Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/958841-f6b0-4249-8046-9cf843f05670/1/86VrY80QDov7yzdUdR5GAL79Zag.roa
File: 86VrY80QDov7yzdUdR5GAL79Zag.roa (raw, json)
Hash identifier: PLQaKDxbvcnic0j0Ary/pCNUXRSvFGexOG+Ns6pCshY=
Subject key identifier: F3:A5:6B:63:CD:10:0E:8B:FB:CB:37:54:75:1E:46:00:BE:FD:65:A8
Certificate issuer: /CN=6f0b15193816fd15dcfd047db4eeca672912bb60
Certificate serial: 01942444BC066ACDD5C373B7B3241B9E30A1
Authority key identifier: 6F:0B:15:19:38:16:FD:15:DC:FD:04:7D:B4:EE:CA:67:29:12:BB:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bwsVGTgW_RXc_QR9tO7KZykSu2A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/958841-f6b0-4249-8046-9cf843f05670/1/86VrY80QDov7yzdUdR5GAL79Zag.roa
Signing time: Wed 01 Jan 2025 23:47:51 +0000
ROA not before: Wed 01 Jan 2025 23:47:51 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 15731
IP address blocks: 185.167.232.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 13 Jan 2025 07:28:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:44:bc:06:6a:cd:d5:c3:73:b7:b3:24:1b:9e:30:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f0b15193816fd15dcfd047db4eeca672912bb60
Validity
Not Before: Jan 1 23:47:51 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f3a56b63cd100e8bfbcb3754751e4600befd65a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:2e:06:a6:41:3a:2e:27:c9:f0:ca:ab:70:c1:
d4:37:28:12:6d:2f:e6:a3:b9:67:80:82:ae:41:c5:
ef:de:c0:f9:a3:00:91:1a:71:02:db:ab:d4:51:cd:
f4:40:22:a7:cb:00:f9:11:c9:1e:4d:a6:87:69:5e:
56:26:3b:d2:37:47:23:8d:c4:87:d6:11:cb:72:af:
80:7e:42:0d:93:dc:3f:f9:e9:1d:5c:02:65:b1:f0:
74:6e:50:da:a1:72:b3:22:82:1e:c3:40:ee:7d:4f:
38:a3:47:b3:5b:1e:71:98:3f:28:94:72:90:5b:bf:
f2:07:d5:dd:39:1a:6c:86:90:f0:06:e4:4d:45:b4:
6f:6e:55:a9:cd:43:e7:2e:c1:e4:a6:b0:26:b6:0a:
78:aa:d5:79:bb:b2:7d:18:64:a0:53:78:dc:5d:b4:
92:6d:b9:98:7d:08:d5:48:cb:d1:7e:ab:49:d7:4d:
fa:b6:dc:57:e7:a9:a9:f6:96:2e:03:fa:54:33:7a:
fd:b3:46:a1:b8:a7:3a:7c:ec:0e:66:24:db:d9:66:
4f:b2:c0:48:1c:9b:37:cc:ef:16:af:db:ed:70:bc:
b7:aa:32:9b:6c:34:ab:a9:21:26:08:50:91:3b:5a:
eb:72:53:fd:22:8b:fd:fe:9b:59:59:69:31:06:7c:
09:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:A5:6B:63:CD:10:0E:8B:FB:CB:37:54:75:1E:46:00:BE:FD:65:A8
X509v3 Authority Key Identifier:
keyid:6F:0B:15:19:38:16:FD:15:DC:FD:04:7D:B4:EE:CA:67:29:12:BB:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bwsVGTgW_RXc_QR9tO7KZykSu2A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/958841-f6b0-4249-8046-9cf843f05670/1/86VrY80QDov7yzdUdR5GAL79Zag.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/958841-f6b0-4249-8046-9cf843f05670/1/bwsVGTgW_RXc_QR9tO7KZykSu2A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.167.232.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:7c:64:86:fa:33:22:a6:07:32:58:a7:a7:40:7e:44:75:15:
fa:4b:64:68:e0:c2:5c:e7:c4:69:e4:38:33:83:92:09:fa:bc:
99:50:99:98:c5:8b:3b:57:b7:ff:9a:86:7f:c9:fa:99:cf:56:
df:c2:59:20:3c:ed:07:6f:d3:14:0e:fd:bc:98:85:0e:85:0b:
c2:aa:e9:4e:3d:a8:98:77:52:70:35:26:a9:8e:06:72:d9:8e:
13:cc:30:f2:c0:5d:59:44:a8:eb:21:fc:82:b7:0e:ba:3f:02:
3f:3b:f6:98:0d:40:47:d9:36:05:17:e7:c3:ec:f0:ad:fe:75:
0f:da:36:79:e8:c6:93:dd:7e:1c:d2:25:8b:6b:e4:79:f3:8c:
c7:0e:2e:15:ef:e3:46:f6:4a:06:72:55:5c:e1:b5:81:19:85:
a4:03:74:57:8e:5e:b2:79:ab:41:e3:f5:21:b1:b8:e9:64:76:
43:55:a3:15:1e:09:a2:b4:e2:3f:d3:af:62:e0:ef:7a:7c:ea:
cf:43:2f:44:32:69:4f:c3:90:a0:4a:88:28:4b:40:39:62:74:
5e:af:fa:11:98:5f:d5:7d:4a:4a:74:59:48:d9:eb:25:db:0c:
b3:92:8c:f4:4e:0e:59:e4:2c:2a:91:3e:4e:3e:c3:03:18:06:
4c:13:4e:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 15 11:33:22 2025 by rpki-client