Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/5dcfc9-57da-407f-a6b2-ac4a4061746d/1/fQXTLtzmYqrowtw4uyXG0RDolZ4.roa
File: fQXTLtzmYqrowtw4uyXG0RDolZ4.roa (raw, json)
Hash identifier: 3rQs/igL1uJKZNwaJPR+Is/HOV11zOralWRGV3CGUgU=
Subject key identifier: 7D:05:D3:2E:DC:E6:62:AA:E8:C2:DC:38:BB:25:C6:D1:10:E8:95:9E
Certificate issuer: /CN=bbffd123cb93e24e025f952842108402958d4a4c
Certificate serial: 01971B984BD83E7890FFA66A89503E83AFBA
Authority key identifier: BB:FF:D1:23:CB:93:E2:4E:02:5F:95:28:42:10:84:02:95:8D:4A:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u__RI8uT4k4CX5UoQhCEApWNSkw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/5dcfc9-57da-407f-a6b2-ac4a4061746d/1/fQXTLtzmYqrowtw4uyXG0RDolZ4.roa
Signing time: Thu 29 May 2025 10:30:55 +0000
ROA not before: Thu 29 May 2025 10:30:55 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 15830
IP address blocks: 86.109.2.0/23 maxlen: 23
93.187.218.0/23 maxlen: 23
145.40.74.0/23 maxlen: 23
145.40.101.0/24 maxlen: 24
145.40.120.0/22 maxlen: 22
147.28.138.0/23 maxlen: 23
147.28.164.0/23 maxlen: 23
147.28.166.0/23 maxlen: 23
147.28.176.0/23 maxlen: 23
147.28.189.0/24 maxlen: 24
147.28.210.0/23 maxlen: 23
147.28.214.0/23 maxlen: 23
147.28.222.0/23 maxlen: 23
147.28.241.0/24 maxlen: 24
147.75.40.0/23 maxlen: 23
147.75.59.0/24 maxlen: 24
147.75.206.0/24 maxlen: 24
147.75.207.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 03 Jun 2025 15:48:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:1b:98:4b:d8:3e:78:90:ff:a6:6a:89:50:3e:83:af:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bbffd123cb93e24e025f952842108402958d4a4c
Validity
Not Before: May 29 10:30:55 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7d05d32edce662aae8c2dc38bb25c6d110e8959e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:47:c1:f3:84:de:c6:49:71:b5:94:dc:e4:55:
5a:45:98:28:8f:31:e1:90:fd:8d:4c:53:f7:96:62:
8e:da:07:d6:b8:90:f8:56:f6:4d:51:09:47:8c:72:
c7:56:8c:98:3a:de:de:16:71:db:26:fe:74:f9:00:
24:94:71:b4:46:25:23:52:17:61:0e:6e:33:25:17:
3c:59:96:9f:bc:bd:17:13:e4:40:09:d3:29:66:63:
46:be:e9:a8:ad:84:44:e2:d5:2a:82:a9:9c:22:5e:
60:7e:e5:69:05:c9:b6:06:4e:c1:3e:e7:9e:88:60:
ee:a9:6a:ce:81:21:d8:41:b7:92:aa:ad:b2:24:a1:
31:bf:e3:25:8c:f6:6b:1c:08:db:c5:6a:c0:61:71:
01:e9:89:eb:88:fa:f6:a8:71:b0:a5:4b:85:0c:f9:
6c:d7:79:a2:b4:11:77:40:aa:94:ff:4c:53:52:4f:
2f:5c:e9:89:e8:78:ac:71:9a:fb:cb:53:86:f4:4d:
69:23:de:89:d0:81:df:5b:97:fb:a6:af:60:85:3d:
75:be:9c:28:a3:2e:77:e0:02:26:27:6f:ae:f8:d9:
44:f8:94:94:e4:6d:d9:18:1a:14:14:d8:a6:d7:88:
0d:11:92:f2:c1:4e:59:d9:66:f4:ee:91:7d:18:bf:
75:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:05:D3:2E:DC:E6:62:AA:E8:C2:DC:38:BB:25:C6:D1:10:E8:95:9E
X509v3 Authority Key Identifier:
keyid:BB:FF:D1:23:CB:93:E2:4E:02:5F:95:28:42:10:84:02:95:8D:4A:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u__RI8uT4k4CX5UoQhCEApWNSkw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/5dcfc9-57da-407f-a6b2-ac4a4061746d/1/fQXTLtzmYqrowtw4uyXG0RDolZ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/5dcfc9-57da-407f-a6b2-ac4a4061746d/1/u__RI8uT4k4CX5UoQhCEApWNSkw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.109.2.0/23
93.187.218.0/23
145.40.74.0/23
145.40.101.0/24
145.40.120.0/22
147.28.138.0/23
147.28.164.0/22
147.28.176.0/23
147.28.189.0/24
147.28.210.0/23
147.28.214.0/23
147.28.222.0/23
147.28.241.0/24
147.75.40.0/23
147.75.59.0/24
147.75.206.0/23
Signature Algorithm: sha256WithRSAEncryption
30:b1:67:94:c3:f6:88:db:06:92:c6:1d:13:d2:7b:25:b1:94:
d0:b0:bf:67:b1:a7:60:b5:ed:89:ae:ce:be:1e:ba:ee:6d:86:
a6:fd:29:f7:9e:bd:cd:82:0f:de:7b:34:de:70:df:bb:73:a0:
f2:af:5b:fe:3d:d6:22:ae:b8:d6:0a:43:03:cf:c7:58:b8:b1:
7f:1e:71:d1:e1:d0:b8:6e:f7:fc:6f:d8:9e:5b:23:67:02:e6:
b3:89:d9:19:cd:1d:5e:1d:79:10:11:72:07:15:88:62:09:d5:
9c:0e:56:85:87:74:4d:1f:b9:a3:73:d9:03:d7:c6:20:ae:a3:
39:86:13:bb:9b:fb:c9:88:0d:a2:f6:09:40:b7:ff:8d:7c:85:
4b:a6:46:2a:32:5d:fd:58:e9:b0:67:cb:7c:e0:28:c0:3d:a0:
97:4f:bc:ac:0e:1b:49:bc:f7:13:3b:47:fa:ed:02:97:71:56:
5d:2f:61:6e:56:11:9b:42:a2:d5:72:5b:4e:87:09:d0:96:6a:
af:7a:c2:41:1d:17:26:c4:a0:0d:4c:6e:7a:ae:dd:47:30:c0:
07:a4:7a:0d:0f:d5:cb:bb:56:87:4d:2f:e5:5f:4a:a5:85:23:
29:7b:3c:c4:49:55:cc:20:71:68:94:cc:01:b5:58:96:f9:cb:
62:7a:18:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 3 23:53:29 2025 by rpki-client