Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/f6ada1-7e8a-4b3e-b7e8-f8589f682691/1/BZbkBrQ2itfUv04KzC7nJdOKucg.roa
File: BZbkBrQ2itfUv04KzC7nJdOKucg.roa (raw, json)
Hash identifier: 3eZK931mRED44v2Jnnk/F7FOksighIelnZf3WHZPEnM=
Subject key identifier: 05:96:E4:06:B4:36:8A:D7:D4:BF:4E:0A:CC:2E:E7:25:D3:8A:B9:C8
Certificate issuer: /CN=ccd76159bfd9e337523ee930f3df111d6bae7306
Certificate serial: 019371D03272BA9E6EBCC0F3222A7941894E
Authority key identifier: CC:D7:61:59:BF:D9:E3:37:52:3E:E9:30:F3:DF:11:1D:6B:AE:73:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zNdhWb_Z4zdSPukw898RHWuucwY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/f6ada1-7e8a-4b3e-b7e8-f8589f682691/1/BZbkBrQ2itfUv04KzC7nJdOKucg.roa
Signing time: Thu 28 Nov 2024 08:08:09 +0000
ROA not before: Thu 28 Nov 2024 08:08:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 209641
IP address blocks: 2a06:d640::/32 maxlen: 32
2a06:d646::/32 maxlen: 32
2a09:e302::/32 maxlen: 32
2a09:e306::/32 maxlen: 32
2a09:ef01::/32 maxlen: 32
2a09:ef02::/32 maxlen: 32
2a09:ef05::/32 maxlen: 32
2a09:ef07::/32 maxlen: 32
2a0a:b385::/32 maxlen: 32
2a0b:9001::/32 maxlen: 32
2a0b:9005::/32 maxlen: 32
2a0d:3c44::/32 maxlen: 32
2a0d:95c1::/32 maxlen: 32
2a0d:95c5::/32 maxlen: 32
2a0d:afc0::/32 maxlen: 32
2a0d:afc6::/32 maxlen: 32
2a0d:c105::/32 maxlen: 32
2a0f:3102::/32 maxlen: 32
2a0f:3105::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 10 Dec 2024 16:53:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:71:d0:32:72:ba:9e:6e:bc:c0:f3:22:2a:79:41:89:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ccd76159bfd9e337523ee930f3df111d6bae7306
Validity
Not Before: Nov 28 08:08:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0596e406b4368ad7d4bf4e0acc2ee725d38ab9c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:45:d4:16:6b:a1:f8:ef:8b:2b:2c:ce:78:2a:
80:88:55:3b:d7:c4:f1:e1:fc:6b:56:96:6c:ce:05:
4d:a9:6a:30:fd:9a:72:45:71:67:06:a5:95:20:4d:
b5:b5:b6:36:b6:5f:31:de:63:c5:81:67:9e:8a:23:
c7:7b:39:3e:50:67:f7:bc:96:f7:b7:a0:35:22:1f:
56:3a:d4:6f:c4:fd:66:84:db:ff:12:76:d3:30:5c:
aa:be:c0:1b:66:33:01:71:bd:20:db:65:d1:d8:83:
99:5a:18:1a:e8:55:c4:c9:1f:71:01:7a:b2:13:6d:
32:f2:34:5b:38:19:08:cd:e5:db:9c:ed:e1:18:66:
c0:84:2d:a3:f8:82:46:90:04:96:29:d0:a3:90:a7:
c6:4c:00:18:2b:84:74:4d:76:51:cf:34:7a:95:97:
5b:4b:2d:73:0c:d1:07:d8:49:12:4a:5c:5b:11:18:
fa:bf:24:4a:65:ba:9c:82:ac:16:7d:70:49:b4:e8:
01:45:60:19:30:23:65:63:07:5d:73:ac:c6:da:67:
c6:84:53:68:34:ae:04:a6:d4:61:a0:bb:f4:2c:35:
6d:06:2b:bf:70:e5:ee:47:78:86:cf:eb:57:f4:29:
7f:1e:dc:a9:73:fd:b6:63:49:b5:f4:2f:f1:73:97:
84:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:96:E4:06:B4:36:8A:D7:D4:BF:4E:0A:CC:2E:E7:25:D3:8A:B9:C8
X509v3 Authority Key Identifier:
keyid:CC:D7:61:59:BF:D9:E3:37:52:3E:E9:30:F3:DF:11:1D:6B:AE:73:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zNdhWb_Z4zdSPukw898RHWuucwY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/f6ada1-7e8a-4b3e-b7e8-f8589f682691/1/BZbkBrQ2itfUv04KzC7nJdOKucg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/f6ada1-7e8a-4b3e-b7e8-f8589f682691/1/zNdhWb_Z4zdSPukw898RHWuucwY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:d640::/32
2a06:d646::/32
2a09:e302::/32
2a09:e306::/32
2a09:ef01::-2a09:ef02:ffff:ffff:ffff:ffff:ffff:ffff
2a09:ef05::/32
2a09:ef07::/32
2a0a:b385::/32
2a0b:9001::/32
2a0b:9005::/32
2a0d:3c44::/32
2a0d:95c1::/32
2a0d:95c5::/32
2a0d:afc0::/32
2a0d:afc6::/32
2a0d:c105::/32
2a0f:3102::/32
2a0f:3105::/32
Signature Algorithm: sha256WithRSAEncryption
1a:9e:aa:83:62:fc:8e:08:65:c9:66:c5:ef:9a:ca:ce:66:a9:
ad:a9:73:04:68:0e:0b:bb:b0:83:c1:35:62:33:07:57:1f:4c:
bb:32:0f:be:5d:d3:72:a6:14:e4:17:a3:d5:4f:01:f1:bd:ab:
1a:e4:04:11:71:24:60:f3:60:39:60:79:6f:53:75:19:68:ed:
b5:6a:c9:78:f9:08:11:a3:df:9f:2f:19:0c:ee:7a:40:73:11:
29:c2:15:24:73:14:42:31:49:03:4a:0d:89:cc:33:20:66:37:
2f:a6:e7:b5:b7:19:d3:1a:7f:f4:44:7e:11:3e:e1:16:96:80:
52:51:4e:d7:46:87:65:8f:6d:d5:d1:b6:44:0e:53:65:69:47:
17:5a:98:3d:f4:97:1b:6c:57:81:08:92:04:08:00:af:97:55:
eb:59:ba:71:b3:e4:0b:12:7c:9e:62:29:f6:16:11:67:ec:1d:
47:b1:ca:ed:97:1d:18:9c:3f:68:98:38:9c:80:37:6d:2a:08:
c3:6d:4f:e6:d5:6f:6a:39:fd:59:02:e8:9e:26:c0:e4:59:e7:
d9:ea:51:de:a5:f7:3b:12:f1:4e:5d:b6:9d:bc:a4:5a:4d:28:
7d:52:45:56:01:67:01:e4:7c:53:96:1c:83:37:9d:99:3e:0c:
ff:51:05:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 02:09:13 2025 by rpki-client