Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/b79a68-5b02-4097-a2e3-0a43b7a3eb54/1/wj2SOX08CzaY_aXCDl3YKdwhuno.roa
File: wj2SOX08CzaY_aXCDl3YKdwhuno.roa (raw, json)
Hash identifier: WGurRnfmOccDWvw+epLHNW9A5RMaeqi5WbQ4ioi5AWc=
Subject key identifier: C2:3D:92:39:7D:3C:0B:36:98:FD:A5:C2:0E:5D:D8:29:DC:21:BA:7A
Certificate issuer: /CN=66ed3ba68c78bff2c4724400ade6348482fb4364
Certificate serial: 01907186808B64F3FAE87DF1AD0F57F21DA6
Authority key identifier: 66:ED:3B:A6:8C:78:BF:F2:C4:72:44:00:AD:E6:34:84:82:FB:43:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zu07pox4v_LEckQAreY0hIL7Q2Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/b79a68-5b02-4097-a2e3-0a43b7a3eb54/1/wj2SOX08CzaY_aXCDl3YKdwhuno.roa
Signing time: Tue 02 Jul 2024 03:39:18 +0000
ROA not before: Tue 02 Jul 2024 03:39:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 64289
IP address blocks: 185.225.24.0/24 maxlen: 24
185.225.26.0/24 maxlen: 24
192.189.157.0/24 maxlen: 24
2a14:3f80:8::/45 maxlen: 45
2a14:3f80:10::/45 maxlen: 45
2a14:3f80:18::/45 maxlen: 45
2a14:3f80:20::/45 maxlen: 45
2a14:3f80:28::/45 maxlen: 45
2a14:3f80:80::/45 maxlen: 45
2a14:3f80:88::/45 maxlen: 45
2a14:3f80:100::/45 maxlen: 45
2a14:3f80:108::/45 maxlen: 45
2a14:3f80:800::/38 maxlen: 38
2a14:3f80:c00::/38 maxlen: 38
2a14:3f80:1000::/38 maxlen: 38
2a14:3f80:1400::/38 maxlen: 38
2a14:3f80:1800::/38 maxlen: 38
2a14:3f80:2000::/38 maxlen: 38
2a14:3f80:2400::/38 maxlen: 38
2a14:3f80:2800::/38 maxlen: 38
2a14:3f80:3000::/38 maxlen: 38
2a14:3f80:3400::/38 maxlen: 38
2a14:3f80:3800::/38 maxlen: 38
2a14:3f80:3c00::/38 maxlen: 38
2a14:3f80:4000::/38 maxlen: 38
2a14:3f80:4400::/38 maxlen: 38
2a14:3f80:5000::/38 maxlen: 38
2a14:3f80:6000::/38 maxlen: 38
2a14:3f80:7000::/38 maxlen: 38
2a14:3f80:8800::/38 maxlen: 38
2a14:3f82:4000::/38 maxlen: 38
2a14:3f82:6000::/38 maxlen: 38
2a14:3f82:7000::/38 maxlen: 38
2a14:3f82:8800::/38 maxlen: 38
Validation: Failed, certificate revoked on Sun 11 Aug 2024 22:17:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:71:86:80:8b:64:f3:fa:e8:7d:f1:ad:0f:57:f2:1d:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66ed3ba68c78bff2c4724400ade6348482fb4364
Validity
Not Before: Jul 2 03:39:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c23d92397d3c0b3698fda5c20e5dd829dc21ba7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:4c:d9:58:34:2d:cc:b6:77:24:a7:75:78:ec:
0e:1d:10:6f:c8:7f:15:3b:4b:d1:ad:58:ab:39:03:
cb:cd:47:76:5b:a7:be:8c:8a:a3:5b:06:95:a0:8d:
66:14:ef:a4:98:91:23:4e:c4:d7:0e:98:bb:d9:d2:
13:ee:47:c6:15:4d:e9:67:a2:aa:31:a0:db:aa:d2:
d3:11:96:a7:e7:e8:6a:4a:5a:a4:24:00:95:19:9b:
a4:fe:df:c5:5d:dd:07:c2:7f:4a:fd:a1:ae:fa:37:
a8:0b:d8:a0:55:11:c6:7a:f3:fe:cc:40:37:0c:20:
7d:e1:12:58:89:80:c9:96:f7:24:7e:a3:ec:c3:3e:
92:fd:ee:97:40:f9:3f:8e:46:41:78:f5:03:60:7c:
d5:cf:cc:b5:da:19:a7:9b:3a:a1:c7:fb:cb:b8:8d:
56:cf:23:0f:4a:15:f2:dd:1d:d0:9a:c4:a9:c0:8e:
6b:58:f6:0a:e3:43:48:ee:ba:54:c9:6d:fd:7a:16:
42:44:b3:25:27:8a:cc:53:2e:c8:db:3f:c6:8b:48:
b0:95:09:d8:07:f6:a2:8c:97:f9:da:c6:56:9d:1b:
85:8c:ca:b4:a1:52:28:5d:05:da:3c:fb:eb:c5:2f:
64:c4:c4:28:b6:7f:4e:00:d1:23:75:d3:c6:b3:7e:
56:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:3D:92:39:7D:3C:0B:36:98:FD:A5:C2:0E:5D:D8:29:DC:21:BA:7A
X509v3 Authority Key Identifier:
keyid:66:ED:3B:A6:8C:78:BF:F2:C4:72:44:00:AD:E6:34:84:82:FB:43:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zu07pox4v_LEckQAreY0hIL7Q2Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/b79a68-5b02-4097-a2e3-0a43b7a3eb54/1/wj2SOX08CzaY_aXCDl3YKdwhuno.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/b79a68-5b02-4097-a2e3-0a43b7a3eb54/1/Zu07pox4v_LEckQAreY0hIL7Q2Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.225.24.0/24
185.225.26.0/24
192.189.157.0/24
IPv6:
2a14:3f80:8::-2a14:3f80:2f:ffff:ffff:ffff:ffff:ffff
2a14:3f80:80::/44
2a14:3f80:100::/44
2a14:3f80:800::-2a14:3f80:1bff:ffff:ffff:ffff:ffff:ffff
2a14:3f80:2000::-2a14:3f80:2bff:ffff:ffff:ffff:ffff:ffff
2a14:3f80:3000::-2a14:3f80:47ff:ffff:ffff:ffff:ffff:ffff
2a14:3f80:5000::/38
2a14:3f80:6000::/38
2a14:3f80:7000::/38
2a14:3f80:8800::/38
2a14:3f82:4000::/38
2a14:3f82:6000::/38
2a14:3f82:7000::/38
2a14:3f82:8800::/38
Signature Algorithm: sha256WithRSAEncryption
87:f6:06:7f:7e:55:ae:50:9b:a3:bd:c2:26:a1:90:d8:66:b4:
15:e2:fe:74:02:dd:20:af:e2:b6:e9:d0:db:14:d6:ec:ed:ba:
6f:1e:97:d4:c9:9c:5f:c3:53:62:b8:0c:aa:b9:c6:b5:de:4f:
fa:ac:55:47:46:76:9b:f8:08:d2:d0:98:95:b9:5a:b2:81:6d:
77:b6:4f:10:45:0a:af:c6:34:0b:6d:8a:f4:e5:e8:54:a6:9b:
50:2e:96:5f:34:e5:3f:62:ce:bf:0a:ea:08:c1:fb:21:fb:b1:
15:31:16:e5:27:a7:a7:39:6b:95:5e:53:39:5b:e6:53:09:b5:
82:eb:6f:af:27:28:94:aa:06:cf:da:5b:4d:ce:b8:77:77:a6:
42:3b:d1:49:09:e3:0a:a3:21:5f:24:87:53:c2:8b:cc:c1:9b:
a1:33:64:0c:83:5f:a8:9f:5b:cf:b9:7b:8f:83:25:29:60:73:
6f:84:75:a6:d5:f9:b6:0d:7d:71:eb:77:7e:8f:12:df:62:30:
58:59:14:66:50:a0:37:e5:a0:53:67:35:a1:8f:69:13:4f:fe:
4e:04:ba:4b:4e:7d:06:c6:9a:10:0f:57:1a:0c:cb:7b:51:43:
0a:f8:c9:69:4e:2b:b5:e4:b5:5a:96:13:2a:3a:2d:e3:c6:db:
c2:dd:59:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 11 23:22:54 2024 by rpki-client on console-fra.rpki-client.org