Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/b79a68-5b02-4097-a2e3-0a43b7a3eb54/1/fZW6i1cBGINPnmZg9Lt1ND5kbpQ.roa
File: fZW6i1cBGINPnmZg9Lt1ND5kbpQ.roa (raw, json)
Hash identifier: imsHcOAbBHr5prXYx+OQVD+uOfdnr9s6mx4YDxqA12U=
Subject key identifier: 7D:95:BA:8B:57:01:18:83:4F:9E:66:60:F4:BB:75:34:3E:64:6E:94
Certificate issuer: /CN=66ed3ba68c78bff2c4724400ade6348482fb4364
Certificate serial: 01943DA22B00D57B348FBCEE47D250071239
Authority key identifier: 66:ED:3B:A6:8C:78:BF:F2:C4:72:44:00:AD:E6:34:84:82:FB:43:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zu07pox4v_LEckQAreY0hIL7Q2Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/b79a68-5b02-4097-a2e3-0a43b7a3eb54/1/fZW6i1cBGINPnmZg9Lt1ND5kbpQ.roa
Signing time: Mon 06 Jan 2025 22:00:25 +0000
ROA not before: Mon 06 Jan 2025 22:00:25 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 64289
IP address blocks: 185.225.24.0/24 maxlen: 24
185.225.26.0/24 maxlen: 24
2a14:3f80:8::/45 maxlen: 45
2a14:3f80:10::/45 maxlen: 45
2a14:3f80:18::/45 maxlen: 45
2a14:3f80:20::/45 maxlen: 45
2a14:3f80:28::/45 maxlen: 45
2a14:3f80:60::/45 maxlen: 45
2a14:3f80:80::/45 maxlen: 45
2a14:3f80:88::/45 maxlen: 45
2a14:3f80:100::/45 maxlen: 45
2a14:3f80:108::/45 maxlen: 45
2a14:3f80:3d1::/48 maxlen: 48
2a14:3f80:800::/38 maxlen: 38
2a14:3f80:c00::/38 maxlen: 38
2a14:3f80:1000::/38 maxlen: 38
2a14:3f80:1400::/38 maxlen: 38
2a14:3f80:1800::/38 maxlen: 38
2a14:3f80:2000::/38 maxlen: 38
2a14:3f80:2400::/38 maxlen: 38
2a14:3f80:2800::/38 maxlen: 38
2a14:3f80:3000::/38 maxlen: 38
2a14:3f80:3400::/38 maxlen: 38
2a14:3f80:3800::/38 maxlen: 38
2a14:3f80:3c00::/38 maxlen: 38
2a14:3f80:4000::/38 maxlen: 38
2a14:3f80:4400::/38 maxlen: 38
2a14:3f80:5000::/38 maxlen: 38
2a14:3f80:6000::/38 maxlen: 38
2a14:3f80:7000::/38 maxlen: 38
2a14:3f80:8800::/38 maxlen: 38
2a14:3f80:af38::/45 maxlen: 45
2a14:3f81:5800::/38 maxlen: 38
2a14:3f82:4000::/38 maxlen: 38
2a14:3f82:6000::/38 maxlen: 38
2a14:3f82:7000::/38 maxlen: 38
2a14:3f82:8800::/38 maxlen: 38
2a14:3f87:2800::/38 maxlen: 38
2a14:3f87:4800::/38 maxlen: 38
2a14:3f87:6800::/38 maxlen: 38
2a14:3f87:9800::/38 maxlen: 38
2a14:3f87:c800::/38 maxlen: 38
2a14:3f87:f000::/38 maxlen: 38
2a14:3f87:fc00::/38 maxlen: 38
Validation: Failed, certificate revoked on Mon 13 Jan 2025 07:28:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:3d:a2:2b:00:d5:7b:34:8f:bc:ee:47:d2:50:07:12:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66ed3ba68c78bff2c4724400ade6348482fb4364
Validity
Not Before: Jan 6 22:00:25 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7d95ba8b570118834f9e6660f4bb75343e646e94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:43:e9:bd:72:6c:ce:57:89:63:b0:db:54:5f:
2b:72:b1:cc:e2:3d:63:1a:82:86:a0:54:4e:0b:30:
8a:2a:c0:6c:22:ce:d1:75:a5:f3:37:8a:5c:e0:bc:
5b:b9:6e:9c:25:13:d6:ed:fb:cb:00:a8:e6:10:83:
f5:27:b8:be:17:15:f3:18:ab:d0:65:17:84:75:86:
f8:b7:0d:b4:25:1c:64:d9:59:a6:65:05:b5:4b:2a:
45:08:fe:82:60:e0:9c:76:db:49:c5:51:f7:3d:59:
60:19:ad:fb:30:52:df:45:1d:e2:11:6e:e8:07:f1:
98:39:6f:71:0e:2c:a6:3b:3d:32:5b:05:3e:59:c4:
b8:6e:49:67:91:15:6e:c7:ec:f3:b8:9b:47:4e:39:
51:ae:8c:f3:36:e9:cd:05:26:53:c2:21:2c:76:d1:
95:ac:56:56:45:31:07:e7:87:fa:71:b7:57:68:d4:
41:40:27:1b:3c:54:53:65:29:82:b6:a0:cd:26:f4:
cf:fa:ef:90:b2:28:b7:c6:2e:9a:4d:ec:c9:95:a0:
99:90:6e:7d:6f:94:22:4e:f8:c4:57:22:fd:0d:76:
dd:b4:83:f4:4f:6e:21:92:f8:05:60:5a:b7:17:3e:
8a:d3:2d:3d:89:c5:c5:07:62:f0:d8:ce:eb:ca:cd:
4e:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:95:BA:8B:57:01:18:83:4F:9E:66:60:F4:BB:75:34:3E:64:6E:94
X509v3 Authority Key Identifier:
keyid:66:ED:3B:A6:8C:78:BF:F2:C4:72:44:00:AD:E6:34:84:82:FB:43:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zu07pox4v_LEckQAreY0hIL7Q2Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/b79a68-5b02-4097-a2e3-0a43b7a3eb54/1/fZW6i1cBGINPnmZg9Lt1ND5kbpQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/b79a68-5b02-4097-a2e3-0a43b7a3eb54/1/Zu07pox4v_LEckQAreY0hIL7Q2Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.225.24.0/24
185.225.26.0/24
IPv6:
2a14:3f80:8::-2a14:3f80:2f:ffff:ffff:ffff:ffff:ffff
2a14:3f80:60::/45
2a14:3f80:80::/44
2a14:3f80:100::/44
2a14:3f80:3d1::/48
2a14:3f80:800::-2a14:3f80:1bff:ffff:ffff:ffff:ffff:ffff
2a14:3f80:2000::-2a14:3f80:2bff:ffff:ffff:ffff:ffff:ffff
2a14:3f80:3000::-2a14:3f80:47ff:ffff:ffff:ffff:ffff:ffff
2a14:3f80:5000::/38
2a14:3f80:6000::/38
2a14:3f80:7000::/38
2a14:3f80:8800::/38
2a14:3f80:af38::/45
2a14:3f81:5800::/38
2a14:3f82:4000::/38
2a14:3f82:6000::/38
2a14:3f82:7000::/38
2a14:3f82:8800::/38
2a14:3f87:2800::/38
2a14:3f87:4800::/38
2a14:3f87:6800::/38
2a14:3f87:9800::/38
2a14:3f87:c800::/38
2a14:3f87:f000::/38
2a14:3f87:fc00::/38
Signature Algorithm: sha256WithRSAEncryption
19:ee:29:3c:2e:ca:a9:39:95:e0:5e:d0:45:69:8f:bb:3a:19:
d2:f6:ec:6c:d2:39:89:ba:74:31:2f:3a:39:37:98:9e:04:b0:
bc:1d:33:ca:4d:9c:38:aa:1d:0c:94:e1:1c:39:b7:7c:64:9d:
9c:3b:29:c7:a3:24:66:e1:82:76:eb:42:00:42:46:3f:57:5e:
f8:1b:fe:84:39:77:50:d6:d4:98:88:5f:f6:e7:ba:9f:c9:af:
21:cd:cd:f1:f4:97:a1:17:a6:7a:a2:ee:4d:83:4a:3b:9f:7f:
ec:78:35:db:eb:63:82:9a:2a:d0:40:60:f6:35:1c:bc:8f:e9:
cf:3d:d2:c7:58:36:cd:2d:48:6c:00:93:d1:f4:a8:6e:d4:ef:
91:10:a1:b4:88:40:4e:0e:e9:c3:b8:39:17:e1:cb:17:61:ad:
0e:16:78:d1:3c:dc:ce:d1:c6:40:1e:31:11:a2:14:33:c3:74:
13:39:6c:eb:6f:e1:ca:7d:bb:8a:4f:c2:4b:61:dc:8e:70:87:
5f:93:c4:4f:4e:d5:67:99:91:c5:67:30:e2:f9:d8:89:76:c9:
7c:b0:cd:e4:b0:5d:9d:3d:fc:af:7c:bc:93:e7:cb:60:6c:a4:
16:99:dd:fc:e3:ff:33:34:1d:d9:75:5b:73:4a:27:9e:0a:9c:
f7:40:2f:a4
-----BEGIN CERTIFICATE-----
MIIGCjCCBPKgAwIBAgISAZQ9oisA1Xs0j7zuR9JQBxI5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY2ZWQzYmE2OGM3OGJmZjJjNDcyNDQwMGFkZTYzNDg0ODJm
YjQzNjQwHhcNMjUwMTA2MjIwMDI1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3ZDk1YmE4YjU3MDExODgzNGY5ZTY2NjBmNGJiNzUzNDNlNjQ2ZTk0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoUPpvXJszleJY7DbVF8rcrHM4j1j
GoKGoFROCzCKKsBsIs7RdaXzN4pc4LxbuW6cJRPW7fvLAKjmEIP1J7i+FxXzGKvQ
ZReEdYb4tw20JRxk2VmmZQW1SypFCP6CYOCcdttJxVH3PVlgGa37MFLfRR3iEW7o
B/GYOW9xDiymOz0yWwU+WcS4bklnkRVux+zzuJtHTjlRrozzNunNBSZTwiEsdtGV
rFZWRTEH54f6cbdXaNRBQCcbPFRTZSmCtqDNJvTP+u+Qsii3xi6aTezJlaCZkG59
b5QiTvjEVyL9DXbdtIP0T24hkvgFYFq3Fz6K0y09icXFB2Lw2M7rys1OjQIDAQAB
o4IDFjCCAxIwHQYDVR0OBBYEFH2VuotXARiDT55mYPS7dTQ+ZG6UMB8GA1UdIwQY
MBaAFGbtO6aMeL/yxHJEAK3mNISC+0NkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWnUwN3BveDR2X0xFY2tRQXJlWTBoSUw3UTJRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS9iNzlhNjgtNWIwMi00MDk3LWEyZTMt
MGE0M2I3YTNlYjU0LzEvZlpXNmkxY0JHSU5Qbm1aZzlMdDFORDVrYnBRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNS9iNzlhNjgtNWIwMi00MDk3LWEyZTMtMGE0M2I3YTNlYjU0
LzEvWnUwN3BveDR2X0xFY2tRQXJlWTBoSUw3UTJRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBKgYIKwYBBQUHAQcBAf8EggEZMIIBFTASBAIAATAMAwQA
ueEYAwQAueEaMIH+BAIAAjCB9zASAwcDKhQ/gAAIAwcEKhQ/gAAgAwcDKhQ/gABg
AwcEKhQ/gACAAwcEKhQ/gAEAAwcAKhQ/gAPRMBADBgMqFD+ACAMGAioUP4AYMBAD
BgUqFD+AIAMGAioUP4AoMBADBgQqFD+AMAMGAyoUP4BAAwYCKhQ/gFADBgIqFD+A
YAMGAioUP4BwAwYCKhQ/gIgDBwMqFD+ArzgDBgIqFD+BWAMGAioUP4JAAwYCKhQ/
gmADBgIqFD+CcAMGAioUP4KIAwYCKhQ/hygDBgIqFD+HSAMGAioUP4doAwYCKhQ/
h5gDBgIqFD+HyAMGAioUP4fwAwYCKhQ/h/wwDQYJKoZIhvcNAQELBQADggEBABnu
KTwuyqk5leBe0EVpj7s6GdL27GzSOYm6dDEvOjk3mJ4EsLwdM8pNnDiqHQyU4Rw5
t3xknZw7KcejJGbhgnbrQgBCRj9XXvgb/oQ5d1DW1JiIX/bnup/JryHNzfH0l6EX
pnqi7k2DSjuff+x4NdvrY4KaKtBAYPY1HLyP6c890sdYNs0tSGwAk9H0qG7U75EQ
obSIQE4O6cO4ORfhyxdhrQ4WeNE83M7RxkAeMRGiFDPDdBM5bOtv4cp9u4pPwkth
3I5wh1+TxE9O1WeZkcVnMOL52Il2yXywzeSwXZ09/K98vJPny2BspBaZ3fzj/zM0
Hdl1W3NKJ54KnPdAL6Q=
-----END CERTIFICATE-----
Generated at Wed May 7 11:50:36 2025 by rpki-client