Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/oCf2FrEU0SYLTrS5-bjiBjk9RCE.roa
File: oCf2FrEU0SYLTrS5-bjiBjk9RCE.roa (raw, json)
Hash identifier: GpHnJMxh+xy2U1Bp3bv/iLz6cQmm8Kt6ls42aRNFbHU=
Subject key identifier: A0:27:F6:16:B1:14:D1:26:0B:4E:B4:B9:F9:B8:E2:06:39:3D:44:21
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 0196E9663155626B923988A77353E87F8BC5
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/oCf2FrEU0SYLTrS5-bjiBjk9RCE.roa
Signing time: Mon 19 May 2025 16:35:10 +0000
ROA not before: Mon 19 May 2025 16:35:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 834
IP address blocks: 45.90.17.0/24 maxlen: 24
185.126.82.0/24 maxlen: 24
185.199.54.0/24 maxlen: 24
185.206.251.0/24 maxlen: 24
185.209.38.0/24 maxlen: 24
185.209.73.0/24 maxlen: 24
185.209.75.0/24 maxlen: 24
185.210.233.0/24 maxlen: 24
185.214.108.0/24 maxlen: 24
185.218.20.0/24 maxlen: 24
185.218.101.0/24 maxlen: 24
185.220.250.0/23 maxlen: 24
185.222.28.0/24 maxlen: 24
185.222.29.0/24 maxlen: 24
185.223.155.0/24 maxlen: 24
185.225.0.0/23 maxlen: 23
185.225.3.0/24 maxlen: 24
185.226.104.0/24 maxlen: 24
185.227.146.0/23 maxlen: 24
185.227.147.0/24 maxlen: 24
185.228.75.0/24 maxlen: 24
185.232.206.0/24 maxlen: 24
185.246.112.0/24 maxlen: 24
193.8.112.0/23 maxlen: 24
193.8.112.0/24 maxlen: 24
193.58.146.0/23 maxlen: 24
194.76.169.0/24 maxlen: 24
194.76.172.0/24 maxlen: 24
194.124.69.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 21 May 2025 07:47:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:e9:66:31:55:62:6b:92:39:88:a7:73:53:e8:7f:8b:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: May 19 16:35:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a027f616b114d1260b4eb4b9f9b8e206393d4421
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:9b:b7:e2:71:ef:55:31:0e:98:3a:76:c3:8e:
e3:53:ae:82:e5:f2:45:d5:d7:5c:2f:92:ea:25:4c:
5b:93:cc:a8:78:84:a4:69:9c:73:31:7f:55:55:8c:
6e:f3:e1:3b:85:27:8d:ba:41:08:a1:16:8c:f8:69:
6b:e9:2d:d2:80:ec:f9:6b:2a:f3:09:e1:56:0f:4f:
47:f6:af:18:4b:58:b0:c6:dc:4f:14:c5:eb:dd:b4:
ca:3f:00:55:94:54:21:52:98:9b:95:88:e6:3c:84:
5c:4f:08:fd:29:34:de:a8:1d:48:61:20:a3:a9:b9:
2e:4f:16:bb:31:69:51:20:7c:d6:f0:c0:2b:2d:9a:
ed:c4:8b:b5:8e:61:65:6d:20:73:ea:13:58:ab:eb:
24:bf:4f:46:92:65:b8:94:f6:cc:29:1c:9f:3a:02:
44:63:78:7e:2b:f0:16:49:c9:09:92:03:2f:38:05:
7f:55:8e:f8:cd:95:09:4d:9e:27:1b:53:2b:d7:5f:
78:1a:0e:92:84:72:22:95:89:25:be:81:c6:1f:72:
56:0b:98:7e:86:88:0a:87:6f:10:47:19:34:72:2c:
c2:7e:3a:c3:ea:a1:55:17:68:c0:43:a1:9d:b9:c5:
f4:a3:c0:2b:7c:22:a1:ca:ca:59:ca:97:01:c7:f2:
08:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:27:F6:16:B1:14:D1:26:0B:4E:B4:B9:F9:B8:E2:06:39:3D:44:21
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/oCf2FrEU0SYLTrS5-bjiBjk9RCE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.90.17.0/24
185.126.82.0/24
185.199.54.0/24
185.206.251.0/24
185.209.38.0/24
185.209.73.0/24
185.209.75.0/24
185.210.233.0/24
185.214.108.0/24
185.218.20.0/24
185.218.101.0/24
185.220.250.0/23
185.222.28.0/23
185.223.155.0/24
185.225.0.0/23
185.225.3.0/24
185.226.104.0/24
185.227.146.0/23
185.228.75.0/24
185.232.206.0/24
185.246.112.0/24
193.8.112.0/23
193.58.146.0/23
194.76.169.0/24
194.76.172.0/24
194.124.69.0/24
Signature Algorithm: sha256WithRSAEncryption
93:1a:f8:08:22:d0:4c:b9:7e:50:b0:f4:3a:6a:f1:f5:f5:7a:
9e:a7:91:ba:be:1c:2a:3b:7b:cf:de:db:96:07:0d:b1:08:36:
95:26:53:0c:69:df:97:c2:2c:cf:6e:96:bf:cd:42:b2:3c:96:
c8:7a:87:b7:bf:a5:18:e0:9d:2f:99:4b:c9:bf:8e:eb:e7:8b:
9a:e0:98:65:31:58:2d:2b:ec:67:5e:61:4d:15:6d:83:29:57:
8e:9f:a6:07:57:f4:c9:9b:8e:3a:63:ba:5e:4b:86:86:0a:d5:
9b:a7:1c:3c:1d:5a:d1:4f:dd:e9:c1:15:97:09:ca:1a:f9:e8:
d9:87:db:17:61:1e:dc:a1:b6:6f:4b:38:09:14:37:ae:ab:30:
39:b9:a3:20:c3:1c:be:63:53:a6:36:e9:72:70:77:ac:d5:00:
e9:6a:bc:dc:e5:a2:c3:66:1b:b7:ce:c9:14:cf:9c:bc:9d:a7:
3c:8c:d5:e6:43:91:c7:cd:a0:b5:0e:04:14:29:bb:d1:2b:e8:
16:ac:73:89:c7:2d:ea:71:47:cd:66:f0:e5:da:db:47:b8:95:
5f:7f:c7:e2:fe:20:a9:c7:e6:b0:51:6a:21:69:d7:2f:cd:a9:
c8:65:3d:cc:b7:63:f1:36:df:b3:f5:da:e6:5c:f5:a6:32:f8:
14:2b:15:5f
-----BEGIN CERTIFICATE-----
MIIFmDCCBICgAwIBAgISAZbpZjFVYmuSOYinc1Pof4vFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwNjc4NGMxMDUwODViOWQ2YWQ1ZjczYTAzYjIwZDlhNWMx
MTRjYWYwHhcNMjUwNTE5MTYzNTEwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhMDI3ZjYxNmIxMTRkMTI2MGI0ZWI0YjlmOWI4ZTIwNjM5M2Q0NDIxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq5u34nHvVTEOmDp2w47jU66C5fJF
1ddcL5LqJUxbk8yoeISkaZxzMX9VVYxu8+E7hSeNukEIoRaM+Glr6S3SgOz5ayrz
CeFWD09H9q8YS1iwxtxPFMXr3bTKPwBVlFQhUpiblYjmPIRcTwj9KTTeqB1IYSCj
qbkuTxa7MWlRIHzW8MArLZrtxIu1jmFlbSBz6hNYq+skv09GkmW4lPbMKRyfOgJE
Y3h+K/AWSckJkgMvOAV/VY74zZUJTZ4nG1Mr1194Gg6ShHIilYklvoHGH3JWC5h+
hogKh28QRxk0cizCfjrD6qFVF2jAQ6GducX0o8ArfCKhyspZypcBx/II+wIDAQAB
o4ICpDCCAqAwHQYDVR0OBBYEFKAn9haxFNEmC060ufm44gY5PUQhMB8GA1UdIwQY
MBaAFGBnhMEFCFudatX3OgOyDZpcEUyvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgt
YjQzNDJiYTkxYWJjLzEvb0NmMkZyRVUwU1lMVHJTNS1iamlCams5UkNFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgtYjQzNDJiYTkxYWJj
LzEvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIG5BggrBgEFBQcBBwEB/wSBqTCBpjCBowQCAAEwgZwDBAAt
WhEDBAC5flIDBAC5xzYDBAC5zvsDBAC50SYDBAC50UkDBAC50UsDBAC50ukDBAC5
1mwDBAC52hQDBAC52mUDBAG53PoDBAG53hwDBAC535sDBAG54QADBAC54QMDBAC5
4mgDBAG545IDBAC55EsDBAC56M4DBAC59nADBAHBCHADBAHBOpIDBADCTKkDBADC
TKwDBADCfEUwDQYJKoZIhvcNAQELBQADggEBAJMa+Agi0Ey5flCw9Dpq8fX1ep6n
kbq+HCo7e8/e25YHDbEINpUmUwxp35fCLM9ulr/NQrI8lsh6h7e/pRjgnS+ZS8m/
juvni5rgmGUxWC0r7GdeYU0VbYMpV46fpgdX9Mmbjjpjul5LhoYK1ZunHDwdWtFP
3enBFZcJyhr56NmH2xdhHtyhtm9LOAkUN66rMDm5oyDDHL5jU6Y26XJwd6zVAOlq
vNzlosNmG7fOyRTPnLydpzyM1eZDkcfNoLUOBBQpu9Er6Basc4nHLepxR81m8OXa
20e4lV9/x+L+IKnH5rBRaiFp1y/NqchlPcy3Y/E237P12uZc9aYy+BQrFV8=
-----END CERTIFICATE-----
Generated at Fri Jun 6 15:00:23 2025 by rpki-client