b79a68-5b02-4097-a2e3-0a43b7a3eb54/1/q692rxR12xfPUZPBR9iDmwS_nd0.roa
Signing time: Thu 18 Apr 2024 03:56:25 +0000
ROA not before: Thu 18 Apr 2024 03:56:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 64289
IP address blocks: 185.225.24.0/24 maxlen: 24
185.225.26.0/24 maxlen: 24
192.189.157.0/24 maxlen: 24
2a14:3f80:8::/45 maxlen: 45
2a14:3f80:10::/45 maxlen: 45
2a14:3f80:18::/45 maxlen: 45
2a14:3f80:20::/45 maxlen: 45
2a14:3f80:28::/45 maxlen: 45
2a14:3f80:80::/45 maxlen: 45
2a14:3f80:88::/45 maxlen: 45
2a14:3f80:100::/45 maxlen: 45
2a14:3f80:108::/45 maxlen: 45
2a14:3f80:800::/38 maxlen: 38
2a14:3f80:c00::/38 maxlen: 38
2a14:3f80:1000::/38 maxlen: 38
2a14:3f80:1400::/38 maxlen: 38
2a14:3f80:1800::/38 maxlen: 38
2a14:3f80:2000::/38 maxlen: 38
2a14:3f80:2400::/38 maxlen: 38
2a14:3f80:2800::/38 maxlen: 38
2a14:3f80:3000::/38 maxlen: 38
2a14:3f80:3400::/38 maxlen: 38
2a14:3f80:3800::/38 maxlen: 38
2a14:3f80:3c00::/38 maxlen: 38
2a14:3f80:4000::/38 maxlen: 38
2a14:3f80:4400::/38 maxlen: 38
2a14:3f80:6000::/38 maxlen: 38
2a14:3f80:7000::/38 maxlen: 38
2a14:3f80:8800::/38 maxlen: 38
Validation: Failed, certificate revoked on Sun 12 May 2024 23:18:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:ef:59:39:a9:58:11:df:d9:e2:75:0a:cc:71:61:b4:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66ed3ba68c78bff2c4724400ade6348482fb4364
Validity
Not Before: Apr 18 03:56:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=abaf76af1475db17cf5193c147d8839b04bf9ddd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:08:a9:ac:05:fb:cd:54:86:20:e1:01:d5:d4:
d6:dc:6b:45:24:d5:73:86:91:f7:ea:bf:09:59:95:
77:6d:d9:c7:81:bf:64:73:89:ff:23:b8:bd:f6:7d:
eb:a3:bf:01:da:27:a3:74:69:c6:c7:3d:48:ba:ac:
b9:cb:e2:c6:de:8d:92:46:2a:a1:c9:66:e5:ef:28:
e8:8c:fe:43:fa:a8:ec:c7:2a:cf:f8:39:fd:05:a1:
dd:63:1d:1f:18:d1:71:fd:c4:ed:53:9e:b9:3a:ec:
47:dc:8b:98:c0:22:02:cf:e8:10:1f:1d:1b:d0:05:
d0:51:5c:39:dd:4c:31:07:a5:df:a9:be:bf:3b:4c:
07:47:95:ce:f4:d8:ee:75:54:bb:12:7b:93:e4:a4:
e2:0b:99:50:8a:27:2f:80:03:1c:31:f6:a2:0c:94:
4a:58:9b:1d:37:92:99:b3:45:11:6b:40:5e:0f:38:
1d:ac:b3:71:98:5d:a0:0a:da:4d:a9:fe:2d:00:11:
92:12:4a:9a:c7:00:0a:09:55:f1:3a:97:99:b2:8c:
b3:a9:cd:62:03:dc:00:b0:76:29:5b:07:9b:62:1e:
08:82:77:79:1b:3c:bc:33:2f:c0:37:f7:22:4b:db:
00:fb:cf:d7:06:47:84:76:f2:ee:49:8d:03:a0:ec:
b4:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:AF:76:AF:14:75:DB:17:CF:51:93:C1:47:D8:83:9B:04:BF:9D:DD
X509v3 Authority Key Identifier:
keyid:66:ED:3B:A6:8C:78:BF:F2:C4:72:44:00:AD:E6:34:84:82:FB:43:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zu07pox4v_LEckQAreY0hIL7Q2Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/b79a68-5b02-4097-a2e3-0a43b7a3eb54/1/q692rxR12xfPUZPBR9iDmwS_nd0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/b79a68-5b02-4097-a2e3-0a43b7a3eb54/1/Zu07pox4v_LEckQAreY0hIL7Q2Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.225.24.0/24
185.225.26.0/24
192.189.157.0/24
IPv6:
2a14:3f80:8::-2a14:3f80:2f:ffff:ffff:ffff:ffff:ffff
2a14:3f80:80::/44
2a14:3f80:100::/44
2a14:3f80:800::-2a14:3f80:1bff:ffff:ffff:ffff:ffff:ffff
2a14:3f80:2000::-2a14:3f80:2bff:ffff:ffff:ffff:ffff:ffff
2a14:3f80:3000::-2a14:3f80:47ff:ffff:ffff:ffff:ffff:ffff
2a14:3f80:6000::/38
2a14:3f80:7000::/38
2a14:3f80:8800::/38
Signature Algorithm: sha256WithRSAEncryption
85:7b:97:b6:1f:ff:08:23:ee:c2:c7:fe:2a:3b:49:4b:65:f1:
c4:b7:e1:99:d0:c1:72:ee:8b:31:b6:15:7c:e0:d4:0b:de:9f:
dc:f6:1b:94:84:a5:bc:cd:7b:4b:b0:4c:12:87:1e:9a:fa:f0:
b9:b2:03:2c:ae:f7:6a:a7:a0:e7:27:4e:8f:21:6b:72:3c:77:
8e:66:b7:0f:7f:d4:d5:6c:09:34:d1:62:7e:de:a3:a2:df:54:
e7:43:58:40:42:fe:71:31:c8:8f:87:8e:8b:71:3b:98:64:ef:
b3:46:28:bf:4a:67:c3:c0:96:e8:8f:ac:c9:57:47:8a:b0:6b:
42:20:ed:80:05:16:0c:5f:9b:68:57:4b:09:84:33:75:60:56:
a1:5a:24:63:a0:b1:d9:77:6d:9a:74:a8:cf:28:7c:59:6d:be:
4e:05:dd:23:b5:3c:56:b8:35:de:a2:c8:c3:89:76:b2:f1:ae:
d2:b9:56:92:68:75:16:70:99:32:21:c9:ef:42:84:46:1a:f5:
02:1d:15:ef:8f:72:73:75:16:09:2e:fd:cc:f0:1c:f3:67:c0:
40:86:60:d9:d8:67:f3:ee:50:ac:5f:b3:e0:10:2a:15:35:1a:
c6:db:84:d7:95:0e:dd:0a:35:c3:63:9d:1e:a9:5c:96:0a:0d:
0f:99:d2:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:14 2024 by rpki-client on console-fra.rpki-client.org