Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/224155-3ca4-4ff7-a964-fc0dd9252c9a/1/5FW_6_epQOwUWZk8ge34B4HU5gM.roa
File: 5FW_6_epQOwUWZk8ge34B4HU5gM.roa (raw, json)
Hash identifier: P2ki9Vf+lC7GiisbkTzSkep2R/XUerwz+IThHbGDbCU=
Subject key identifier: E4:55:BF:EB:F7:A9:40:EC:14:59:99:3C:81:ED:F8:07:81:D4:E6:03
Certificate issuer: /CN=5bea81aa9b2197d9127b442525100ffaa36e0d52
Certificate serial: 0194BC8FC691DED2C6D2CE9ED35B48EDCF3D
Authority key identifier: 5B:EA:81:AA:9B:21:97:D9:12:7B:44:25:25:10:0F:FA:A3:6E:0D:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W-qBqpshl9kSe0QlJRAP-qNuDVI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/224155-3ca4-4ff7-a964-fc0dd9252c9a/1/5FW_6_epQOwUWZk8ge34B4HU5gM.roa
Signing time: Fri 31 Jan 2025 13:32:06 +0000
ROA not before: Fri 31 Jan 2025 13:32:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 213968
IP address blocks: 86.48.71.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 10:37:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:bc:8f:c6:91:de:d2:c6:d2:ce:9e:d3:5b:48:ed:cf:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5bea81aa9b2197d9127b442525100ffaa36e0d52
Validity
Not Before: Jan 31 13:32:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e455bfebf7a940ec1459993c81edf80781d4e603
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:9b:6b:13:b1:18:cc:cb:90:e1:0f:4b:de:bf:
6d:60:0b:84:31:7c:e7:2c:de:b9:03:e2:0c:86:96:
5f:8b:d8:58:1a:e2:24:7f:60:99:fd:4a:f2:b4:c3:
45:64:29:da:37:df:70:a4:ac:d8:c0:5d:5f:c8:8f:
72:c4:4b:23:77:d6:8b:97:44:d5:e5:7d:e9:9e:5c:
61:27:5b:e1:84:70:e2:ac:a6:b7:3e:78:67:db:f4:
6d:ae:89:2b:0f:a1:27:0f:52:4e:07:d9:be:23:4b:
25:87:3c:bb:b6:35:73:75:0d:cb:78:03:4e:bd:be:
13:cb:96:45:ad:47:e0:d6:00:17:e6:43:f0:1f:ce:
29:c5:9d:ee:44:37:08:7c:25:6a:79:b0:76:7c:dc:
cd:bc:54:76:21:91:81:af:b1:71:94:6f:6d:99:6e:
ca:79:bc:7a:cd:84:1a:49:69:ac:db:29:fc:f2:06:
f0:c0:a1:a0:31:6d:26:d4:0d:aa:25:0e:ef:e9:40:
d7:16:96:7c:6b:d0:86:0f:7c:02:3c:54:ee:e1:99:
e5:6f:24:0d:0f:c8:6d:b9:d1:06:3d:d2:36:5e:68:
7b:36:1f:aa:62:6a:99:b7:c6:b5:65:12:69:c0:d1:
67:03:26:a2:20:f2:e9:49:ae:f3:8c:1a:e8:a8:06:
69:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:55:BF:EB:F7:A9:40:EC:14:59:99:3C:81:ED:F8:07:81:D4:E6:03
X509v3 Authority Key Identifier:
keyid:5B:EA:81:AA:9B:21:97:D9:12:7B:44:25:25:10:0F:FA:A3:6E:0D:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W-qBqpshl9kSe0QlJRAP-qNuDVI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/224155-3ca4-4ff7-a964-fc0dd9252c9a/1/5FW_6_epQOwUWZk8ge34B4HU5gM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/224155-3ca4-4ff7-a964-fc0dd9252c9a/1/W-qBqpshl9kSe0QlJRAP-qNuDVI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.48.71.0/24
Signature Algorithm: sha256WithRSAEncryption
77:f5:b7:53:5f:5a:c2:6c:4f:60:38:32:55:55:28:a4:2f:88:
53:bf:28:a2:6a:c0:f7:a0:a0:6a:05:63:ac:dd:d8:7a:3c:54:
5e:62:26:c4:46:2c:66:61:8e:ee:f1:16:10:5c:58:86:e4:37:
e1:c5:6c:81:0d:95:ee:df:59:e5:6e:bc:3d:04:3f:a1:48:6e:
c8:50:10:c3:5a:98:8d:d3:2a:6f:e9:7d:06:3c:2d:fc:71:83:
cf:34:28:b6:f1:94:7b:88:6e:3a:c1:a1:27:7b:5a:7e:2f:b1:
18:8a:cc:d7:7f:aa:f8:22:f9:50:63:6e:ad:1a:5a:04:43:35:
22:a4:22:4a:83:46:c1:2c:2e:9b:07:aa:a1:fa:db:7d:de:a9:
b9:e3:70:f8:1d:99:f6:af:aa:3f:53:49:0f:94:ca:5a:56:26:
54:2d:e4:92:b0:5a:30:81:a8:5a:35:20:ea:08:04:d4:47:7a:
ef:33:fb:46:e0:bc:b5:83:e6:a6:44:36:2f:64:cc:ba:fe:f5:
66:7c:34:93:6e:06:a9:f0:57:f7:b8:a7:e6:2b:ec:9c:f2:d5:
1e:3e:d4:fe:b1:1c:3b:d3:96:52:9c:d8:45:c1:68:57:07:6e:
b6:c2:a0:0e:dc:82:33:65:e6:d4:c8:44:4a:cc:0a:95:16:c4:
18:0a:13:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 03:14:43 2025 by rpki-client