Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/V0a-RuKZTE6WhCGzgq3tfhEixeQ.roa
File: V0a-RuKZTE6WhCGzgq3tfhEixeQ.roa (raw, json)
Hash identifier: w4Dx1ucsdQ5CL9NXktNKWSC+aTMP4oXccpR0jXcO2hY=
Subject key identifier: 57:46:BE:46:E2:99:4C:4E:96:84:21:B3:82:AD:ED:7E:11:22:C5:E4
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 01959FAA41B85A6C258F0D622278229D7250
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/V0a-RuKZTE6WhCGzgq3tfhEixeQ.roa
Signing time: Sun 16 Mar 2025 15:54:49 +0000
ROA not before: Sun 16 Mar 2025 15:54:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 834
IP address blocks: 185.126.82.0/24 maxlen: 24
185.209.38.0/24 maxlen: 24
185.209.73.0/24 maxlen: 24
185.209.75.0/24 maxlen: 24
185.214.108.0/24 maxlen: 24
185.218.20.0/24 maxlen: 24
185.220.248.0/24 maxlen: 24
185.220.250.0/23 maxlen: 24
185.222.28.0/24 maxlen: 24
185.223.78.0/24 maxlen: 24
185.223.80.0/24 maxlen: 24
185.225.0.0/23 maxlen: 23
185.227.146.0/23 maxlen: 24
185.227.147.0/24 maxlen: 24
185.228.75.0/24 maxlen: 24
185.246.112.0/24 maxlen: 24
193.8.112.0/23 maxlen: 24
193.8.112.0/24 maxlen: 24
193.58.146.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 17 Mar 2025 08:43:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:9f:aa:41:b8:5a:6c:25:8f:0d:62:22:78:22:9d:72:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Mar 16 15:54:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5746be46e2994c4e968421b382aded7e1122c5e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:3f:14:1c:c0:5c:22:c4:b8:46:9f:50:02:7a:
bc:b3:9d:22:14:b8:b4:67:24:76:cc:de:15:24:b8:
30:1b:5e:ae:60:ec:5f:eb:8f:4e:07:b7:c5:43:ad:
19:4e:95:aa:26:f2:c1:58:5f:f7:2a:29:5c:5a:35:
dc:f4:f9:53:b3:19:d4:0a:0f:ee:52:52:33:1e:23:
93:12:ba:2b:f3:c1:ff:32:3d:7a:59:c3:1d:ba:da:
dd:40:70:f6:cc:4f:3a:02:a5:ec:a2:01:cf:c6:5d:
77:34:dd:6a:7d:0f:cd:12:4e:10:34:7c:6f:d8:1e:
91:18:32:3a:b4:f8:36:f6:a0:f0:30:3e:08:b1:9d:
40:8b:e5:3c:8c:f3:48:e3:b1:70:39:70:4f:92:e2:
3b:9c:74:3a:84:39:01:e2:4a:df:39:af:d9:e5:3f:
38:5a:d1:49:ff:74:e4:f9:39:c6:85:44:68:d9:69:
c5:a4:78:3b:54:e3:b9:b7:c8:fb:77:ec:d2:4c:a6:
74:c8:dc:23:58:bf:06:c8:0d:1f:be:68:53:71:d9:
18:a8:0b:ff:af:03:95:9c:0c:20:15:a5:ff:7d:49:
39:82:94:e5:87:df:f7:dd:0f:5e:91:89:28:95:f3:
23:49:9c:ed:01:08:0f:dd:7c:17:d3:77:41:f5:ad:
09:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:46:BE:46:E2:99:4C:4E:96:84:21:B3:82:AD:ED:7E:11:22:C5:E4
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/V0a-RuKZTE6WhCGzgq3tfhEixeQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.126.82.0/24
185.209.38.0/24
185.209.73.0/24
185.209.75.0/24
185.214.108.0/24
185.218.20.0/24
185.220.248.0/24
185.220.250.0/23
185.222.28.0/24
185.223.78.0/24
185.223.80.0/24
185.225.0.0/23
185.227.146.0/23
185.228.75.0/24
185.246.112.0/24
193.8.112.0/23
193.58.146.0/23
Signature Algorithm: sha256WithRSAEncryption
b0:10:1d:cb:4d:12:1a:8b:97:f9:22:24:fe:49:8a:ce:29:47:
c4:da:b3:f6:9e:c3:e1:2f:bc:a9:83:47:f6:e4:b9:c6:76:aa:
73:92:ec:0b:8a:cd:17:5a:2d:c8:47:cb:85:92:e4:e9:d9:95:
fe:56:ee:b0:35:bd:02:92:44:e4:b4:e3:cc:00:88:f8:a9:3a:
22:d8:bc:2e:b8:70:f5:96:bb:9a:61:aa:05:45:67:63:e4:1d:
a9:e1:a6:11:fd:f1:39:57:41:65:bf:ee:24:1d:56:c8:12:1d:
d0:4e:21:d9:d4:65:81:c3:db:3c:1b:7b:da:9e:e1:d7:8f:9f:
1c:69:2f:13:fb:a4:be:fc:6a:69:5e:be:04:46:c4:35:f9:7a:
78:34:35:ea:64:86:cc:49:40:c7:b8:6d:69:2f:48:76:68:a5:
53:67:8d:82:46:4d:a3:ef:ab:9d:73:56:32:44:13:e1:1e:a6:
4b:fc:c5:ec:3f:12:a3:ae:87:65:25:1e:c5:24:ff:26:83:f0:
1a:fe:a8:7f:12:4f:4e:8d:d1:f4:4f:1a:5c:71:c5:eb:38:fe:
75:8d:91:a6:52:9a:06:fc:7e:f3:d3:95:7b:21:ae:52:08:99:
7b:44:5f:9a:6f:a6:6e:68:91:c7:f2:6c:fd:17:67:2a:e9:1c:
82:8c:91:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 23:35:32 2025 by rpki-client