Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/OEDPrEgMHztwurFLNsnQbaguiJo.roa
File: OEDPrEgMHztwurFLNsnQbaguiJo.roa (raw, json)
Hash identifier: 9znrztRZamQBfK17RT4nK7xC8Ssz3Va/1T0OL18Ves0=
Subject key identifier: 38:40:CF:AC:48:0C:1F:3B:70:BA:B1:4B:36:C9:D0:6D:A8:2E:88:9A
Certificate issuer: /CN=50592e68895c7068b4655508917ad5bbddbd0a5f
Certificate serial: 01942825618AED9A263FA2A26AC0F06AF6A1
Authority key identifier: 50:59:2E:68:89:5C:70:68:B4:65:55:08:91:7A:D5:BB:DD:BD:0A:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UFkuaIlccGi0ZVUIkXrVu929Cl8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/OEDPrEgMHztwurFLNsnQbaguiJo.roa
Signing time: Thu 02 Jan 2025 17:52:05 +0000
ROA not before: Thu 02 Jan 2025 17:52:05 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 206119
IP address blocks: 185.205.16.0/24 maxlen: 24
185.205.18.0/24 maxlen: 24
185.237.80.0/24 maxlen: 24
185.237.81.0/24 maxlen: 24
185.254.93.0/24 maxlen: 24
193.36.62.0/24 maxlen: 24
194.145.136.0/24 maxlen: 24
2a05:b700::/29 maxlen: 29
2a0a:fa40::/29 maxlen: 29
2a0c:580::/29 maxlen: 29
2a0c:4a40::/29 maxlen: 29
2a0c:4a45::/32 maxlen: 32
2a0c:4a46::/32 maxlen: 32
2a0c:4a47::/32 maxlen: 32
2a0d:d380::/29 maxlen: 29
2a0d:d380::/32 maxlen: 32
2a0d:d381::/32 maxlen: 32
2a0d:d383::/32 maxlen: 32
2a0d:d384::/32 maxlen: 32
2a0d:d385::/32 maxlen: 32
2a0d:d386::/32 maxlen: 32
2a0d:d387::/32 maxlen: 32
2a10:4b40::/29 maxlen: 29
Validation: Failed, certificate revoked on Thu 06 Mar 2025 11:35:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:25:61:8a:ed:9a:26:3f:a2:a2:6a:c0:f0:6a:f6:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50592e68895c7068b4655508917ad5bbddbd0a5f
Validity
Not Before: Jan 2 17:52:05 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3840cfac480c1f3b70bab14b36c9d06da82e889a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:10:2e:e5:28:de:fb:c6:a1:e6:f3:08:f4:1d:
a9:b4:4e:1e:bf:4c:a9:48:65:65:e2:7d:3d:58:c9:
89:4a:36:cc:2d:0d:2f:d1:ac:da:f5:80:d9:c2:00:
58:64:ff:81:e7:6b:5a:79:7f:87:f3:9e:06:3a:d6:
99:71:37:a3:80:2b:0a:96:01:70:48:ae:38:74:c9:
d4:75:b9:1d:bc:72:0c:cd:7f:0d:24:3a:da:77:08:
22:5f:c3:a7:e3:bd:9c:18:34:a1:1c:45:1a:a5:af:
b7:c1:7e:ea:88:6f:19:40:dc:7f:4a:07:7c:23:3d:
47:21:e8:7a:30:b3:46:4f:f6:69:52:eb:17:f8:8b:
9c:8d:fc:de:44:51:75:fb:c9:7c:31:69:6c:39:27:
85:d4:e1:2f:3c:fc:88:f8:67:a2:c0:8e:df:e6:0d:
75:1f:d5:8d:5a:08:e4:d9:2f:84:66:61:12:b2:ae:
24:b5:a0:81:16:50:fc:93:88:8b:e0:af:95:8c:ec:
e4:2c:93:b6:ff:d1:27:3e:9d:aa:2e:bb:81:d0:8a:
cf:87:26:c4:1f:18:20:e1:c7:22:5b:50:d6:eb:ab:
6b:b4:a6:57:43:47:9a:3b:04:11:ba:b9:e2:ec:51:
9c:60:19:da:df:5d:d0:e2:02:8a:1f:5f:9a:c7:16:
e5:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:40:CF:AC:48:0C:1F:3B:70:BA:B1:4B:36:C9:D0:6D:A8:2E:88:9A
X509v3 Authority Key Identifier:
keyid:50:59:2E:68:89:5C:70:68:B4:65:55:08:91:7A:D5:BB:DD:BD:0A:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UFkuaIlccGi0ZVUIkXrVu929Cl8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/OEDPrEgMHztwurFLNsnQbaguiJo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/UFkuaIlccGi0ZVUIkXrVu929Cl8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.205.16.0/24
185.205.18.0/24
185.237.80.0/23
185.254.93.0/24
193.36.62.0/24
194.145.136.0/24
IPv6:
2a05:b700::/29
2a0a:fa40::/29
2a0c:580::/29
2a0c:4a40::/29
2a0d:d380::/29
2a10:4b40::/29
Signature Algorithm: sha256WithRSAEncryption
2b:87:21:ed:a7:c0:24:d7:98:91:10:4b:0f:7f:d1:51:20:50:
9b:17:65:04:d8:41:8a:7c:a5:ce:f8:e2:6d:df:50:09:ae:9e:
b4:bd:2b:40:f9:ae:94:c4:de:2b:12:8d:d4:0d:e3:f2:3b:17:
5a:65:4a:a1:a4:14:6e:4b:ee:ff:52:8c:e3:ad:05:0e:e9:6f:
8b:5e:cb:f0:b5:a6:33:1d:3e:a8:10:68:50:73:fb:d0:af:a6:
e5:75:4e:28:86:28:ae:2b:e8:74:b4:04:89:67:83:36:dc:2e:
14:d9:8d:3e:43:62:33:0e:bc:05:13:36:c3:25:6c:bf:6a:16:
f8:d2:3b:26:0c:44:c6:99:fb:23:20:5a:cb:e0:99:af:4e:62:
22:60:a6:f3:59:f8:c9:13:44:6b:ce:b5:aa:2d:d0:94:bf:4a:
da:aa:83:af:a8:b8:67:7a:cd:f7:60:00:d3:b0:54:de:27:dc:
ea:a1:dc:42:22:d7:16:53:09:95:ac:28:ca:87:db:e0:93:a4:
8f:fd:38:01:c8:6e:b3:0d:e4:72:de:09:51:7a:ec:d9:91:20:
1f:29:06:b1:c5:e8:0c:4c:14:98:6c:8f:57:df:bc:90:45:2f:
8b:99:7a:ac:b7:e2:62:50:52:ee:d8:96:41:ca:f2:8d:1e:91:
23:4e:11:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 13:52:38 2025 by rpki-client