Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/b1v6Y_WM7vKyVcihweypF_7_ycI.roa
File: b1v6Y_WM7vKyVcihweypF_7_ycI.roa (raw, json)
Hash identifier: grhnCNUhsdF027n0CqLsMV6QLGPuiV1pzLfcS9hq6vM=
Subject key identifier: 6F:5B:FA:63:F5:8C:EE:F2:B2:55:C8:A1:C1:EC:A9:17:FE:FF:C9:C2
Certificate issuer: /CN=3af09ba33b5ae581b0d29323249314f76aa10511
Certificate serial: 01958FA7713292BFE2B31176A950EF1E6707
Authority key identifier: 3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/b1v6Y_WM7vKyVcihweypF_7_ycI.roa
Signing time: Thu 13 Mar 2025 13:17:50 +0000
ROA not before: Thu 13 Mar 2025 13:17:50 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 2280
IP address blocks: 90.84.11.0/24 maxlen: 24
90.84.14.0/23 maxlen: 23
90.84.14.0/24 maxlen: 24
90.84.15.0/24 maxlen: 24
90.84.16.0/21 maxlen: 24
90.84.39.0/24 maxlen: 24
90.84.40.0/21 maxlen: 24
90.84.154.0/23 maxlen: 23
90.84.154.0/24 maxlen: 24
90.84.155.0/24 maxlen: 24
90.84.168.0/21 maxlen: 24
90.84.176.0/21 maxlen: 24
90.84.184.0/21 maxlen: 24
90.84.184.0/24 maxlen: 24
90.84.192.0/21 maxlen: 24
90.84.240.0/21 maxlen: 24
90.84.251.0/24 maxlen: 24
90.84.252.0/24 maxlen: 24
90.84.253.0/24 maxlen: 24
90.84.254.0/24 maxlen: 24
2a01:c9c0:8000::/48 maxlen: 48
2a01:c9c0:800f::/48 maxlen: 64
Validation: Failed, certificate revoked on Thu 13 Mar 2025 13:20:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8f:a7:71:32:92:bf:e2:b3:11:76:a9:50:ef:1e:67:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3af09ba33b5ae581b0d29323249314f76aa10511
Validity
Not Before: Mar 13 13:17:50 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6f5bfa63f58ceef2b255c8a1c1eca917feffc9c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:8e:16:8e:fa:40:11:f2:96:77:98:b3:5a:60:
ca:66:76:f9:c2:ae:9b:e7:cd:5d:0b:8a:a4:fa:31:
41:a2:cd:0b:52:44:a4:4e:33:7d:8c:69:39:a8:23:
e7:5e:9e:0e:9c:d8:b8:1f:4e:10:14:b6:d4:81:ea:
03:c6:e4:a8:27:ab:6c:b8:9d:08:43:ca:26:d5:f0:
4c:4f:17:bb:a1:3e:aa:6d:ea:8c:a0:60:dd:c3:d9:
1d:c2:e4:00:0c:f5:bd:9d:17:66:80:27:94:ef:10:
11:c4:6e:a4:c0:b3:51:29:05:78:cb:ee:9f:26:d5:
98:92:5f:38:97:ef:d7:d3:e2:f6:c1:f7:84:e0:31:
0f:40:2b:c5:88:5d:bf:5a:6b:15:ea:81:45:91:78:
b3:2a:e1:cb:b8:7a:e0:48:22:05:aa:c3:10:3b:c0:
ac:cf:8c:25:b3:0b:c4:ad:e8:97:45:b5:c7:86:81:
ba:04:9f:78:ad:42:53:5d:91:a9:7f:5f:36:45:0a:
36:84:d6:93:52:cf:2d:d8:e5:ee:df:e6:07:eb:e2:
e0:29:f0:04:5f:09:fd:c4:0b:89:25:74:74:f4:9d:
03:30:fc:cb:a8:6c:06:6f:4b:39:eb:fb:52:dc:4a:
22:ff:5f:d8:9d:e6:91:4f:e6:c8:78:0f:c4:a5:3f:
af:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:5B:FA:63:F5:8C:EE:F2:B2:55:C8:A1:C1:EC:A9:17:FE:FF:C9:C2
X509v3 Authority Key Identifier:
keyid:3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/b1v6Y_WM7vKyVcihweypF_7_ycI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/OvCbozta5YGw0pMjJJMU92qhBRE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
90.84.11.0/24
90.84.14.0-90.84.23.255
90.84.39.0-90.84.47.255
90.84.154.0/23
90.84.168.0-90.84.199.255
90.84.240.0/21
90.84.251.0-90.84.254.255
IPv6:
2a01:c9c0:8000::/48
2a01:c9c0:800f::/48
Signature Algorithm: sha256WithRSAEncryption
71:43:03:7d:db:10:e3:25:72:fa:85:f4:f6:a6:f8:dc:0d:3e:
96:d3:b0:4b:24:68:d0:dc:77:c6:f7:b9:d1:01:69:b9:90:8d:
0e:85:f2:46:04:ea:2a:22:43:7b:71:8a:30:22:fa:02:a4:33:
a9:5d:1d:dc:17:0f:85:a7:dd:99:08:06:e5:4e:7c:63:12:fe:
8a:e5:69:88:e6:cc:7b:2c:fb:56:f7:a9:9b:ed:1c:a6:e4:77:
eb:50:a2:11:a3:67:7a:f8:aa:a2:b8:08:89:df:69:da:8d:13:
f0:a9:32:b6:8b:5f:96:6e:3a:7c:92:b0:dc:b2:86:03:ae:5a:
ee:62:8f:1f:1f:c0:8c:26:40:84:5f:3a:76:f4:42:a4:91:45:
5a:08:68:a3:a9:f5:98:4b:b4:4e:7c:9b:31:bc:1f:bb:b3:e2:
e6:44:7d:58:1c:5a:c7:36:28:d2:68:b8:6b:bd:88:a3:fe:3f:
09:cc:6a:e8:b0:5a:20:d7:e3:f3:e7:5b:0e:c0:e7:b8:30:ff:
27:90:51:b4:40:d4:37:6a:ab:ec:66:8c:73:0c:40:be:a0:fa:
fa:09:e2:03:2d:7f:14:9e:3a:14:25:6e:29:01:b0:1f:fe:ca:
96:ba:8d:47:3c:f8:a6:04:d7:18:3b:23:23:80:fe:45:c5:59:
43:29:e2:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 6 19:40:51 2025 by rpki-client