Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/eFAyRgaPyyeQ7lbQgvEs2GEo7L4.roa
File: eFAyRgaPyyeQ7lbQgvEs2GEo7L4.roa (raw, json)
Hash identifier: p76LPuIgvtecQEUqTKKOV3JxaQAyC7BUL/JeQ703Lh0=
Subject key identifier: 78:50:32:46:06:8F:CB:27:90:EE:56:D0:82:F1:2C:D8:61:28:EC:BE
Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10
Certificate serial: 01974036BC9BF538D3ED79D43F7237936B5C
Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/eFAyRgaPyyeQ7lbQgvEs2GEo7L4.roa
Signing time: Thu 05 Jun 2025 13:10:18 +0000
ROA not before: Thu 05 Jun 2025 13:10:18 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 42864
IP address blocks: 45.9.169.0/24 maxlen: 24
45.9.170.0/24 maxlen: 24
45.9.171.0/24 maxlen: 24
45.14.10.0/24 maxlen: 24
45.14.11.0/24 maxlen: 24
45.88.93.0/24 maxlen: 24
77.242.144.0/24 maxlen: 24
77.242.148.0/24 maxlen: 24
77.242.151.0/24 maxlen: 24
77.242.154.0/24 maxlen: 24
83.137.156.0/24 maxlen: 24
83.137.158.0/24 maxlen: 24
88.209.193.0/24 maxlen: 24
88.209.196.0/24 maxlen: 24
88.209.208.0/24 maxlen: 24
88.209.210.0/24 maxlen: 24
88.209.212.0/24 maxlen: 24
88.209.213.0/24 maxlen: 24
88.209.214.0/24 maxlen: 24
88.209.215.0/24 maxlen: 24
88.209.219.0/24 maxlen: 24
88.209.247.0/24 maxlen: 24
88.209.254.0/24 maxlen: 24
92.52.208.0/24 maxlen: 24
92.52.209.0/24 maxlen: 24
92.52.210.0/23 maxlen: 23
92.52.212.0/22 maxlen: 24
92.52.215.0/24 maxlen: 24
92.52.218.0/24 maxlen: 24
178.248.200.0/21 maxlen: 21
193.138.125.0/24 maxlen: 24
2a00:1f40::/29 maxlen: 29
2a05:f5c0::/29 maxlen: 29
2a05:f5c0::/32 maxlen: 32
2a0c:f1c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Fri 06 Jun 2025 11:29:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:40:36:bc:9b:f5:38:d3:ed:79:d4:3f:72:37:93:6b:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10
Validity
Not Before: Jun 5 13:10:18 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=78503246068fcb2790ee56d082f12cd86128ecbe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:bd:e6:25:92:82:97:84:9f:df:01:72:4c:97:
07:be:0b:59:86:3e:a0:6b:cb:80:c2:41:32:b9:22:
06:7a:e1:c2:47:eb:67:81:1e:e4:0b:d8:37:a3:41:
4e:7d:d1:f9:d5:e9:30:68:31:e2:f4:36:54:ca:ce:
0e:47:01:a2:41:ac:23:c5:9a:a1:5c:5a:01:44:8a:
2d:4b:90:ea:c0:9e:ae:43:3b:e6:2c:60:b6:a4:8f:
b5:ce:d0:5b:8e:59:ac:b8:6f:74:b3:bd:ba:34:84:
42:90:ed:38:ee:82:b7:87:68:b7:86:08:f8:9d:44:
c0:4c:23:ff:ef:67:7d:aa:14:ab:60:30:ba:61:65:
cd:23:e0:5a:b1:82:6c:55:d7:0e:62:e6:7d:c9:c6:
83:3b:6f:b2:58:b6:b6:98:b8:e7:1a:ca:af:42:8f:
78:ec:5d:36:ef:42:6d:73:2f:50:fb:6a:1b:a8:d9:
51:56:7b:e7:23:27:4b:62:e3:fe:87:02:f8:ef:ef:
7f:bd:03:79:0c:f6:50:cd:5d:db:01:d7:d7:0c:82:
1d:92:96:b7:9d:93:f3:3a:e2:41:65:2e:32:30:4f:
3f:23:87:eb:ce:96:9c:f6:c5:6a:4e:27:0c:f7:c2:
f6:77:eb:38:b5:46:c5:b3:93:25:2c:90:c8:73:5b:
af:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:50:32:46:06:8F:CB:27:90:EE:56:D0:82:F1:2C:D8:61:28:EC:BE
X509v3 Authority Key Identifier:
keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/eFAyRgaPyyeQ7lbQgvEs2GEo7L4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.9.169.0-45.9.171.255
45.14.10.0/23
45.88.93.0/24
77.242.144.0/24
77.242.148.0/24
77.242.151.0/24
77.242.154.0/24
83.137.156.0/24
83.137.158.0/24
88.209.193.0/24
88.209.196.0/24
88.209.208.0/24
88.209.210.0/24
88.209.212.0/22
88.209.219.0/24
88.209.247.0/24
88.209.254.0/24
92.52.208.0/21
92.52.218.0/24
178.248.200.0/21
193.138.125.0/24
IPv6:
2a00:1f40::/29
2a05:f5c0::/29
2a0c:f1c0::/29
Signature Algorithm: sha256WithRSAEncryption
c0:bd:bd:26:91:88:22:36:22:fc:6e:76:3d:8a:e0:04:dd:1a:
a8:17:14:3e:da:0f:f1:9c:fb:8f:d4:f9:2c:22:b1:a1:4d:d8:
88:b9:4c:e2:df:38:00:84:d9:f1:b7:bd:fb:27:4f:07:83:67:
0a:6b:ca:35:78:d7:2b:43:65:f6:cd:4d:64:38:26:4b:70:87:
ac:c2:ed:28:4f:61:22:e3:f4:9e:40:b3:2a:29:52:26:7d:e9:
27:7c:a4:cf:0f:f4:d2:5a:c7:d9:20:bb:56:14:4d:28:c9:88:
f5:28:1e:f7:94:cf:ff:9c:d2:6d:73:3d:e1:a6:93:a1:eb:1a:
25:60:1f:93:87:96:29:f5:e5:b2:d6:86:bd:cf:e5:f0:6a:c2:
1e:47:46:7c:9e:8d:9d:e2:fd:b5:b7:87:fc:c4:52:a8:b8:d6:
70:80:98:7e:58:b0:d4:7b:36:20:be:8a:1b:0e:83:61:fa:50:
93:06:44:10:86:23:cc:ce:5e:44:e4:54:d2:26:06:02:82:9c:
46:eb:d1:5c:b4:d1:68:68:67:07:52:e9:81:0e:80:e9:a1:af:
39:08:d7:83:3a:ee:b1:9b:5e:fd:3a:50:f0:b1:2b:92:83:11:
69:4e:d6:43:c3:84:99:bb:72:12:dd:e9:a0:73:08:d9:05:2b:
0d:de:3d:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 14:48:50 2025 by rpki-client