Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/66SqL4XiTXgimjSid3GBjTRgbLo.roa
File: 66SqL4XiTXgimjSid3GBjTRgbLo.roa (raw, json)
Hash identifier: SxF0UcrDg0ueaWtNINZxG/Vth3dqIADynCZ9kWTlmEo=
Subject key identifier: EB:A4:AA:2F:85:E2:4D:78:22:9A:34:A2:77:71:81:8D:34:60:6C:BA
Certificate issuer: /CN=7508475ff0d8ec960336016e0e04221a98e5ecf2
Certificate serial: 0193E8F43A950A89A0A92D577B8E1F44E6F7
Authority key identifier: 75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/66SqL4XiTXgimjSid3GBjTRgbLo.roa
Signing time: Sat 21 Dec 2024 11:22:20 +0000
ROA not before: Sat 21 Dec 2024 11:22:20 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61400
IP address blocks: 185.39.205.0/24 maxlen: 24
2a09:6281::/32 maxlen: 32
2a09:6282::/32 maxlen: 32
2a09:6283::/32 maxlen: 32
2a09:6287::/32 maxlen: 32
2a09:e2c0::/32 maxlen: 32
2a09:e2c1::/32 maxlen: 32
2a09:e2c2::/32 maxlen: 32
2a09:e2c3::/32 maxlen: 32
2a09:e2c4::/32 maxlen: 32
2a09:e2c5::/32 maxlen: 32
2a09:e2c6::/32 maxlen: 32
2a09:e2c7::/32 maxlen: 32
2a10:4102::/32 maxlen: 32
2a10:4106::/32 maxlen: 32
2a11:4b45::/32 maxlen: 32
2a12:c300::/30 maxlen: 30
2a12:c300::/32 maxlen: 32
2a12:c301::/32 maxlen: 32
2a12:c302::/32 maxlen: 32
2a12:c303::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 02 Jan 2025 15:49:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:e8:f4:3a:95:0a:89:a0:a9:2d:57:7b:8e:1f:44:e6:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7508475ff0d8ec960336016e0e04221a98e5ecf2
Validity
Not Before: Dec 21 11:22:20 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=eba4aa2f85e24d78229a34a27771818d34606cba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:ae:4e:dd:6e:6a:9b:8f:c7:0c:60:81:38:8d:
1c:ec:24:34:27:66:37:84:43:02:16:bb:55:96:ab:
22:0e:3b:26:31:70:85:2a:92:d8:6e:c0:ed:84:2e:
6c:6e:88:db:a4:fd:02:db:50:d3:4f:d4:f8:33:55:
e4:f4:09:cb:b0:9c:b0:a2:9b:9c:52:c0:03:da:dc:
64:63:77:ea:cc:1a:c0:29:24:39:09:69:8d:bc:1d:
37:30:32:bf:ef:d9:87:19:68:c6:2b:8b:0d:ae:85:
7c:96:e1:f2:70:d6:59:83:ea:01:20:30:12:2d:3c:
ef:41:ca:4e:dd:45:a6:60:d7:3d:6c:7f:ba:89:37:
0c:f0:cf:1a:bc:80:da:c9:48:91:63:52:02:d5:04:
75:6d:85:cd:e0:2f:aa:3d:be:cb:2d:9b:6e:b6:03:
65:b3:4f:7c:79:97:83:b8:b2:02:a5:b1:fe:16:42:
63:53:84:38:1d:dd:d1:f1:eb:b8:2c:67:0b:86:60:
ea:d2:63:6b:2a:5a:8f:5c:21:1b:8b:b1:fe:fd:30:
7f:41:ca:24:3f:5d:14:49:16:3d:26:5f:17:83:a5:
de:6c:51:69:63:a3:fc:44:36:58:85:b0:50:07:28:
f3:51:49:89:eb:dc:8e:71:c5:5e:6f:3e:5a:d2:57:
12:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:A4:AA:2F:85:E2:4D:78:22:9A:34:A2:77:71:81:8D:34:60:6C:BA
X509v3 Authority Key Identifier:
keyid:75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/66SqL4XiTXgimjSid3GBjTRgbLo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/dQhHX_DY7JYDNgFuDgQiGpjl7PI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.39.205.0/24
IPv6:
2a09:6281::-2a09:6283:ffff:ffff:ffff:ffff:ffff:ffff
2a09:6287::/32
2a09:e2c0::/29
2a10:4102::/32
2a10:4106::/32
2a11:4b45::/32
2a12:c300::/30
Signature Algorithm: sha256WithRSAEncryption
77:01:96:cf:35:4c:04:f9:17:33:21:c7:c6:3c:48:a8:84:4d:
8e:25:49:73:4b:a3:9b:a6:00:a4:89:92:18:29:91:43:60:79:
4e:d2:b8:27:5e:00:44:a6:c1:12:de:3c:38:65:fb:16:74:1f:
69:c9:f5:80:23:05:6b:64:f6:5d:f8:cb:f4:64:74:ea:ff:de:
75:6c:61:d6:93:18:66:9c:71:fc:12:ba:7a:b9:f5:ec:a8:07:
c1:f3:5e:ea:3f:0b:0a:84:66:6b:ce:19:be:c6:72:9e:c1:18:
3b:0b:2f:58:a9:45:31:e8:11:26:3d:60:56:c5:a0:19:2e:39:
30:72:18:a2:27:2f:b5:e3:db:73:10:a9:a0:c5:aa:ba:16:b9:
7e:8b:c2:6c:d5:20:67:f1:fe:7b:ac:9d:fa:4d:11:61:cc:49:
39:e5:e1:9b:09:38:5b:22:84:22:33:04:1d:8f:bb:21:f8:c6:
9b:31:3d:59:c8:c9:f5:d2:66:8c:21:24:57:36:47:4d:1a:f1:
42:6b:21:5a:25:2a:9e:e2:de:f1:20:98:c9:95:05:6a:91:b9:
39:51:d5:0a:d3:2f:98:2b:0f:d8:3a:45:fe:ba:82:e4:14:2a:
c1:ac:fe:7a:34:ad:f9:ab:74:d8:fc:1a:d3:7d:cf:5e:a2:b1:
65:76:a2:6e
-----BEGIN CERTIFICATE-----
MIIFPzCCBCegAwIBAgISAZPo9DqVComgqS1Xe44fROb3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc1MDg0NzVmZjBkOGVjOTYwMzM2MDE2ZTBlMDQyMjFhOThl
NWVjZjIwHhcNMjQxMjIxMTEyMjIwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlYmE0YWEyZjg1ZTI0ZDc4MjI5YTM0YTI3NzcxODE4ZDM0NjA2Y2JhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAva5O3W5qm4/HDGCBOI0c7CQ0J2Y3
hEMCFrtVlqsiDjsmMXCFKpLYbsDthC5sbojbpP0C21DTT9T4M1Xk9AnLsJywopuc
UsAD2txkY3fqzBrAKSQ5CWmNvB03MDK/79mHGWjGK4sNroV8luHycNZZg+oBIDAS
LTzvQcpO3UWmYNc9bH+6iTcM8M8avIDayUiRY1IC1QR1bYXN4C+qPb7LLZtutgNl
s098eZeDuLICpbH+FkJjU4Q4Hd3R8eu4LGcLhmDq0mNrKlqPXCEbi7H+/TB/Qcok
P10USRY9Jl8Xg6XebFFpY6P8RDZYhbBQByjzUUmJ69yOccVebz5a0lcSSwIDAQAB
o4ICSzCCAkcwHQYDVR0OBBYEFOukqi+F4k14Ipo0ondxgY00YGy6MB8GA1UdIwQY
MBaAFHUIR1/w2OyWAzYBbg4EIhqY5ezyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZFFoSFhfRFk3SllETmdGdURnUWlHcGpsN1BJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZS8xZmE2YTMtOGRjNS00YzM1LWE0OWIt
MTcxYzM2N2JlNzgyLzEvNjZTcUw0WGlUWGdpbWpTaWQzR0JqVFJnYkxvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZS8xZmE2YTMtOGRjNS00YzM1LWE0OWItMTcxYzM2N2JlNzgy
LzEvZFFoSFhfRFk3SllETmdGdURnUWlHcGpsN1BJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMGEGCCsGAQUFBwEHAQH/BFIwUDAMBAIAATAGAwQAuSfNMEAE
AgACMDowDgMFACoJYoEDBQIqCWKAAwUAKglihwMFAyoJ4sADBQAqEEECAwUAKhBB
BgMFACoRS0UDBQIqEsMAMA0GCSqGSIb3DQEBCwUAA4IBAQB3AZbPNUwE+RczIcfG
PEiohE2OJUlzS6ObpgCkiZIYKZFDYHlO0rgnXgBEpsES3jw4ZfsWdB9pyfWAIwVr
ZPZd+Mv0ZHTq/951bGHWkxhmnHH8Erp6ufXsqAfB817qPwsKhGZrzhm+xnKewRg7
Cy9YqUUx6BEmPWBWxaAZLjkwchiiJy+149tzEKmgxaq6Frl+i8Js1SBn8f57rJ36
TRFhzEk55eGbCThbIoQiMwQdj7sh+MabMT1ZyMn10maMISRXNkdNGvFCayFaJSqe
4t7xIJjJlQVqkbk5UdUK0y+YKw/YOkX+uoLkFCrBrP56NK35q3TY/BrTfc9eorFl
dqJu
-----END CERTIFICATE-----
Generated at Sat Apr 5 21:24:30 2025 by rpki-client