Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/bB4PiR-dosidmq_8s5X-5uf7eac.roa
File: bB4PiR-dosidmq_8s5X-5uf7eac.roa (raw, json)
Hash identifier: gQqrktZlTiX8G3H0A8Wv/0YCIUNvSTLPmDjKEaVI20Q=
Subject key identifier: 6C:1E:0F:89:1F:9D:A2:C8:9D:9A:AF:FC:B3:95:FE:E6:E7:FB:79:A7
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 0194FFBECFE30CFAB2150A5714A639388ECA
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/bB4PiR-dosidmq_8s5X-5uf7eac.roa
Signing time: Thu 13 Feb 2025 14:38:02 +0000
ROA not before: Thu 13 Feb 2025 14:38:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 213574
IP address blocks: 5.231.96.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 17 Feb 2025 15:19:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:ff:be:cf:e3:0c:fa:b2:15:0a:57:14:a6:39:38:8e:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Feb 13 14:38:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6c1e0f891f9da2c89d9aaffcb395fee6e7fb79a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:44:10:41:e1:21:9b:67:df:37:d2:64:9d:01:
45:b4:5d:28:a9:76:d6:1b:29:0e:2e:29:04:e7:ea:
28:9b:cd:ec:41:86:ff:ca:3b:a0:c5:21:1b:56:7e:
b6:af:41:b0:dd:1d:6c:8b:fd:0c:20:00:e1:1c:0f:
d5:8d:6d:0e:a3:79:b8:ab:8e:1e:0b:85:05:0b:69:
5d:d3:df:32:e6:db:0a:40:34:e7:4d:87:f0:08:5c:
9f:69:e4:78:07:dc:af:11:db:bb:18:69:9c:fe:d6:
97:f6:81:c9:49:47:dc:fa:17:31:e8:f7:b5:d2:02:
0a:28:b3:16:de:90:6a:af:9c:97:85:b0:50:56:b5:
27:81:20:c5:98:ea:92:fd:e0:70:be:67:20:81:3b:
b7:58:76:57:40:78:83:f2:aa:ef:fd:ff:cf:cf:71:
a7:56:33:c5:c9:eb:27:e6:ff:a8:b4:18:f4:c9:f3:
c9:a1:38:2a:11:c6:86:88:e6:76:df:ab:d2:88:9e:
6a:4e:b6:03:ad:61:76:d1:33:0f:92:d6:20:18:aa:
bc:66:aa:d0:46:05:18:3d:bc:6c:22:d8:f5:bb:81:
f2:5b:5d:da:77:2b:a9:60:0a:2b:c5:07:ad:06:ed:
00:20:60:50:94:b3:71:80:51:f8:f1:c3:e4:27:76:
85:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:1E:0F:89:1F:9D:A2:C8:9D:9A:AF:FC:B3:95:FE:E6:E7:FB:79:A7
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/bB4PiR-dosidmq_8s5X-5uf7eac.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.231.96.0/24
Signature Algorithm: sha256WithRSAEncryption
da:e6:65:bc:a3:0e:fc:0e:de:df:e4:28:e3:81:fe:76:d9:42:
66:51:43:9d:11:74:d0:64:fe:61:98:c8:4f:db:b3:23:9c:e7:
61:79:72:78:0e:99:e9:7f:14:9b:cf:3f:34:40:88:05:98:36:
5b:bf:75:ef:e3:52:33:60:8a:38:a6:74:e3:e6:8f:44:2a:31:
eb:4e:33:2e:8b:34:2d:95:6c:88:bd:1e:69:8c:b1:ed:88:6d:
a0:31:cc:21:b2:b0:3b:5f:e8:d9:c6:1e:22:96:2f:a1:3e:5e:
a3:90:60:5a:4e:e1:6e:58:8e:a5:c3:a7:e3:e3:5a:18:11:b4:
2c:75:56:d6:ca:f7:c1:4e:ee:9f:65:92:bc:ad:4d:88:3d:e0:
ff:68:f7:76:c2:61:8c:bf:01:82:f7:e0:cf:35:8e:b6:af:06:
ac:9e:fa:15:7b:be:44:ee:c9:a8:65:62:d3:6f:fa:4a:e3:3a:
8c:d3:b4:4c:74:09:0d:2a:d6:e7:30:e7:20:06:fd:6f:84:01:
2a:cf:3f:46:c3:ab:86:6e:2c:fb:a5:04:fd:1f:2e:d5:a5:1c:
0e:79:f0:db:f8:ad:00:24:a6:ce:e9:20:98:6a:02:8d:3f:7a:
d3:89:e6:d4:35:5a:9f:04:95:28:13:71:50:77:f1:e4:8c:a9:
90:c1:27:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 02:26:48 2025 by rpki-client