Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/bdCdGy-90JrEAuOWHLipTg3MaUQ.roa
File: bdCdGy-90JrEAuOWHLipTg3MaUQ.roa (raw, json)
Hash identifier: sWy1ZvMWZbYXsoonbP23fo9rjGTK7eRijlb131snuds=
Subject key identifier: 6D:D0:9D:1B:2F:BD:D0:9A:C4:02:E3:96:1C:B8:A9:4E:0D:CC:69:44
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018D1E026D6C58C4DDD58CCAF2B1EDBDE6AA
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/bdCdGy-90JrEAuOWHLipTg3MaUQ.roa
Signing time: Thu 18 Jan 2024 19:18:12 +0000
ROA not before: Thu 18 Jan 2024 19:18:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215828
IP address blocks: 2a0e:b107:27d0::/46 maxlen: 48
2a0e:b107:27d4::/46 maxlen: 48
2a0e:b107:27f8::/46 maxlen: 48
2a0e:b107:27fc::/46 maxlen: 48
2a0e:b107:2800::/46 maxlen: 48
2a0e:b107:2804::/46 maxlen: 48
2a0e:b107:2810::/46 maxlen: 48
2a0e:b107:2814::/46 maxlen: 48
2a0e:b107:2818::/46 maxlen: 48
2a0e:b107:281c::/46 maxlen: 48
2a0e:b107:2820::/46 maxlen: 48
2a0e:b107:2824::/46 maxlen: 48
2a0e:b107:2828::/46 maxlen: 48
2a0e:b107:282c::/46 maxlen: 48
2a0e:b107:2840::/46 maxlen: 48
2a0e:b107:2844::/46 maxlen: 48
2a0e:b107:2858::/46 maxlen: 48
2a0e:b107:285c::/46 maxlen: 48
2a0e:b107:2868::/46 maxlen: 48
2a0e:b107:286c::/46 maxlen: 48
2a0e:b107:2870::/46 maxlen: 48
2a0e:b107:2874::/46 maxlen: 48
2a0e:b107:2878::/46 maxlen: 48
2a0e:b107:287c::/46 maxlen: 48
2a0e:b107:2888::/46 maxlen: 48
2a0e:b107:288c::/46 maxlen: 48
2a0e:b107:2890::/46 maxlen: 48
2a0e:b107:2894::/46 maxlen: 48
2a0e:b107:2898::/46 maxlen: 48
2a0e:b107:289c::/46 maxlen: 48
Validation: Failed, certificate revoked on Thu 18 Jan 2024 19:27:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:1e:02:6d:6c:58:c4:dd:d5:8c:ca:f2:b1:ed:bd:e6:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 18 19:18:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6dd09d1b2fbdd09ac402e3961cb8a94e0dcc6944
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:78:65:c2:0f:c2:52:1c:64:ca:e6:7b:a2:e3:
41:29:aa:d2:e4:52:85:26:8f:10:17:eb:15:0e:b5:
15:86:7e:46:a5:0a:7f:d2:03:4f:75:df:7b:4f:eb:
24:1b:9d:08:6c:f8:e8:fd:42:73:75:b3:c7:d7:c7:
4f:fe:fc:4a:d7:bf:d6:c1:6f:d4:bb:80:2b:8d:b1:
f8:e2:06:6f:3f:c2:e9:b4:f8:1c:ad:92:35:dc:23:
31:aa:f1:4e:49:0b:df:6f:40:a6:48:45:1b:dc:68:
0c:ae:1f:4e:a4:dc:48:e8:0b:fa:d4:db:c4:be:97:
64:e1:db:96:39:8d:89:52:cb:71:3a:af:58:cd:f2:
31:89:36:e9:09:d6:30:a3:80:0f:6d:e0:72:86:a6:
d3:28:60:f1:cb:78:32:f0:f4:d4:cb:70:be:c5:6f:
39:37:41:2e:be:49:9b:88:13:59:69:8f:12:55:fa:
db:e1:9a:0b:d2:8a:a0:46:b1:f5:d5:b8:9d:61:6d:
1b:66:f3:03:a8:52:5d:c1:33:31:a8:ef:7e:1d:e9:
e1:14:c5:ae:d5:02:7e:e4:bd:00:83:c8:b9:f7:39:
9e:76:87:7d:83:9e:29:3e:23:cf:33:82:59:6c:25:
1b:40:e2:24:b8:c5:56:6d:3f:a0:58:98:8f:05:b7:
06:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:D0:9D:1B:2F:BD:D0:9A:C4:02:E3:96:1C:B8:A9:4E:0D:CC:69:44
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/bdCdGy-90JrEAuOWHLipTg3MaUQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:27d0::/45
2a0e:b107:27f8::-2a0e:b107:2807:ffff:ffff:ffff:ffff:ffff
2a0e:b107:2810::-2a0e:b107:282f:ffff:ffff:ffff:ffff:ffff
2a0e:b107:2840::/45
2a0e:b107:2858::/45
2a0e:b107:2868::-2a0e:b107:287f:ffff:ffff:ffff:ffff:ffff
2a0e:b107:2888::-2a0e:b107:289f:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
7b:b2:60:30:40:d7:72:b6:e0:03:40:4d:7e:3d:09:fc:da:ef:
bc:5a:df:9e:37:11:4d:87:7b:72:11:e7:e8:ba:f9:53:9a:f8:
d2:14:f5:de:2c:d8:dd:3c:9c:4b:0b:c0:b9:17:84:2c:05:6c:
73:91:fc:c1:1a:69:6a:7e:0d:d6:c1:24:a9:1a:13:d3:ec:e6:
6c:cf:c0:cb:a0:f1:90:97:ac:8c:09:f7:70:9c:b0:b2:ea:e2:
42:c8:96:06:bd:1d:33:7a:36:9d:ba:ac:4c:83:49:0d:18:7b:
6c:8c:d1:a3:d5:92:36:9b:2f:d7:6f:c3:39:0e:1b:c5:23:05:
3c:72:90:dc:c7:51:b5:e4:fc:28:0e:ef:79:83:0e:20:f5:23:
7a:82:3c:9e:f9:34:7a:a6:8c:d0:9d:75:35:85:05:03:5b:3c:
2a:2c:d4:88:af:63:39:72:68:60:9a:ff:90:3a:8c:25:7e:29:
4b:7f:3c:e9:b3:3e:81:53:fe:32:d9:e7:fc:a2:9a:e7:41:47:
7f:40:28:85:66:bf:ac:34:da:91:bf:8d:6f:d1:51:2b:31:17:
5f:38:77:dd:be:0c:b0:c5:6c:fe:8f:10:1d:38:5b:cd:73:62:
57:c1:49:1f:21:e5:65:1e:b5:9e:b7:34:f8:dc:0a:95:64:0a:
a1:09:37:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 19 21:23:06 2025 by rpki-client