Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/b79a68-5b02-4097-a2e3-0a43b7a3eb54/1/vHA3Jf36OG3UzfhL2B19K1L_FVo.roa
File: vHA3Jf36OG3UzfhL2B19K1L_FVo.roa (raw, json)
Hash identifier: sx5NELVG6uzciulbfHnWMqqBuhfuGJEsI3Zcsvl9prc=
Subject key identifier: BC:70:37:25:FD:FA:38:6D:D4:CD:F8:4B:D8:1D:7D:2B:52:FF:15:5A
Certificate issuer: /CN=66ed3ba68c78bff2c4724400ade6348482fb4364
Certificate serial: 018F6F4AAFD7C77E79DD44D2C62C4ECD755C
Authority key identifier: 66:ED:3B:A6:8C:78:BF:F2:C4:72:44:00:AD:E6:34:84:82:FB:43:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zu07pox4v_LEckQAreY0hIL7Q2Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/b79a68-5b02-4097-a2e3-0a43b7a3eb54/1/vHA3Jf36OG3UzfhL2B19K1L_FVo.roa
Signing time: Mon 13 May 2024 00:11:56 +0000
ROA not before: Mon 13 May 2024 00:11:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 64289
IP address blocks: 185.225.24.0/24 maxlen: 24
185.225.26.0/24 maxlen: 24
192.189.157.0/24 maxlen: 24
2a14:3f80:8::/45 maxlen: 45
2a14:3f80:10::/45 maxlen: 45
2a14:3f80:18::/45 maxlen: 45
2a14:3f80:20::/45 maxlen: 45
2a14:3f80:28::/45 maxlen: 45
2a14:3f80:80::/45 maxlen: 45
2a14:3f80:88::/45 maxlen: 45
2a14:3f80:100::/45 maxlen: 45
2a14:3f80:108::/45 maxlen: 45
2a14:3f80:800::/38 maxlen: 38
2a14:3f80:c00::/38 maxlen: 38
2a14:3f80:1000::/38 maxlen: 38
2a14:3f80:1400::/38 maxlen: 38
2a14:3f80:1800::/38 maxlen: 38
2a14:3f80:2000::/38 maxlen: 38
2a14:3f80:2400::/38 maxlen: 38
2a14:3f80:2800::/38 maxlen: 38
2a14:3f80:3000::/38 maxlen: 38
2a14:3f80:3400::/38 maxlen: 38
2a14:3f80:3800::/38 maxlen: 38
2a14:3f80:3c00::/38 maxlen: 38
2a14:3f80:4000::/38 maxlen: 38
2a14:3f80:4400::/38 maxlen: 38
2a14:3f80:6000::/38 maxlen: 38
2a14:3f80:7000::/38 maxlen: 38
2a14:3f80:8800::/38 maxlen: 38
2a14:3f82:4000::/38 maxlen: 38
2a14:3f82:6000::/38 maxlen: 38
Validation: Failed, certificate revoked on Fri 17 May 2024 07:01:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:6f:4a:af:d7:c7:7e:79:dd:44:d2:c6:2c:4e:cd:75:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66ed3ba68c78bff2c4724400ade6348482fb4364
Validity
Not Before: May 13 00:11:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bc703725fdfa386dd4cdf84bd81d7d2b52ff155a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:15:e0:07:72:6e:b2:0a:d7:3c:b7:ba:ac:e5:
77:24:48:fc:2d:09:ab:dc:be:ee:fb:20:6d:b3:11:
4f:0b:0d:a9:4c:5a:2a:38:6d:b9:fb:25:5e:ab:c5:
42:3e:8e:64:bf:28:23:7b:40:99:69:a9:f8:54:56:
47:4b:e8:5e:7b:b5:d4:0b:70:1d:cf:09:f4:1a:64:
ef:b3:83:7c:24:04:e0:45:05:20:14:a9:0a:dc:5c:
08:88:a1:db:0a:08:fb:d5:f1:60:18:6a:49:da:5c:
34:b8:72:c1:0e:36:a1:66:f4:52:b4:89:48:79:c9:
ea:d9:45:d9:62:cf:cb:9c:66:4b:77:ba:0c:42:fe:
fe:fc:9a:53:e3:87:c8:fa:f5:b2:e4:5f:b5:dd:88:
eb:0f:0f:8c:a5:e8:4f:bc:4f:38:e0:ab:d4:25:5f:
53:cf:44:fe:57:5a:ff:33:66:e8:48:db:df:2d:e7:
a8:04:b3:4e:d3:6c:52:5e:cc:27:cc:38:41:18:13:
ad:51:4d:27:23:91:ad:cc:b8:3d:75:36:c5:39:09:
f2:f4:66:59:a3:42:68:1c:1c:f3:78:a4:60:7e:19:
a8:6a:f4:f7:ae:dc:9a:dd:a7:a9:d3:57:e0:b6:e2:
fa:e8:0a:32:23:6b:a0:4b:fb:65:21:4a:11:f7:a6:
1a:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:70:37:25:FD:FA:38:6D:D4:CD:F8:4B:D8:1D:7D:2B:52:FF:15:5A
X509v3 Authority Key Identifier:
keyid:66:ED:3B:A6:8C:78:BF:F2:C4:72:44:00:AD:E6:34:84:82:FB:43:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zu07pox4v_LEckQAreY0hIL7Q2Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/b79a68-5b02-4097-a2e3-0a43b7a3eb54/1/vHA3Jf36OG3UzfhL2B19K1L_FVo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/b79a68-5b02-4097-a2e3-0a43b7a3eb54/1/Zu07pox4v_LEckQAreY0hIL7Q2Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.225.24.0/24
185.225.26.0/24
192.189.157.0/24
IPv6:
2a14:3f80:8::-2a14:3f80:2f:ffff:ffff:ffff:ffff:ffff
2a14:3f80:80::/44
2a14:3f80:100::/44
2a14:3f80:800::-2a14:3f80:1bff:ffff:ffff:ffff:ffff:ffff
2a14:3f80:2000::-2a14:3f80:2bff:ffff:ffff:ffff:ffff:ffff
2a14:3f80:3000::-2a14:3f80:47ff:ffff:ffff:ffff:ffff:ffff
2a14:3f80:6000::/38
2a14:3f80:7000::/38
2a14:3f80:8800::/38
2a14:3f82:4000::/38
2a14:3f82:6000::/38
Signature Algorithm: sha256WithRSAEncryption
16:82:95:9f:68:48:d7:78:fa:a6:72:d9:92:51:19:cb:cf:4b:
bb:15:72:65:69:ce:61:da:57:d3:47:c8:7c:7a:9f:4f:3c:45:
2f:cb:bd:31:28:7f:28:d3:81:2c:c9:77:01:a1:d1:2a:9b:56:
01:8f:a2:3e:53:b0:cf:63:59:28:cb:11:72:b3:f7:1f:21:23:
cd:50:17:84:6c:55:41:1a:ce:32:ca:f1:a2:ac:92:85:19:75:
1f:c4:cd:4d:3b:e9:f1:01:fd:8c:1f:31:80:df:6c:db:49:be:
90:c9:c8:13:07:8b:f3:aa:b7:62:ae:92:3d:ed:63:3a:d7:67:
7d:43:de:32:78:e2:cf:1a:68:34:44:b9:39:41:76:49:f9:f1:
dd:a4:2b:ef:6f:b1:44:61:ff:b6:d6:2f:5f:f2:7e:ac:6d:61:
29:80:14:aa:4e:1b:4b:46:8d:df:40:e6:10:f8:f6:a6:62:aa:
a7:9f:1d:52:c3:f4:7b:d0:0e:a8:51:e7:8d:40:d4:d4:89:f5:
43:a3:80:91:7e:c6:9e:0d:49:a1:5f:b9:be:00:ac:5a:bf:37:
29:c3:cc:d7:6d:fb:45:83:f5:e4:1e:16:6c:95:6d:08:44:ac:
90:72:66:92:20:7f:cc:bf:02:bd:dc:5e:1b:a0:39:f5:27:24:
63:17:91:a1
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:37 2024 by rpki-client on console-ams.rpki-client.org