Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/8da5fe-f405-4ce0-b2d1-b3535b4ca50f/1/BfEwVy-Fb2tAKn6QL4RYhrOcQ90.roa
File: BfEwVy-Fb2tAKn6QL4RYhrOcQ90.roa (raw, json)
Hash identifier: sXJrtzb+aHsDPZ/09LsV6JTTXhfHM3fdxVWLFzE6ImI=
Subject key identifier: 05:F1:30:57:2F:85:6F:6B:40:2A:7E:90:2F:84:58:86:B3:9C:43:DD
Certificate issuer: /CN=24147c8b3f37850e9f9074993845c4e069f8efe2
Certificate serial: 01963EF5FBF5F140678A9037F38F23CEB676
Authority key identifier: 24:14:7C:8B:3F:37:85:0E:9F:90:74:99:38:45:C4:E0:69:F8:EF:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JBR8iz83hQ6fkHSZOEXE4Gn47-I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/8da5fe-f405-4ce0-b2d1-b3535b4ca50f/1/BfEwVy-Fb2tAKn6QL4RYhrOcQ90.roa
Signing time: Wed 16 Apr 2025 14:17:10 +0000
ROA not before: Wed 16 Apr 2025 14:17:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 6830
IP address blocks: 31.178.0.0/15 maxlen: 15
31.186.192.0/19 maxlen: 19
31.187.0.0/18 maxlen: 18
31.187.0.0/19 maxlen: 19
31.187.32.0/19 maxlen: 19
77.236.0.0/19 maxlen: 19
81.18.192.0/20 maxlen: 20
81.18.208.0/20 maxlen: 20
83.144.64.0/18 maxlen: 18
84.10.0.0/16 maxlen: 16
85.222.0.0/17 maxlen: 17
87.206.0.0/15 maxlen: 15
89.64.0.0/12 maxlen: 12
92.244.32.0/19 maxlen: 19
94.75.64.0/18 maxlen: 18
94.172.0.0/16 maxlen: 16
95.158.64.0/18 maxlen: 18
178.73.0.0/18 maxlen: 18
188.93.160.0/21 maxlen: 21
193.47.158.0/23 maxlen: 23
194.187.40.0/22 maxlen: 22
195.34.208.0/22 maxlen: 22
212.76.32.0/19 maxlen: 19
213.134.160.0/19 maxlen: 19
2001:4050::/32 maxlen: 32
2a02:a300::/27 maxlen: 27
Validation: Failed, certificate revoked on Tue 22 Apr 2025 14:06:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:3e:f5:fb:f5:f1:40:67:8a:90:37:f3:8f:23:ce:b6:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24147c8b3f37850e9f9074993845c4e069f8efe2
Validity
Not Before: Apr 16 14:17:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=05f130572f856f6b402a7e902f845886b39c43dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:af:97:68:c9:06:f6:f2:31:a3:01:7a:3d:6b:
76:8a:2a:ca:bd:4d:a4:b6:50:f2:86:76:55:6d:11:
c7:fb:2b:b5:38:f8:ea:15:80:6f:c2:90:6d:ea:75:
db:1b:78:b8:63:2b:11:7e:94:56:cc:e4:43:44:0e:
35:84:7a:84:46:42:cc:14:23:94:ca:a7:a4:5f:bd:
58:f1:53:a9:26:1b:1a:65:3a:0a:f5:10:35:6f:ae:
6f:33:67:90:a1:a5:34:01:a0:45:fa:1a:f7:27:a5:
f2:60:39:87:91:83:21:c7:61:44:32:67:50:bb:b0:
c8:48:5c:86:fb:e3:cb:63:d7:9e:61:3b:7a:b9:04:
50:6d:94:b6:88:31:90:21:85:a3:b5:da:0d:ab:2d:
71:b6:c2:5e:32:2b:fa:e6:40:2e:54:49:9c:c3:58:
87:8a:fa:4d:8a:61:7c:73:48:92:f7:49:2a:bc:58:
5d:90:e0:08:0a:98:bf:6b:0f:d1:ec:4d:3f:47:da:
21:a1:0c:69:10:c4:80:79:94:62:fc:57:8b:62:43:
9b:6b:41:57:4e:a2:68:8e:d4:53:ee:5e:19:e4:fe:
47:6b:e9:c8:77:a3:d0:55:90:84:11:41:db:32:01:
92:30:c9:c9:55:42:7a:9c:04:0c:a2:ae:78:29:40:
34:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:F1:30:57:2F:85:6F:6B:40:2A:7E:90:2F:84:58:86:B3:9C:43:DD
X509v3 Authority Key Identifier:
keyid:24:14:7C:8B:3F:37:85:0E:9F:90:74:99:38:45:C4:E0:69:F8:EF:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JBR8iz83hQ6fkHSZOEXE4Gn47-I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/8da5fe-f405-4ce0-b2d1-b3535b4ca50f/1/BfEwVy-Fb2tAKn6QL4RYhrOcQ90.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/8da5fe-f405-4ce0-b2d1-b3535b4ca50f/1/JBR8iz83hQ6fkHSZOEXE4Gn47-I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.178.0.0/15
31.186.192.0/19
31.187.0.0/18
77.236.0.0/19
81.18.192.0/19
83.144.64.0/18
84.10.0.0/16
85.222.0.0/17
87.206.0.0/15
89.64.0.0/12
92.244.32.0/19
94.75.64.0/18
94.172.0.0/16
95.158.64.0/18
178.73.0.0/18
188.93.160.0/21
193.47.158.0/23
194.187.40.0/22
195.34.208.0/22
212.76.32.0/19
213.134.160.0/19
IPv6:
2001:4050::/32
2a02:a300::/27
Signature Algorithm: sha256WithRSAEncryption
81:47:67:61:a0:f0:f1:e8:09:54:bd:a1:ff:5e:c5:b0:86:af:
7b:f1:a1:50:c4:4e:df:73:2b:7c:a3:02:60:b4:b7:11:4d:b1:
22:7d:e3:d6:c3:45:68:1b:63:df:63:8e:93:d9:c5:33:7d:ca:
c8:87:f9:ae:12:90:18:f0:1b:51:77:4f:81:1c:22:f6:4d:82:
cd:90:7c:32:b2:4b:ad:18:b7:ad:af:b7:ba:7b:b4:09:cf:17:
4d:ff:c1:cb:f6:05:f3:ca:13:d2:fd:b2:83:09:3d:2c:23:17:
63:0d:68:22:49:15:6d:fa:5b:44:b8:ac:02:27:59:53:c2:cf:
5d:59:73:78:28:85:c0:a3:ee:f6:4d:81:71:10:3e:e3:ef:88:
2a:98:04:b9:70:ce:7d:96:5f:66:40:25:93:d9:8f:e5:e7:5a:
0c:17:40:a3:38:0b:d0:a5:e0:cb:d6:e8:03:a4:1a:a5:26:61:
2e:29:d7:62:c8:b8:b3:42:29:a0:f0:f6:6c:c1:32:ae:f6:cd:
a2:04:3a:98:ef:a0:40:c3:1d:16:1f:13:e8:02:cd:dc:94:fa:
76:a1:ac:04:40:9a:81:76:e9:23:7c:33:02:2c:14:ba:32:70:
5c:42:23:01:06:5d:82:59:ed:3f:79:12:b1:c6:33:b8:b5:63:
23:71:43:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 13:03:46 2025 by rpki-client