Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/IUh3180x0AUOs9v7X1SK-I6E9F8.roa
File: IUh3180x0AUOs9v7X1SK-I6E9F8.roa (raw, json)
Hash identifier: h+/F7IgTxB72dFmHoc0uhPWx5NQjXQR/7+BQiXG/rFY=
Subject key identifier: 21:48:77:D7:CD:31:D0:05:0E:B3:DB:FB:5F:54:8A:F8:8E:84:F4:5F
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 01970C436E928A936A64A4879A41ABF05449
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/IUh3180x0AUOs9v7X1SK-I6E9F8.roa
Signing time: Mon 26 May 2025 11:03:55 +0000
ROA not before: Mon 26 May 2025 11:03:55 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 16509
IP address blocks: 185.222.30.0/24 maxlen: 24
185.223.82.0/24 maxlen: 24
185.230.65.0/24 maxlen: 24
185.230.66.0/24 maxlen: 24
194.5.67.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 31 May 2025 10:48:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:0c:43:6e:92:8a:93:6a:64:a4:87:9a:41:ab:f0:54:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: May 26 11:03:55 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=214877d7cd31d0050eb3dbfb5f548af88e84f45f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:7d:24:a3:f6:46:97:f8:03:85:a2:02:bd:03:
c0:77:cf:d1:12:6f:11:7c:3a:74:9e:bd:6c:76:19:
be:71:13:ce:70:62:77:a5:7f:55:d7:ea:62:ab:19:
d6:e8:8c:a1:da:96:69:f2:05:58:d5:7d:32:43:4e:
c0:c0:d0:e4:f8:57:96:66:70:48:68:c0:65:0f:03:
0c:aa:e3:a6:a3:fc:70:41:27:19:55:71:0e:c8:2e:
0d:55:f5:6b:55:f0:c7:6f:5a:8d:dd:9c:a5:fb:33:
2e:f8:0c:4a:31:d0:2d:bc:1b:00:b2:5c:66:dd:75:
07:08:f4:4b:e9:14:a3:a7:42:d8:72:57:7d:68:b6:
21:77:b1:aa:d3:6a:9c:4f:87:75:3d:a1:d5:5d:d6:
96:e9:9f:dc:5b:fb:f3:28:3c:5e:37:f1:ae:4a:fc:
03:3e:4d:c8:cc:fc:af:86:ad:67:97:e1:c4:57:0b:
86:f6:ed:7c:82:2d:25:92:7e:de:51:4c:bf:5d:5d:
dc:d4:7f:26:55:97:36:f7:29:5b:dd:e3:26:ee:85:
5d:00:ba:c2:5b:c7:a1:0b:50:ac:ca:2b:48:e2:61:
01:7f:a1:d9:0a:1f:b6:6f:8b:58:5c:9b:0e:ae:b8:
93:a2:fc:d5:31:26:23:81:12:c6:4e:74:d4:ca:82:
0d:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:48:77:D7:CD:31:D0:05:0E:B3:DB:FB:5F:54:8A:F8:8E:84:F4:5F
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/IUh3180x0AUOs9v7X1SK-I6E9F8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.222.30.0/24
185.223.82.0/24
185.230.65.0-185.230.66.255
194.5.67.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:f4:3f:27:45:fa:54:7a:fc:ad:ff:9a:ed:ca:29:42:c5:da:
cd:25:e6:5d:3a:d6:2c:b7:8b:2e:29:9f:8a:1d:64:81:28:98:
59:db:82:32:68:2d:53:80:22:9f:28:fd:68:5e:b8:48:9b:54:
a4:28:3b:e6:e1:ea:33:ee:8c:8b:e1:d4:56:3f:0e:30:e1:dd:
50:4e:58:2f:a3:3a:f8:83:49:86:eb:05:fc:41:8c:d8:b6:69:
ee:96:58:35:c7:b4:46:c6:29:f6:ba:26:38:a2:81:bb:b2:fb:
41:2a:24:41:87:35:82:cc:b1:33:91:bd:6f:ac:06:ed:c3:fb:
aa:2b:40:34:e3:b8:64:bc:0f:a3:92:23:fd:48:89:2b:3f:73:
fe:68:12:f8:01:aa:98:ca:66:9d:0e:fd:93:89:00:37:3e:9a:
fa:25:a0:af:83:34:ff:af:9b:bf:f6:c0:7b:e1:33:06:53:d3:
0d:3d:8b:ae:f0:f1:54:33:e6:8d:b7:d3:0d:1f:e5:b9:0d:73:
89:98:ca:db:40:f0:2f:15:23:f3:6a:43:97:c8:60:02:95:f2:
16:3e:5f:a4:97:90:ca:60:6e:ba:7a:a8:47:a6:b0:b1:68:e4:
76:64:d7:fb:d8:3c:3e:40:9e:37:1a:5f:6f:2f:f4:15:e6:a6:
7f:48:9c:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 6 15:57:07 2025 by rpki-client