Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/UEpmwdBOgBHNTgEwrJsHvsfLdR4.roa
File: UEpmwdBOgBHNTgEwrJsHvsfLdR4.roa (raw, json)
Hash identifier: f56qPT5fqMMSn1bllbIpEsLdLNgWrWm4hmeziJKr3/E=
Subject key identifier: 50:4A:66:C1:D0:4E:80:11:CD:4E:01:30:AC:9B:07:BE:C7:CB:75:1E
Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0
Certificate serial: 01954FED33CEA58D201D605E9200C4C035DD
Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/UEpmwdBOgBHNTgEwrJsHvsfLdR4.roa
Signing time: Sat 01 Mar 2025 04:18:20 +0000
ROA not before: Sat 01 Mar 2025 04:18:20 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 834
IP address blocks: 37.202.205.0/24 maxlen: 24
37.202.210.0/24 maxlen: 24
37.202.212.0/23 maxlen: 24
151.240.105.0/24 maxlen: 24
151.240.140.0/24 maxlen: 24
151.241.110.0/24 maxlen: 24
151.242.14.0/24 maxlen: 24
151.242.20.0/24 maxlen: 24
151.242.34.0/24 maxlen: 24
151.242.242.0/24 maxlen: 24
151.243.83.0/24 maxlen: 24
151.243.104.0/24 maxlen: 24
151.243.158.0/24 maxlen: 24
151.243.162.0/24 maxlen: 24
151.243.212.0/23 maxlen: 24
Validation: Failed, certificate revoked on Sat 01 Mar 2025 09:53:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:4f:ed:33:ce:a5:8d:20:1d:60:5e:92:00:c4:c0:35:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0
Validity
Not Before: Mar 1 04:18:20 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=504a66c1d04e8011cd4e0130ac9b07bec7cb751e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:e2:02:b7:58:84:ea:ba:b0:09:1d:50:c1:7a:
a4:15:9a:56:44:74:e7:1f:6d:81:63:7c:ee:16:9c:
69:a6:37:17:e4:3c:15:d1:37:26:2a:55:ad:8e:23:
6c:e9:f3:f9:0c:ea:32:08:83:c7:58:c6:0f:4e:7d:
79:ae:d1:84:a5:89:9f:85:f4:fe:50:89:58:2c:ff:
13:de:6b:9a:e4:b4:56:54:62:7c:e4:01:ac:7c:23:
c5:33:cd:42:4b:ab:89:0f:44:80:66:fa:20:ba:ec:
8e:b1:ae:95:cf:ad:71:64:6e:3f:72:13:6e:4c:69:
36:5a:b4:25:cd:37:38:3d:a9:ac:37:df:74:33:61:
67:97:fe:c2:31:de:fc:53:84:1c:2f:4b:74:9e:f5:
d1:0f:70:b4:f9:cb:de:eb:76:d1:05:b1:3e:40:11:
bc:46:2f:b7:39:8e:de:6d:57:bf:d4:39:e9:10:0c:
ee:53:f8:68:92:21:a5:50:2f:53:3f:0c:27:c8:4e:
0c:57:b4:02:15:7d:4b:24:9f:4d:cf:fe:4c:53:af:
6c:c0:d8:c8:0e:b9:62:49:34:32:1c:5c:57:da:04:
a2:4c:e2:26:14:38:95:23:18:5c:0b:ad:3e:18:68:
1f:a0:ae:eb:d2:4c:12:2a:78:ab:21:c9:a0:d1:4b:
bc:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:4A:66:C1:D0:4E:80:11:CD:4E:01:30:AC:9B:07:BE:C7:CB:75:1E
X509v3 Authority Key Identifier:
keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/UEpmwdBOgBHNTgEwrJsHvsfLdR4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.202.205.0/24
37.202.210.0/24
37.202.212.0/23
151.240.105.0/24
151.240.140.0/24
151.241.110.0/24
151.242.14.0/24
151.242.20.0/24
151.242.34.0/24
151.242.242.0/24
151.243.83.0/24
151.243.104.0/24
151.243.158.0/24
151.243.162.0/24
151.243.212.0/23
Signature Algorithm: sha256WithRSAEncryption
44:c6:82:3a:65:25:25:b9:32:22:70:1b:e1:71:26:87:14:b8:
39:b2:22:1a:38:7a:a2:13:d9:79:e5:f8:63:4d:4b:58:2b:07:
63:bf:52:9a:b4:1b:4a:6a:eb:f7:7c:d2:f8:8b:ab:e5:73:c2:
38:36:0a:40:ba:5d:a0:3d:c6:81:38:d3:c4:bb:0a:63:eb:e0:
43:5f:4a:e4:be:de:a7:78:f3:d4:ea:db:9b:9d:95:0d:27:45:
12:85:f6:83:5d:67:88:72:e1:0b:17:db:8f:a8:5c:08:a8:d5:
5b:f0:69:36:f6:68:d6:f9:5c:5e:df:9f:20:6e:91:87:7b:b6:
de:c8:5f:14:e8:3d:29:73:93:d7:1f:64:97:6d:90:40:1b:02:
b7:ad:e3:a5:5c:6b:b3:b2:68:3d:7e:93:33:21:0c:03:b0:05:
c8:98:50:b1:83:52:34:ef:c1:dd:48:68:7a:b0:63:be:00:9d:
da:96:b0:21:fa:1e:5d:96:f8:f6:53:27:c5:24:07:ab:8f:66:
45:b0:6e:71:ec:4b:ba:75:8e:45:40:a4:dc:e9:37:81:92:7e:
c9:39:a1:e9:74:3e:a6:b6:b6:3c:40:c7:8f:f6:c0:c0:14:45:
9d:fb:4c:b0:18:db:88:e6:a9:a0:a8:46:be:26:c8:9d:4b:f2:
61:3c:f1:01
-----BEGIN CERTIFICATE-----
MIIFUTCCBDmgAwIBAgISAZVP7TPOpY0gHWBekgDEwDXdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM2NjI2NmY0NjZmYjI0OThhMzk0NTliMzM1MmRhMjUxNTFh
NWE0YzAwHhcNMjUwMzAxMDQxODIwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MDRhNjZjMWQwNGU4MDExY2Q0ZTAxMzBhYzliMDdiZWM3Y2I3NTFlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo+ICt1iE6rqwCR1QwXqkFZpWRHTn
H22BY3zuFpxppjcX5DwV0TcmKlWtjiNs6fP5DOoyCIPHWMYPTn15rtGEpYmfhfT+
UIlYLP8T3mua5LRWVGJ85AGsfCPFM81CS6uJD0SAZvoguuyOsa6Vz61xZG4/chNu
TGk2WrQlzTc4PamsN990M2Fnl/7CMd78U4QcL0t0nvXRD3C0+cve63bRBbE+QBG8
Ri+3OY7ebVe/1DnpEAzuU/hokiGlUC9TPwwnyE4MV7QCFX1LJJ9Nz/5MU69swNjI
DrliSTQyHFxX2gSiTOImFDiVIxhcC60+GGgfoK7r0kwSKnirIcmg0Uu8uQIDAQAB
o4ICXTCCAlkwHQYDVR0OBBYEFFBKZsHQToARzU4BMKybB77Hy3UeMB8GA1UdIwQY
MBaAFMZiZvRm+ySYo5RZszUtolFRpaTAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveG1KbTlHYjdKSmlqbEZtek5TMmlVVkdscE1BLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS9mNDNiMWQtOWU1MC00NTUxLWFlNmEt
MTdiOWRlMTQxMjUyLzEvVUVwbXdkQk9nQkhOVGdFd3JKc0h2c2ZMZFI0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS9mNDNiMWQtOWU1MC00NTUxLWFlNmEtMTdiOWRlMTQxMjUy
LzEveG1KbTlHYjdKSmlqbEZtek5TMmlVVkdscE1BLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHMGCCsGAQUFBwEHAQH/BGQwYjBgBAIAATBaAwQAJcrNAwQA
JcrSAwQBJcrUAwQAl/BpAwQAl/CMAwQAl/FuAwQAl/IOAwQAl/IUAwQAl/IiAwQA
l/LyAwQAl/NTAwQAl/NoAwQAl/OeAwQAl/OiAwQBl/PUMA0GCSqGSIb3DQEBCwUA
A4IBAQBExoI6ZSUluTIicBvhcSaHFLg5siIaOHqiE9l55fhjTUtYKwdjv1KatBtK
auv3fNL4i6vlc8I4NgpAul2gPcaBONPEuwpj6+BDX0rkvt6nePPU6tubnZUNJ0US
hfaDXWeIcuELF9uPqFwIqNVb8Gk29mjW+Vxe358gbpGHe7beyF8U6D0pc5PXH2SX
bZBAGwK3reOlXGuzsmg9fpMzIQwDsAXImFCxg1I078HdSGh6sGO+AJ3alrAh+h5d
lvj2UyfFJAerj2ZFsG5x7Eu6dY5FQKTc6TeBkn7JOaHpdD6mtrY8QMeP9sDAFEWd
+0ywGNuI5qmgqEa+JsidS/JhPPEB
-----END CERTIFICATE-----
Generated at Sun Apr 6 17:56:24 2025 by rpki-client