Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/7PBSbdppllGnj822Hb-Ji3Bk5Cw.roa
File: 7PBSbdppllGnj822Hb-Ji3Bk5Cw.roa (raw, json)
Hash identifier: wbCfbzjZLO/YUQLCCd8RczMUP4g/74U6WidkI3DV5Ic=
Subject key identifier: EC:F0:52:6D:DA:69:96:51:A7:8F:CD:B6:1D:BF:89:8B:70:64:E4:2C
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 01970C436DF2D0FD54E6DA1B449CADE09363
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/7PBSbdppllGnj822Hb-Ji3Bk5Cw.roa
Signing time: Mon 26 May 2025 11:03:55 +0000
ROA not before: Mon 26 May 2025 11:03:55 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 834
IP address blocks: 45.90.17.0/24 maxlen: 24
185.126.82.0/24 maxlen: 24
185.199.54.0/24 maxlen: 24
185.206.251.0/24 maxlen: 24
185.209.38.0/24 maxlen: 24
185.209.73.0/24 maxlen: 24
185.209.75.0/24 maxlen: 24
185.210.233.0/24 maxlen: 24
185.214.108.0/24 maxlen: 24
185.218.20.0/24 maxlen: 24
185.218.101.0/24 maxlen: 24
185.220.250.0/23 maxlen: 24
185.222.28.0/24 maxlen: 24
185.222.29.0/24 maxlen: 24
185.223.155.0/24 maxlen: 24
185.225.0.0/23 maxlen: 23
185.225.3.0/24 maxlen: 24
185.226.104.0/24 maxlen: 24
185.227.146.0/23 maxlen: 24
185.227.147.0/24 maxlen: 24
185.228.75.0/24 maxlen: 24
185.232.206.0/24 maxlen: 24
185.246.112.0/24 maxlen: 24
193.8.112.0/23 maxlen: 24
193.8.112.0/24 maxlen: 24
193.58.146.0/23 maxlen: 24
194.5.64.0/24 maxlen: 24
194.76.169.0/24 maxlen: 24
194.76.172.0/24 maxlen: 24
194.124.69.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 31 May 2025 10:48:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:0c:43:6d:f2:d0:fd:54:e6:da:1b:44:9c:ad:e0:93:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: May 26 11:03:55 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ecf0526dda699651a78fcdb61dbf898b7064e42c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:e7:a1:ea:6a:bb:ec:b3:ba:19:c3:cf:fa:04:
1c:ae:08:02:26:3b:01:d6:23:54:0d:fc:25:0f:8f:
9b:1b:7d:2b:ff:94:d5:ff:d9:3b:19:e3:15:3c:3b:
45:5f:6a:1c:2b:0b:f4:93:07:1a:a0:98:53:2e:06:
c9:eb:d3:0c:67:ac:df:df:16:50:33:e8:ee:eb:b6:
06:90:4d:ba:c0:b3:85:4d:e9:8d:43:f0:6c:3b:be:
ec:ec:18:ca:f9:81:6c:8c:cb:5d:7f:c7:a8:79:4f:
57:7e:52:d4:9e:19:6d:a9:df:4c:df:a9:9c:39:29:
75:72:48:89:35:45:a7:94:d3:05:b9:0f:52:a2:d8:
12:09:3c:cc:e2:2b:0e:e5:39:32:71:25:cc:07:ee:
8d:19:f0:00:04:c8:05:00:ae:41:fe:ac:e7:08:b6:
f6:6c:c1:52:c4:84:58:29:aa:d3:0b:2f:3b:99:ee:
7f:30:e0:2f:b1:12:06:53:f6:70:01:3d:60:b0:5f:
f6:43:41:67:2a:1f:ea:9b:34:1f:23:b1:5e:e2:a5:
01:f9:43:63:2c:63:f0:ff:e0:39:32:74:d6:e9:98:
75:f8:f9:f7:be:79:f4:c2:69:60:6b:d6:6f:d8:55:
b8:be:3b:67:25:e0:c1:d7:42:1f:f6:85:bb:bc:b4:
6f:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:F0:52:6D:DA:69:96:51:A7:8F:CD:B6:1D:BF:89:8B:70:64:E4:2C
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/7PBSbdppllGnj822Hb-Ji3Bk5Cw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.90.17.0/24
185.126.82.0/24
185.199.54.0/24
185.206.251.0/24
185.209.38.0/24
185.209.73.0/24
185.209.75.0/24
185.210.233.0/24
185.214.108.0/24
185.218.20.0/24
185.218.101.0/24
185.220.250.0/23
185.222.28.0/23
185.223.155.0/24
185.225.0.0/23
185.225.3.0/24
185.226.104.0/24
185.227.146.0/23
185.228.75.0/24
185.232.206.0/24
185.246.112.0/24
193.8.112.0/23
193.58.146.0/23
194.5.64.0/24
194.76.169.0/24
194.76.172.0/24
194.124.69.0/24
Signature Algorithm: sha256WithRSAEncryption
26:8a:99:18:c8:fa:31:a5:be:2e:bf:e8:a6:f7:4d:dd:2d:8b:
47:66:4f:47:84:4b:83:79:56:fc:f5:79:4a:89:43:6d:53:d3:
c1:f1:9a:9a:63:54:f1:ae:57:96:bb:ca:02:4c:ad:f0:3d:c1:
50:b8:73:65:f0:4e:83:88:a0:1a:ec:d8:ab:db:8e:07:97:4e:
f6:bd:27:dc:ca:3e:c9:2a:2a:f1:83:e9:3e:cd:52:b1:85:72:
49:6a:cd:b2:0e:4c:ff:e3:45:76:b3:73:2a:28:95:39:a6:27:
85:86:24:9d:7b:84:83:22:33:07:be:b6:7b:08:00:f2:3a:56:
7b:9e:3f:d4:ec:6d:5c:55:d8:0c:d5:60:e4:84:05:49:3c:ca:
31:ed:47:ae:ad:82:b8:d6:5f:e5:60:7a:9d:48:13:eb:5f:ba:
df:a3:2b:d2:e6:e5:fe:13:52:7d:89:73:c4:8f:79:28:44:53:
68:61:a7:3b:a8:e8:1c:2f:80:a8:a7:25:ac:f9:1d:bf:dc:52:
a0:c6:c0:db:9e:35:d2:7b:b3:7c:61:a4:a9:41:dc:42:71:bd:
57:ba:2d:dc:8a:8d:a7:1d:e9:c1:c6:f6:3a:0a:31:ab:02:2c:
0c:cd:e8:8c:27:60:14:bd:07:da:96:ee:04:49:85:9f:82:e6:
39:72:58:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 11:19:40 2025 by rpki-client