Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/7b2129-cc6c-4710-ba41-b57a36f2afcd/1/B_ZB_RK3_SyOFDI5R85BmV8n1Uw.roa
File: B_ZB_RK3_SyOFDI5R85BmV8n1Uw.roa (raw, json)
Hash identifier: H/FH2QpnGtqzNE1mnVhGzD9ZGeoWEl34/P8b9sbee1E=
Subject key identifier: 07:F6:41:FD:12:B7:FD:2C:8E:14:32:39:47:CE:41:99:5F:27:D5:4C
Certificate issuer: /CN=a87090c275c34c05c306f3b36063893a0d72782a
Certificate serial: 019809B28214925BD80F9525548DB2BE6E7B
Authority key identifier: A8:70:90:C2:75:C3:4C:05:C3:06:F3:B3:60:63:89:3A:0D:72:78:2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qHCQwnXDTAXDBvOzYGOJOg1yeCo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/7b2129-cc6c-4710-ba41-b57a36f2afcd/1/B_ZB_RK3_SyOFDI5R85BmV8n1Uw.roa
Signing time: Mon 14 Jul 2025 16:09:10 +0000
ROA not before: Mon 14 Jul 2025 16:09:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 50113
IP address blocks: 5.180.136.0/24 maxlen: 24
5.180.137.0/24 maxlen: 24
5.252.116.0/24 maxlen: 24
45.89.64.0/24 maxlen: 24
91.217.77.0/24 maxlen: 24
185.104.248.0/24 maxlen: 24
185.174.139.0/24 maxlen: 24
185.180.230.0/24 maxlen: 24
185.188.180.0/24 maxlen: 24
185.189.12.0/22 maxlen: 22
185.189.12.0/24 maxlen: 24
185.189.13.0/24 maxlen: 24
185.189.14.0/24 maxlen: 24
185.189.15.0/24 maxlen: 24
192.162.100.0/24 maxlen: 24
192.162.101.0/24 maxlen: 24
192.162.102.0/24 maxlen: 24
192.162.103.0/24 maxlen: 24
193.0.200.0/24 maxlen: 24
193.0.202.0/24 maxlen: 24
193.0.203.0/24 maxlen: 24
193.168.226.0/24 maxlen: 24
194.63.140.0/24 maxlen: 24
194.63.141.0/24 maxlen: 24
194.63.142.0/24 maxlen: 24
194.63.143.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 15 Jul 2025 12:05:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:09:b2:82:14:92:5b:d8:0f:95:25:54:8d:b2:be:6e:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a87090c275c34c05c306f3b36063893a0d72782a
Validity
Not Before: Jul 14 16:09:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=07f641fd12b7fd2c8e14323947ce41995f27d54c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:94:65:15:01:6e:95:28:4c:fe:55:6b:a8:13:
08:f8:d1:ea:6c:f4:fa:f9:a3:00:88:01:c0:2d:48:
01:02:e2:2c:eb:97:71:51:f3:41:61:d2:5f:97:f7:
f0:c3:c9:c6:bc:f4:dd:f0:cf:dd:7b:0c:80:24:67:
bf:10:1c:79:9e:3a:7a:2d:32:32:e6:62:cb:c9:45:
15:39:2a:18:8c:2c:bd:64:f0:5a:4a:64:22:d1:d4:
0f:90:3b:70:e9:13:cd:50:70:60:30:29:98:cb:37:
75:71:c6:63:fe:66:53:a4:27:1e:99:a3:17:02:bd:
a4:6b:fb:68:a1:20:ce:44:50:42:6d:17:76:39:b3:
18:bf:43:1b:10:76:e5:ca:53:9a:64:45:b0:a2:84:
95:93:76:60:97:6d:26:87:4e:1a:8b:49:76:8e:1e:
c5:0c:e7:04:e7:f4:c1:2d:00:bc:a9:cc:22:18:e5:
b6:fb:9b:ea:8f:30:78:fe:29:ce:a1:d5:59:7f:3d:
a3:2b:5b:af:6a:a4:fd:d2:22:f4:27:fa:75:ab:ba:
f4:01:be:92:e8:d4:a9:8d:e2:dd:e6:f0:86:6e:aa:
66:df:7d:ab:5a:9a:30:7b:2b:1b:94:49:1a:dd:bd:
68:1e:1b:65:cb:33:de:25:39:56:68:76:2e:0c:05:
45:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:F6:41:FD:12:B7:FD:2C:8E:14:32:39:47:CE:41:99:5F:27:D5:4C
X509v3 Authority Key Identifier:
keyid:A8:70:90:C2:75:C3:4C:05:C3:06:F3:B3:60:63:89:3A:0D:72:78:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qHCQwnXDTAXDBvOzYGOJOg1yeCo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/7b2129-cc6c-4710-ba41-b57a36f2afcd/1/B_ZB_RK3_SyOFDI5R85BmV8n1Uw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/7b2129-cc6c-4710-ba41-b57a36f2afcd/1/qHCQwnXDTAXDBvOzYGOJOg1yeCo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.136.0/23
5.252.116.0/24
45.89.64.0/24
91.217.77.0/24
185.104.248.0/24
185.174.139.0/24
185.180.230.0/24
185.188.180.0/24
185.189.12.0/22
192.162.100.0/22
193.0.200.0/24
193.0.202.0/23
193.168.226.0/24
194.63.140.0/22
Signature Algorithm: sha256WithRSAEncryption
a4:37:91:34:88:e9:f7:7c:f4:89:bc:64:b3:2f:1a:80:bb:16:
47:34:af:d4:46:68:55:5b:be:54:e6:aa:e6:37:49:47:bf:6f:
c9:37:5a:76:e6:db:b1:83:eb:8a:8d:b0:f0:78:73:e6:60:78:
22:d5:b0:00:52:b7:f9:26:f9:cf:2f:a9:64:0d:70:c0:9f:8e:
d3:a9:26:af:b0:06:db:7d:4e:d3:61:93:2c:12:6f:ef:11:82:
36:a2:e6:fd:6e:1f:a0:86:47:d6:a7:ed:9b:7c:ff:a7:bd:8e:
06:1a:7d:6a:44:aa:cb:41:17:20:4b:47:7a:91:71:38:55:61:
13:59:c2:08:79:3f:aa:9d:e6:f6:65:83:ac:07:c8:e9:16:26:
92:55:74:4f:fa:86:30:d4:7f:f8:86:68:1a:f9:f7:7c:d9:dc:
8b:eb:17:c0:7d:4a:b4:b1:e0:e5:4c:52:f2:84:c5:b6:19:2b:
6e:77:8d:79:57:8c:42:a1:da:c6:ca:2f:8e:90:78:99:89:f5:
c9:12:a4:c5:3e:3d:8a:ed:ce:60:a2:c4:bc:37:c0:2b:91:4e:
6d:b3:66:6a:96:f0:b6:4f:23:b6:7e:5f:d8:99:b6:0f:6c:8a:
08:55:1f:49:6f:a8:c5:48:96:5d:59:fe:93:48:35:95:71:73:
f1:52:f4:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 20:12:23 2025 by rpki-client