Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/hOOgiCxfG39Z-0zvVlf1BAkW8Rg.roa
File: hOOgiCxfG39Z-0zvVlf1BAkW8Rg.roa (raw, json)
Hash identifier: XLoRLxbmR/9mQNKRATWIL1Fm328uJqcfQR23kBrqbAA=
Subject key identifier: 84:E3:A0:88:2C:5F:1B:7F:59:FB:4C:EF:56:57:F5:04:09:16:F1:18
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 01956B09D1A9F103A432A9C83F7471E40C34
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/hOOgiCxfG39Z-0zvVlf1BAkW8Rg.roa
Signing time: Thu 06 Mar 2025 10:39:20 +0000
ROA not before: Thu 06 Mar 2025 10:39:20 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 834
IP address blocks: 185.126.82.0/24 maxlen: 24
185.209.75.0/24 maxlen: 24
185.214.108.0/24 maxlen: 24
185.218.20.0/24 maxlen: 24
185.220.250.0/23 maxlen: 24
185.222.28.0/24 maxlen: 24
185.223.78.0/24 maxlen: 24
185.223.80.0/24 maxlen: 24
185.225.0.0/23 maxlen: 23
185.227.146.0/23 maxlen: 24
185.227.147.0/24 maxlen: 24
185.228.75.0/24 maxlen: 24
193.8.112.0/23 maxlen: 24
193.58.146.0/23 maxlen: 24
194.124.69.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Mar 2025 11:06:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:6b:09:d1:a9:f1:03:a4:32:a9:c8:3f:74:71:e4:0c:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Mar 6 10:39:20 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=84e3a0882c5f1b7f59fb4cef5657f5040916f118
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:b0:1c:9f:79:7f:f4:59:71:90:2c:35:8c:f9:
02:e4:6e:24:10:21:3c:dc:65:54:3a:01:e1:84:da:
03:b3:5a:ef:af:7c:c1:1c:c6:86:8a:95:3b:af:c4:
47:97:cf:3b:4e:bc:de:eb:15:07:b4:4b:46:96:20:
d3:29:e7:2b:3e:d2:43:aa:e4:d4:56:86:b0:3f:0d:
62:dc:f9:db:0c:02:c1:73:e3:cc:15:97:62:c5:50:
d4:a9:e9:08:38:32:2b:51:61:56:41:51:ab:c1:dd:
9c:83:b3:8c:9f:d1:01:79:90:94:14:e5:f6:18:19:
4c:8c:27:64:fe:31:a8:0e:c5:6e:8c:bb:47:aa:23:
38:5d:ac:77:a1:cc:31:ed:be:99:d4:1b:6d:4b:73:
37:f3:1a:3e:ef:08:2a:fb:07:bb:7a:0e:c7:11:32:
3f:15:6c:8b:91:9c:41:b1:81:40:4b:a6:9d:bf:ad:
6c:e2:9a:4e:56:61:de:6b:0c:50:31:58:a7:f5:7d:
59:e5:4e:91:40:3c:0e:77:57:a7:22:ae:42:c8:88:
ba:cd:1c:9c:1a:c2:55:fe:c1:a9:de:90:cf:55:87:
23:d5:e9:fc:d2:62:3a:ff:8a:04:06:c2:02:0a:50:
4c:a9:97:cb:5d:bb:fc:2a:52:ec:01:9a:58:8b:bf:
13:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:E3:A0:88:2C:5F:1B:7F:59:FB:4C:EF:56:57:F5:04:09:16:F1:18
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/hOOgiCxfG39Z-0zvVlf1BAkW8Rg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.126.82.0/24
185.209.75.0/24
185.214.108.0/24
185.218.20.0/24
185.220.250.0/23
185.222.28.0/24
185.223.78.0/24
185.223.80.0/24
185.225.0.0/23
185.227.146.0/23
185.228.75.0/24
193.8.112.0/23
193.58.146.0/23
194.124.69.0/24
Signature Algorithm: sha256WithRSAEncryption
02:79:85:58:8e:51:d1:68:74:3e:ee:ba:0f:d8:11:ed:1c:01:
86:1b:2e:31:76:f6:14:1a:e6:a1:a2:cc:98:42:72:1b:a4:ae:
d5:ae:5f:6f:ae:a6:5c:4c:f0:06:1f:b0:3d:f7:07:31:84:c8:
70:ee:d2:a0:4a:3b:41:0f:45:39:af:3d:bd:d7:1a:67:a6:52:
7d:03:81:31:6e:d1:25:e6:db:f1:97:16:7d:1a:0a:60:42:03:
de:5d:4e:23:89:c7:ae:29:88:eb:be:55:c1:11:4d:c4:2b:e7:
1c:8c:56:27:aa:4c:36:ee:96:bc:70:55:09:b3:22:38:05:e8:
42:4e:d4:41:20:bb:c1:24:0c:20:fb:68:92:8d:2f:ab:7c:2b:
61:b1:6b:30:d5:39:91:4a:db:7e:4f:26:9c:0e:4f:ac:fc:2f:
fd:b8:f4:0a:83:97:44:38:da:23:ef:c1:39:be:c5:fd:bd:f2:
0e:ef:e4:5b:a0:55:cc:6b:e2:5b:23:e9:af:b5:bf:00:7e:3a:
5e:1c:56:d8:af:99:44:24:d6:ab:13:67:8d:b0:33:1c:62:0a:
86:c6:f3:39:26:db:86:65:89:5c:a5:7b:9f:76:3c:d1:f7:1b:
b4:36:8c:2c:0c:f3:87:c4:30:2a:87:d6:30:87:0e:7f:a4:b6:
2f:29:9c:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 11:22:31 2025 by rpki-client