Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/wPVQ5VTBUtuOBP_QcjU7AMnFFJs.roa
File: wPVQ5VTBUtuOBP_QcjU7AMnFFJs.roa (raw, json)
Hash identifier: OjPgyv1dOlqoZ78h4gEsdULP2ezwvp/jqj7Sfhkos30=
Subject key identifier: C0:F5:50:E5:54:C1:52:DB:8E:04:FF:D0:72:35:3B:00:C9:C5:14:9B
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 01951DBD57900C2BD774E7DF6F560948C6DC
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/wPVQ5VTBUtuOBP_QcjU7AMnFFJs.roa
Signing time: Wed 19 Feb 2025 10:25:02 +0000
ROA not before: Wed 19 Feb 2025 10:25:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 834
IP address blocks: 45.131.132.0/23 maxlen: 23
185.126.82.0/24 maxlen: 24
185.194.177.0/24 maxlen: 24
185.209.74.0/24 maxlen: 24
185.209.75.0/24 maxlen: 24
185.214.108.0/24 maxlen: 24
185.218.20.0/24 maxlen: 24
185.220.250.0/23 maxlen: 24
185.222.28.0/24 maxlen: 24
185.223.78.0/24 maxlen: 24
185.223.80.0/24 maxlen: 24
185.225.0.0/23 maxlen: 23
185.227.146.0/23 maxlen: 24
185.227.147.0/24 maxlen: 24
185.228.75.0/24 maxlen: 24
193.8.112.0/23 maxlen: 24
193.58.146.0/23 maxlen: 24
194.76.172.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 19 Feb 2025 11:05:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:1d:bd:57:90:0c:2b:d7:74:e7:df:6f:56:09:48:c6:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Feb 19 10:25:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c0f550e554c152db8e04ffd072353b00c9c5149b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:07:b6:0f:aa:41:53:9a:c6:75:1c:5b:76:af:
8a:58:1d:6e:12:82:18:48:65:d8:0f:7b:a1:35:03:
fa:19:eb:f7:1d:dd:be:d1:9b:3b:06:a7:ac:b0:60:
6b:2b:e6:87:87:bf:a1:a0:86:f8:ee:cf:06:c9:aa:
d4:ac:b8:c8:82:19:3b:ab:9c:c4:b3:9e:0c:0a:0f:
f4:81:f8:77:e5:e5:87:5a:e9:fb:b3:49:cd:5d:bf:
df:ec:ee:6b:2d:7a:f2:61:0a:a3:5f:6b:99:b3:d8:
d7:fd:8b:e6:da:d1:00:66:10:f5:06:c7:ab:c5:48:
35:74:73:42:ae:55:dc:97:40:91:58:67:ec:65:29:
4a:51:6d:82:68:db:c3:4c:ac:87:22:5c:ec:65:ec:
a4:4b:18:ac:9d:8b:fd:c9:12:72:28:2d:b3:e4:84:
1b:73:ce:c1:60:f7:5f:f1:f3:b1:f4:35:9b:8b:d7:
df:58:f1:4a:86:e3:f6:4b:de:f8:82:7d:a1:2b:cd:
ec:cc:7b:d7:e3:ae:4d:bd:81:4f:25:c8:79:19:fb:
82:ef:97:d3:c8:45:71:73:dc:62:68:ad:00:7f:8c:
bc:08:6c:d9:e3:64:41:7a:30:31:38:f3:bb:86:4e:
e1:bb:31:49:fe:dc:53:d1:14:ed:fe:cc:c6:a1:36:
f7:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:F5:50:E5:54:C1:52:DB:8E:04:FF:D0:72:35:3B:00:C9:C5:14:9B
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/wPVQ5VTBUtuOBP_QcjU7AMnFFJs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.131.132.0/23
185.126.82.0/24
185.194.177.0/24
185.209.74.0/23
185.214.108.0/24
185.218.20.0/24
185.220.250.0/23
185.222.28.0/24
185.223.78.0/24
185.223.80.0/24
185.225.0.0/23
185.227.146.0/23
185.228.75.0/24
193.8.112.0/23
193.58.146.0/23
194.76.172.0/24
Signature Algorithm: sha256WithRSAEncryption
69:7a:ce:f7:40:e2:33:e1:24:3f:29:69:48:58:92:e7:a6:0a:
c7:38:43:9e:be:7f:fd:7d:e0:4a:ff:1a:8c:55:dd:04:ae:2c:
6a:05:1e:04:29:3b:29:6e:89:d3:12:7a:9a:61:ef:03:19:0b:
48:18:d7:33:c7:84:bc:5b:5b:3b:24:78:48:b3:33:8d:da:ff:
4b:9d:65:e0:f9:ed:de:0c:18:55:90:95:b7:c6:26:13:c8:f4:
a5:bc:92:e9:cd:f6:e2:10:b4:61:33:15:f2:76:10:d4:c9:36:
8c:44:bc:f9:0d:34:95:58:1d:1e:6e:74:1f:11:2e:b4:90:85:
be:e9:23:2b:78:df:48:cc:39:2c:15:9f:27:e9:08:74:22:32:
db:6d:d7:0c:93:85:65:a0:05:12:8f:b0:2a:ec:68:21:00:dd:
30:75:66:20:b0:ca:02:f8:e3:f0:4d:96:de:4f:08:c4:26:c4:
f9:19:87:0c:a9:eb:55:a5:3b:ff:3f:ce:63:56:0c:7e:13:c0:
d5:9a:09:13:33:e5:04:dd:7f:b9:88:52:2c:6f:76:2f:b1:48:
57:0c:49:0e:0f:8f:0c:93:c3:f7:fe:38:9c:3f:87:3d:86:55:
87:aa:45:d3:46:39:5a:d5:0b:a0:5d:3c:69:db:16:95:c5:b0:
ed:37:7f:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 03:16:50 2025 by rpki-client