Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/g773CKc2Ntw2YJUjdP1mNClE45k.roa
File: g773CKc2Ntw2YJUjdP1mNClE45k.roa (raw, json)
Hash identifier: 0D8aiXC2P2bohoXYXABP4xIYmtuVkAUOoKkM3MluGAU=
Subject key identifier: 83:BE:F7:08:A7:36:36:DC:36:60:95:23:74:FD:66:34:29:44:E3:99
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 019685DB671C33C7D79832D4286733DD187F
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/g773CKc2Ntw2YJUjdP1mNClE45k.roa
Signing time: Wed 30 Apr 2025 08:41:10 +0000
ROA not before: Wed 30 Apr 2025 08:41:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 834
IP address blocks: 45.90.17.0/24 maxlen: 24
185.126.82.0/24 maxlen: 24
185.209.38.0/24 maxlen: 24
185.209.73.0/24 maxlen: 24
185.209.75.0/24 maxlen: 24
185.210.233.0/24 maxlen: 24
185.214.108.0/24 maxlen: 24
185.218.20.0/24 maxlen: 24
185.218.101.0/24 maxlen: 24
185.220.250.0/23 maxlen: 24
185.222.28.0/24 maxlen: 24
185.222.29.0/24 maxlen: 24
185.223.78.0/24 maxlen: 24
185.223.155.0/24 maxlen: 24
185.225.0.0/23 maxlen: 23
185.225.3.0/24 maxlen: 24
185.226.104.0/24 maxlen: 24
185.227.146.0/23 maxlen: 24
185.227.147.0/24 maxlen: 24
185.228.75.0/24 maxlen: 24
185.232.206.0/24 maxlen: 24
193.8.112.0/23 maxlen: 24
193.8.112.0/24 maxlen: 24
193.8.114.0/24 maxlen: 24
193.58.146.0/23 maxlen: 24
194.76.172.0/24 maxlen: 24
194.124.69.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 30 Apr 2025 09:02:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:85:db:67:1c:33:c7:d7:98:32:d4:28:67:33:dd:18:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Apr 30 08:41:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=83bef708a73636dc3660952374fd66342944e399
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:b2:8b:d7:ed:8b:04:ab:64:76:25:10:86:c3:
40:bf:36:e2:d0:f7:61:65:63:e8:b8:80:5d:a3:ba:
3a:0d:97:e1:f3:e2:19:b6:46:e9:76:73:41:51:4c:
2e:9c:d2:34:c5:99:f6:e7:08:14:2b:40:cb:44:69:
6f:0d:1c:99:66:a9:03:97:02:cb:f4:9d:36:c6:be:
ec:87:23:83:ea:9c:52:e0:bb:16:0a:0d:0d:e3:ca:
79:d3:53:b0:4b:0b:d3:35:c1:e9:9a:2f:74:b2:76:
01:b8:a3:f1:53:63:84:cd:5d:e9:1a:98:8d:21:5e:
8a:2d:b9:46:b9:75:45:93:d8:44:00:55:7f:95:ae:
d0:d9:26:ad:36:69:87:94:3b:1a:80:74:ad:74:db:
2f:33:3d:b8:e2:29:32:dc:07:25:ae:26:4f:09:dd:
63:8a:04:22:38:aa:5d:e8:f9:9a:68:24:68:89:d7:
3f:0f:e6:7f:c7:4f:b7:15:77:af:03:89:f0:f0:2f:
e6:21:d7:e3:69:fe:8d:89:4e:8e:ca:82:f7:22:1b:
7f:30:66:26:ef:cb:f4:ad:e3:59:85:73:28:90:d2:
96:34:f1:f9:20:b1:75:4a:22:91:ed:0f:98:92:7d:
a9:77:f0:a4:12:31:81:4d:b1:4f:0f:f7:a6:7d:73:
ba:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:BE:F7:08:A7:36:36:DC:36:60:95:23:74:FD:66:34:29:44:E3:99
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/g773CKc2Ntw2YJUjdP1mNClE45k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.90.17.0/24
185.126.82.0/24
185.209.38.0/24
185.209.73.0/24
185.209.75.0/24
185.210.233.0/24
185.214.108.0/24
185.218.20.0/24
185.218.101.0/24
185.220.250.0/23
185.222.28.0/23
185.223.78.0/24
185.223.155.0/24
185.225.0.0/23
185.225.3.0/24
185.226.104.0/24
185.227.146.0/23
185.228.75.0/24
185.232.206.0/24
193.8.112.0-193.8.114.255
193.58.146.0/23
194.76.172.0/24
194.124.69.0/24
Signature Algorithm: sha256WithRSAEncryption
48:63:37:0a:09:45:8b:92:c7:b9:7a:f0:2b:f5:d5:96:e8:5a:
42:b0:38:a6:f2:26:cc:d0:ef:46:58:e0:1c:32:fe:15:8a:ce:
89:e7:7c:6d:11:99:fc:21:b5:23:c7:b3:d5:6d:70:5a:21:88:
7d:18:9d:2d:cf:07:64:32:f9:31:e6:d8:e1:ec:46:0a:38:65:
3a:61:63:8f:c0:35:64:c5:32:4d:52:73:c0:4e:ce:98:82:e4:
d4:6a:82:3b:46:e9:ea:42:e8:82:b0:cc:a8:55:59:c4:a4:f2:
3b:8a:61:84:b6:1f:06:41:5b:04:78:b5:94:fd:8b:42:5d:31:
71:91:64:b7:00:25:68:a1:01:5c:b9:a7:71:e9:ab:47:f2:20:
a8:8b:33:7f:50:2c:02:62:8a:52:c5:2b:a4:ae:e4:d7:91:61:
b0:22:f1:52:b7:6b:02:76:bf:3c:67:72:9f:9f:c8:8d:18:f4:
0c:12:96:f3:9f:cc:9c:4c:03:b5:ca:8b:c8:5c:be:2d:f5:4f:
7c:0c:7e:19:87:7e:55:62:b0:26:ac:bc:e4:d6:87:c7:e0:d0:
07:ac:29:f8:2e:6c:ac:6b:3e:1b:b6:b9:c7:98:67:40:05:11:
fb:62:7e:ea:cd:83:c0:c9:3a:3a:59:ce:ed:4d:d5:d8:42:b0:
5d:72:4d:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 02:53:23 2025 by rpki-client