Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/b79a68-5b02-4097-a2e3-0a43b7a3eb54/1/YIiAe5iaoaPD2huoy_GvlBv7PpA.roa
File: YIiAe5iaoaPD2huoy_GvlBv7PpA.roa (raw, json)
Hash identifier: KDE06G/fc6uPeB6bGPiaB6NMvLi93Tk67/Rbp0YOdb0=
Subject key identifier: 60:88:80:7B:98:9A:A1:A3:C3:DA:1B:A8:CB:F1:AF:94:1B:FB:3E:90
Certificate issuer: /CN=66ed3ba68c78bff2c4724400ade6348482fb4364
Certificate serial: 01945E9020DD2271CA9C08967EF7E54B2BB9
Authority key identifier: 66:ED:3B:A6:8C:78:BF:F2:C4:72:44:00:AD:E6:34:84:82:FB:43:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zu07pox4v_LEckQAreY0hIL7Q2Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/b79a68-5b02-4097-a2e3-0a43b7a3eb54/1/YIiAe5iaoaPD2huoy_GvlBv7PpA.roa
Signing time: Mon 13 Jan 2025 07:28:11 +0000
ROA not before: Mon 13 Jan 2025 07:28:11 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 64289
IP address blocks: 185.225.24.0/24 maxlen: 24
185.225.26.0/24 maxlen: 24
192.189.157.0/24 maxlen: 24
2a14:3f80:8::/45 maxlen: 45
2a14:3f80:10::/45 maxlen: 45
2a14:3f80:18::/45 maxlen: 45
2a14:3f80:20::/45 maxlen: 45
2a14:3f80:28::/45 maxlen: 45
2a14:3f80:60::/45 maxlen: 45
2a14:3f80:80::/45 maxlen: 45
2a14:3f80:88::/45 maxlen: 45
2a14:3f80:100::/45 maxlen: 45
2a14:3f80:108::/45 maxlen: 45
2a14:3f80:3d1::/48 maxlen: 48
2a14:3f80:800::/38 maxlen: 38
2a14:3f80:c00::/38 maxlen: 38
2a14:3f80:1000::/38 maxlen: 38
2a14:3f80:1400::/38 maxlen: 38
2a14:3f80:1800::/38 maxlen: 38
2a14:3f80:2000::/38 maxlen: 38
2a14:3f80:2400::/38 maxlen: 38
2a14:3f80:2800::/38 maxlen: 38
2a14:3f80:3000::/38 maxlen: 38
2a14:3f80:3400::/38 maxlen: 38
2a14:3f80:3800::/38 maxlen: 38
2a14:3f80:3c00::/38 maxlen: 38
2a14:3f80:4000::/38 maxlen: 38
2a14:3f80:4400::/38 maxlen: 38
2a14:3f80:5000::/38 maxlen: 38
2a14:3f80:6000::/38 maxlen: 38
2a14:3f80:7000::/38 maxlen: 38
2a14:3f80:8800::/38 maxlen: 38
2a14:3f80:af38::/45 maxlen: 45
2a14:3f81:5800::/38 maxlen: 38
2a14:3f82:4000::/38 maxlen: 38
2a14:3f82:6000::/38 maxlen: 38
2a14:3f82:7000::/38 maxlen: 38
2a14:3f82:8800::/38 maxlen: 38
2a14:3f87:2800::/38 maxlen: 38
2a14:3f87:4800::/38 maxlen: 38
2a14:3f87:6800::/38 maxlen: 38
2a14:3f87:9800::/38 maxlen: 38
2a14:3f87:c800::/38 maxlen: 38
2a14:3f87:f000::/38 maxlen: 38
2a14:3f87:fc00::/38 maxlen: 38
Validation: Failed, certificate revoked on Mon 13 Jan 2025 22:45:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:5e:90:20:dd:22:71:ca:9c:08:96:7e:f7:e5:4b:2b:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66ed3ba68c78bff2c4724400ade6348482fb4364
Validity
Not Before: Jan 13 07:28:11 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6088807b989aa1a3c3da1ba8cbf1af941bfb3e90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:8d:7b:57:82:22:5b:85:d2:cd:1b:ff:bc:be:
f8:5c:f6:5b:ac:2c:f5:02:74:c5:e8:f3:38:5f:fd:
c7:93:99:f7:66:61:dd:04:da:f6:23:f7:4f:54:25:
cb:45:6a:02:1e:4d:79:ae:95:84:00:a7:9f:43:a8:
ad:2c:2c:be:34:2a:47:f1:ae:7b:80:3e:49:9a:23:
a9:66:8d:0e:84:c7:b2:0b:79:66:18:5f:55:89:1c:
f4:31:65:c7:a6:95:1e:f6:3b:97:48:11:5d:b6:82:
b2:03:76:bc:2a:79:21:b6:a9:15:b1:a6:6e:69:04:
7f:13:7e:0f:f9:49:8f:a0:c9:a1:46:a7:a1:1f:16:
7e:35:a0:83:e2:04:b7:89:52:14:8c:cb:fd:e0:7d:
cf:47:fd:ff:95:28:e4:18:d4:c8:31:f2:34:1d:c0:
e5:c2:c3:02:99:a7:36:a6:c0:8d:65:12:e6:86:21:
7f:33:ef:4c:a2:25:fd:5c:9c:6f:ef:01:2c:b4:94:
2c:39:b7:fc:09:b3:2b:23:76:99:85:7a:13:0e:94:
5f:ad:27:85:af:8a:d2:81:4c:d9:8a:3e:88:0f:06:
b9:c5:03:62:5d:00:52:95:4a:d2:8e:36:30:0d:0e:
00:c1:16:9c:04:18:c5:b8:6a:97:e7:c4:5d:4b:7c:
76:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:88:80:7B:98:9A:A1:A3:C3:DA:1B:A8:CB:F1:AF:94:1B:FB:3E:90
X509v3 Authority Key Identifier:
keyid:66:ED:3B:A6:8C:78:BF:F2:C4:72:44:00:AD:E6:34:84:82:FB:43:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zu07pox4v_LEckQAreY0hIL7Q2Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/b79a68-5b02-4097-a2e3-0a43b7a3eb54/1/YIiAe5iaoaPD2huoy_GvlBv7PpA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/b79a68-5b02-4097-a2e3-0a43b7a3eb54/1/Zu07pox4v_LEckQAreY0hIL7Q2Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.225.24.0/24
185.225.26.0/24
192.189.157.0/24
IPv6:
2a14:3f80:8::-2a14:3f80:2f:ffff:ffff:ffff:ffff:ffff
2a14:3f80:60::/45
2a14:3f80:80::/44
2a14:3f80:100::/44
2a14:3f80:3d1::/48
2a14:3f80:800::-2a14:3f80:1bff:ffff:ffff:ffff:ffff:ffff
2a14:3f80:2000::-2a14:3f80:2bff:ffff:ffff:ffff:ffff:ffff
2a14:3f80:3000::-2a14:3f80:47ff:ffff:ffff:ffff:ffff:ffff
2a14:3f80:5000::/38
2a14:3f80:6000::/38
2a14:3f80:7000::/38
2a14:3f80:8800::/38
2a14:3f80:af38::/45
2a14:3f81:5800::/38
2a14:3f82:4000::/38
2a14:3f82:6000::/38
2a14:3f82:7000::/38
2a14:3f82:8800::/38
2a14:3f87:2800::/38
2a14:3f87:4800::/38
2a14:3f87:6800::/38
2a14:3f87:9800::/38
2a14:3f87:c800::/38
2a14:3f87:f000::/38
2a14:3f87:fc00::/38
Signature Algorithm: sha256WithRSAEncryption
97:91:d5:5d:38:12:47:89:25:f4:96:79:ec:15:09:e7:ff:4a:
46:cd:a5:42:d2:6e:ef:22:63:ee:c3:5e:85:02:4c:c6:86:7b:
5f:19:3d:cc:08:ac:ba:47:f1:f5:0b:85:63:dd:27:52:62:0e:
75:03:e2:8a:e1:c6:8e:f1:85:5d:db:37:6d:96:e4:ef:2a:40:
5f:e5:f0:29:85:62:0c:70:d9:e3:b1:31:e3:13:7c:11:02:ce:
08:fc:46:83:00:f0:7d:ca:d6:93:81:dd:9e:29:83:27:02:82:
2a:e5:93:dc:3d:75:4f:b0:fe:a1:b9:4d:ae:49:4f:f3:a2:20:
f2:ba:16:c5:94:3a:74:b3:b2:a4:48:1d:87:e9:f2:b7:30:35:
4e:77:5a:f1:be:58:5f:c6:1e:ad:80:36:c2:7b:df:e5:46:15:
ac:a5:b7:a9:96:8b:e2:21:52:c3:93:cf:20:f3:95:13:a3:f0:
e3:b3:df:1a:6a:87:0f:f4:71:58:61:af:71:bd:a7:94:c0:c0:
23:9a:24:7e:7a:cb:d9:ef:41:ec:8e:42:33:49:73:d5:1b:b8:
98:39:0f:da:a6:77:d5:2e:dc:63:50:bc:26:3d:23:12:fe:00:
2f:e9:85:7b:46:78:3c:51:e1:83:67:c9:c9:54:ec:c0:19:2f:
06:2f:01:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 7 02:20:36 2025 by rpki-client