Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/Qp9dVQ2qNOSszT4P3R6HIe5VQm8.roa
File: Qp9dVQ2qNOSszT4P3R6HIe5VQm8.roa (raw, json)
Hash identifier: EFk3oT1Pq3nOulgO92HZyy06eNqGdDPLK4N2fIgSL70=
Subject key identifier: 42:9F:5D:55:0D:AA:34:E4:AC:CD:3E:0F:DD:1E:87:21:EE:55:42:6F
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 0196C47037ECA2E513E267E484226AF6ABA9
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/Qp9dVQ2qNOSszT4P3R6HIe5VQm8.roa
Signing time: Mon 12 May 2025 12:20:10 +0000
ROA not before: Mon 12 May 2025 12:20:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 834
IP address blocks: 45.90.17.0/24 maxlen: 24
185.126.82.0/24 maxlen: 24
185.199.54.0/24 maxlen: 24
185.206.251.0/24 maxlen: 24
185.209.38.0/24 maxlen: 24
185.209.73.0/24 maxlen: 24
185.209.75.0/24 maxlen: 24
185.210.233.0/24 maxlen: 24
185.214.108.0/24 maxlen: 24
185.218.20.0/24 maxlen: 24
185.218.101.0/24 maxlen: 24
185.220.250.0/23 maxlen: 24
185.222.28.0/24 maxlen: 24
185.222.29.0/24 maxlen: 24
185.223.78.0/24 maxlen: 24
185.223.155.0/24 maxlen: 24
185.225.0.0/23 maxlen: 23
185.225.3.0/24 maxlen: 24
185.226.104.0/24 maxlen: 24
185.227.146.0/23 maxlen: 24
185.227.147.0/24 maxlen: 24
185.228.75.0/24 maxlen: 24
185.232.206.0/24 maxlen: 24
193.8.112.0/23 maxlen: 24
193.8.112.0/24 maxlen: 24
193.58.146.0/23 maxlen: 24
194.76.169.0/24 maxlen: 24
194.76.172.0/24 maxlen: 24
194.124.69.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 16 May 2025 08:36:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c4:70:37:ec:a2:e5:13:e2:67:e4:84:22:6a:f6:ab:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: May 12 12:20:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=429f5d550daa34e4accd3e0fdd1e8721ee55426f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:4c:cb:a4:dc:60:29:c0:9c:3f:02:d7:c9:cc:
d5:52:d3:88:51:5a:76:f6:de:c8:d8:e2:8d:bb:99:
cd:2c:02:90:f2:34:94:a6:fe:48:db:a1:26:da:48:
da:34:0f:2b:4a:e9:bb:68:08:59:5e:55:c6:bb:f1:
75:57:df:96:71:d6:2d:b1:f1:3b:c2:50:09:b5:9f:
5b:24:87:20:a1:05:1a:e7:ea:f7:9c:c2:95:11:bc:
35:ad:bc:86:35:23:49:ac:b8:56:27:f0:31:b6:16:
28:13:09:67:85:96:54:ad:25:13:58:fc:78:04:58:
fa:fb:46:25:3a:1e:3e:c2:fc:d2:e0:1b:e5:42:32:
38:00:bf:a4:f2:6a:4f:ed:3b:ea:b5:7e:f6:8b:7e:
be:9f:0b:b4:34:52:30:19:4a:60:cf:d5:69:4f:c8:
08:e7:7a:ae:c5:c1:0c:f9:1f:b8:8a:4e:f3:33:4d:
f7:17:0f:6d:93:e5:e2:53:49:a7:3e:08:09:55:db:
c4:01:dd:0f:55:01:80:05:13:61:28:e7:5b:c1:96:
2f:d4:e8:8b:e5:ab:e4:9c:b2:bc:49:c3:be:f2:27:
b6:c8:45:ee:da:c0:3c:11:e5:a2:05:34:86:78:f3:
e6:43:d9:34:cc:07:56:15:6a:34:5c:1c:2c:13:2f:
6b:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:9F:5D:55:0D:AA:34:E4:AC:CD:3E:0F:DD:1E:87:21:EE:55:42:6F
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/Qp9dVQ2qNOSszT4P3R6HIe5VQm8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.90.17.0/24
185.126.82.0/24
185.199.54.0/24
185.206.251.0/24
185.209.38.0/24
185.209.73.0/24
185.209.75.0/24
185.210.233.0/24
185.214.108.0/24
185.218.20.0/24
185.218.101.0/24
185.220.250.0/23
185.222.28.0/23
185.223.78.0/24
185.223.155.0/24
185.225.0.0/23
185.225.3.0/24
185.226.104.0/24
185.227.146.0/23
185.228.75.0/24
185.232.206.0/24
193.8.112.0/23
193.58.146.0/23
194.76.169.0/24
194.76.172.0/24
194.124.69.0/24
Signature Algorithm: sha256WithRSAEncryption
21:34:96:f2:0b:54:e2:12:74:f5:16:20:95:28:73:ab:ec:eb:
1e:68:3a:46:ca:cb:8a:73:60:fe:e4:df:91:a0:ba:23:bf:02:
c0:37:86:bc:da:17:01:a4:fa:64:61:0a:04:be:3d:57:ad:b8:
e2:76:d1:31:80:40:e6:9a:b7:90:c2:6f:9d:04:6a:7e:24:0f:
be:86:49:9e:3c:6f:7a:17:f2:b9:4b:89:dc:c2:74:be:9a:65:
c9:8d:86:bf:6d:ec:b8:86:a1:f2:53:37:23:6d:be:f6:73:cb:
03:2e:68:9e:6e:16:8e:ac:ad:9d:79:1a:01:10:7a:ac:7b:ee:
94:3a:29:b6:12:a9:20:62:9e:36:2e:1f:05:e9:ae:15:ac:57:
47:e6:d2:be:4b:d5:43:57:72:a9:96:9c:35:3c:13:df:b9:95:
62:eb:9f:44:f7:bd:be:57:21:9c:05:cf:5d:da:34:d6:0f:4d:
c7:8f:2c:d2:2b:4e:e0:d8:38:3c:4c:31:5c:b5:f1:74:34:64:
c0:0d:2b:64:4e:f3:6a:58:e1:de:8d:38:8b:52:59:d9:73:e2:
8e:d3:87:0a:68:31:f5:70:49:1b:c5:5e:26:0e:8b:b3:8e:d8:
f2:44:f1:e9:4e:19:d9:c1:3e:ad:31:a2:b6:8d:3d:3a:33:e7:
6b:ad:1c:8a
-----BEGIN CERTIFICATE-----
MIIFmDCCBICgAwIBAgISAZbEcDfsouUT4mfkhCJq9qupMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwNjc4NGMxMDUwODViOWQ2YWQ1ZjczYTAzYjIwZDlhNWMx
MTRjYWYwHhcNMjUwNTEyMTIyMDEwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0MjlmNWQ1NTBkYWEzNGU0YWNjZDNlMGZkZDFlODcyMWVlNTU0MjZmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2UzLpNxgKcCcPwLXyczVUtOIUVp2
9t7I2OKNu5nNLAKQ8jSUpv5I26Em2kjaNA8rSum7aAhZXlXGu/F1V9+WcdYtsfE7
wlAJtZ9bJIcgoQUa5+r3nMKVEbw1rbyGNSNJrLhWJ/AxthYoEwlnhZZUrSUTWPx4
BFj6+0YlOh4+wvzS4BvlQjI4AL+k8mpP7TvqtX72i36+nwu0NFIwGUpgz9VpT8gI
53quxcEM+R+4ik7zM033Fw9tk+XiU0mnPggJVdvEAd0PVQGABRNhKOdbwZYv1OiL
5avknLK8ScO+8ie2yEXu2sA8EeWiBTSGePPmQ9k0zAdWFWo0XBwsEy9r1wIDAQAB
o4ICpDCCAqAwHQYDVR0OBBYEFEKfXVUNqjTkrM0+D90ehyHuVUJvMB8GA1UdIwQY
MBaAFGBnhMEFCFudatX3OgOyDZpcEUyvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgt
YjQzNDJiYTkxYWJjLzEvUXA5ZFZRMnFOT1NzelQ0UDNSNkhJZTVWUW04LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgtYjQzNDJiYTkxYWJj
LzEvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIG5BggrBgEFBQcBBwEB/wSBqTCBpjCBowQCAAEwgZwDBAAt
WhEDBAC5flIDBAC5xzYDBAC5zvsDBAC50SYDBAC50UkDBAC50UsDBAC50ukDBAC5
1mwDBAC52hQDBAC52mUDBAG53PoDBAG53hwDBAC5304DBAC535sDBAG54QADBAC5
4QMDBAC54mgDBAG545IDBAC55EsDBAC56M4DBAHBCHADBAHBOpIDBADCTKkDBADC
TKwDBADCfEUwDQYJKoZIhvcNAQELBQADggEBACE0lvILVOISdPUWIJUoc6vs6x5o
OkbKy4pzYP7k35GguiO/AsA3hrzaFwGk+mRhCgS+PVetuOJ20TGAQOaat5DCb50E
an4kD76GSZ48b3oX8rlLidzCdL6aZcmNhr9t7LiGofJTNyNtvvZzywMuaJ5uFo6s
rZ15GgEQeqx77pQ6KbYSqSBinjYuHwXprhWsV0fm0r5L1UNXcqmWnDU8E9+5lWLr
n0T3vb5XIZwFz13aNNYPTcePLNIrTuDYODxMMVy18XQ0ZMANK2RO82pY4d6NOItS
Wdlz4o7ThwpoMfVwSRvFXiYOi7OO2PJE8elOGdnBPq0xoraNPToz52utHIo=
-----END CERTIFICATE-----
Generated at Sat Jun 7 21:16:34 2025 by rpki-client