Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/674225-ac77-47a0-acd1-293fca2d51ea/1/rA9zsOZ-VzUQ1Mcci-k5xfSCe5U.roa
File: rA9zsOZ-VzUQ1Mcci-k5xfSCe5U.roa (raw, json)
Hash identifier: psyho6NOnxFp/J/Jb4V7fqg9c+ldWn1AX1ATm7BhiVI=
Subject key identifier: AC:0F:73:B0:E6:7E:57:35:10:D4:C7:1C:8B:E9:39:C5:F4:82:7B:95
Certificate issuer: /CN=59e4d6fab77ac779f49bf6fc8ab81e23ad467576
Certificate serial: 019572C26E827D90959A28DEB289DC547A5E
Authority key identifier: 59:E4:D6:FA:B7:7A:C7:79:F4:9B:F6:FC:8A:B8:1E:23:AD:46:75:76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WeTW-rd6x3n0m_b8irgeI61GdXY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/674225-ac77-47a0-acd1-293fca2d51ea/1/rA9zsOZ-VzUQ1Mcci-k5xfSCe5U.roa
Signing time: Fri 07 Mar 2025 22:38:19 +0000
ROA not before: Fri 07 Mar 2025 22:38:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 9186
IP address blocks: 185.31.156.0/22 maxlen: 22
185.31.156.0/24 maxlen: 24
185.31.157.0/24 maxlen: 24
185.31.158.0/24 maxlen: 24
185.90.56.0/22 maxlen: 22
185.204.111.0/24 maxlen: 24
185.248.35.0/24 maxlen: 24
194.39.124.0/22 maxlen: 22
194.39.125.0/24 maxlen: 24
194.39.126.0/24 maxlen: 24
194.39.127.0/24 maxlen: 24
2a00:bc20::/32 maxlen: 32
2a05:df40::/29 maxlen: 29
2a10:7b40::/29 maxlen: 29
2a10:a4c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Fri 07 Mar 2025 23:17:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:72:c2:6e:82:7d:90:95:9a:28:de:b2:89:dc:54:7a:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=59e4d6fab77ac779f49bf6fc8ab81e23ad467576
Validity
Not Before: Mar 7 22:38:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ac0f73b0e67e573510d4c71c8be939c5f4827b95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:06:fe:80:5c:90:f2:a9:58:df:43:a8:97:89:
be:b7:3d:7a:27:ef:b4:bd:51:84:51:93:18:94:89:
8e:e6:6b:41:f6:60:30:6d:e3:0f:9c:74:d4:3b:50:
f6:fb:66:f0:6a:eb:1b:c4:69:05:53:78:0f:e9:1f:
43:d4:0d:18:35:e5:ce:00:bc:31:cb:60:a6:3e:7c:
9a:59:78:a7:d4:c6:d4:13:00:38:93:e7:3f:5c:c3:
33:f3:e4:f0:57:8b:9d:3f:65:0b:1e:03:07:95:ac:
4a:35:ea:8d:e3:9f:9d:01:cc:7d:93:50:fe:83:dd:
17:66:5f:5e:e5:1d:63:15:a7:83:81:e5:b3:7a:ec:
3b:30:c4:26:f6:8a:27:ec:4d:fb:8e:b4:0c:6b:c8:
0e:c3:ee:b6:f8:e4:7d:62:ad:e8:bf:a0:b8:8d:cd:
fe:ad:fa:68:42:9a:25:1f:f2:a2:7b:37:8b:5e:31:
c1:01:ee:5c:1f:0c:5d:6e:56:e1:00:42:6f:46:54:
68:00:63:b9:84:7e:49:a8:6a:0a:ba:b0:4c:4c:4f:
ab:b1:6d:9b:ac:4b:e8:c5:65:31:c3:94:29:b1:cc:
31:7f:ec:bf:00:cf:db:2a:bc:d5:d5:9c:53:ee:38:
a0:3f:74:de:6c:e8:0b:96:1d:ff:2f:1d:0f:5d:6e:
d5:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:0F:73:B0:E6:7E:57:35:10:D4:C7:1C:8B:E9:39:C5:F4:82:7B:95
X509v3 Authority Key Identifier:
keyid:59:E4:D6:FA:B7:7A:C7:79:F4:9B:F6:FC:8A:B8:1E:23:AD:46:75:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WeTW-rd6x3n0m_b8irgeI61GdXY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/674225-ac77-47a0-acd1-293fca2d51ea/1/rA9zsOZ-VzUQ1Mcci-k5xfSCe5U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/674225-ac77-47a0-acd1-293fca2d51ea/1/WeTW-rd6x3n0m_b8irgeI61GdXY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.31.156.0/22
185.90.56.0/22
185.204.111.0/24
185.248.35.0/24
194.39.124.0/22
IPv6:
2a00:bc20::/32
2a05:df40::/29
2a10:7b40::/29
2a10:a4c0::/29
Signature Algorithm: sha256WithRSAEncryption
7a:77:f6:5c:3d:d1:c0:1a:6f:60:4f:a0:b5:85:21:55:05:bf:
28:74:0b:e0:b6:5a:15:49:77:28:90:36:59:05:78:84:bc:53:
02:8b:96:66:dc:e0:8f:8d:e7:8b:02:54:0a:77:9d:d7:31:b4:
78:54:48:14:05:eb:ca:50:1f:ef:29:a2:23:87:9f:c9:b5:7a:
b2:a1:86:43:9d:f6:46:9f:22:81:28:80:9b:ee:9e:1f:62:85:
c4:f3:f3:ce:20:78:6d:d7:af:56:36:02:de:4c:33:55:0e:8c:
39:e8:d3:9f:16:93:06:1b:13:c2:7b:7f:68:c3:52:e1:34:e7:
12:f6:af:54:57:49:18:42:aa:18:7e:15:01:5a:71:bc:a9:65:
0f:90:80:36:52:5e:6b:5b:cb:f1:05:21:5a:e3:e2:39:d9:78:
ec:41:a1:44:7b:5e:aa:1a:c2:6a:eb:7f:19:2f:72:b7:ba:3f:
1d:f3:0c:39:ef:03:84:4f:dd:0b:ad:bd:37:de:fb:68:ac:dc:
a1:c7:56:a4:34:cf:e8:86:ea:56:5b:3b:f3:eb:c6:2e:e0:ef:
36:01:f6:8b:d4:99:29:97:75:1a:39:09:6b:d0:53:42:7f:ed:
0e:67:6e:f4:c5:83:6e:0b:5e:85:4a:b8:26:d8:db:d6:e5:a3:
98:52:1f:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 09:37:35 2025 by rpki-client