Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/fbylgqq_9yPiRAEenD9tjp7lIvw.roa
File: fbylgqq_9yPiRAEenD9tjp7lIvw.roa (raw, json)
Hash identifier: XhFiJP6Jtd+erT2aHVuagwqZDf62qH35mHkijikV77A=
Subject key identifier: 7D:BC:A5:82:AA:BF:F7:23:E2:44:01:1E:9C:3F:6D:8E:9E:E5:22:FC
Certificate issuer: /CN=f04a58047f37bbc057944bbf8cad8742879592da
Certificate serial: 01921E489F6AE4D484CED708E57C75E2A369
Authority key identifier: F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/fbylgqq_9yPiRAEenD9tjp7lIvw.roa
Signing time: Mon 23 Sep 2024 09:48:48 +0000
ROA not before: Mon 23 Sep 2024 09:48:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 137409
IP address blocks: 14.102.62.0/24 maxlen: 24
167.160.28.0/24 maxlen: 24
198.55.31.0/24 maxlen: 24
203.188.166.0/24 maxlen: 24
203.188.174.0/24 maxlen: 24
203.188.175.0/24 maxlen: 24
203.188.176.0/24 maxlen: 24
203.188.177.0/24 maxlen: 24
203.188.178.0/24 maxlen: 24
203.188.179.0/24 maxlen: 24
203.188.180.0/24 maxlen: 24
203.188.181.0/24 maxlen: 24
203.188.182.0/24 maxlen: 24
203.188.183.0/24 maxlen: 24
203.188.184.0/24 maxlen: 24
203.188.185.0/24 maxlen: 24
203.188.186.0/24 maxlen: 24
203.188.187.0/24 maxlen: 24
203.188.188.0/24 maxlen: 24
203.188.189.0/24 maxlen: 24
203.188.190.0/24 maxlen: 24
203.188.191.0/24 maxlen: 24
212.32.48.0/24 maxlen: 24
212.32.49.0/24 maxlen: 24
212.32.50.0/24 maxlen: 24
212.32.51.0/24 maxlen: 24
212.56.52.0/24 maxlen: 24
212.56.53.0/24 maxlen: 24
212.56.54.0/24 maxlen: 24
212.56.55.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 23 Sep 2024 11:11:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:1e:48:9f:6a:e4:d4:84:ce:d7:08:e5:7c:75:e2:a3:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f04a58047f37bbc057944bbf8cad8742879592da
Validity
Not Before: Sep 23 09:48:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7dbca582aabff723e244011e9c3f6d8e9ee522fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:f4:dc:12:30:4b:ea:f9:bd:2d:4c:65:b5:bf:
08:69:c6:f3:cc:9b:c8:f9:45:05:0f:b4:54:1b:e4:
ff:62:0b:65:8e:96:ad:a3:23:eb:bf:2d:0b:2e:5c:
0c:62:2b:b9:a2:20:1f:b6:fc:dc:0d:54:51:81:62:
b9:44:6b:6b:aa:7b:9c:e9:23:44:03:98:60:bf:24:
92:a5:88:f8:d8:dd:74:01:06:18:dd:0c:35:a9:ec:
b3:78:d1:fe:ec:5d:de:57:c2:b6:22:bf:c7:6f:16:
e9:a9:46:bc:7f:f9:b2:64:4f:6f:02:a5:f7:5b:d4:
7d:6e:8a:90:06:f6:f4:05:78:0f:de:8e:6f:79:c7:
8f:16:e6:e3:c0:8a:2e:77:33:b8:46:b0:41:ec:69:
1e:e9:40:9c:b2:a3:ae:33:02:18:f4:3b:63:22:0d:
71:da:40:70:97:68:ba:96:1c:46:ae:78:f2:48:db:
8a:31:a5:3a:ae:20:6e:c8:87:10:16:62:35:28:7f:
c5:72:1b:c4:87:56:89:8b:5e:56:21:34:c5:90:98:
08:9e:e2:55:84:83:b2:f5:67:31:90:fe:54:54:13:
1d:47:6d:cf:aa:b2:00:77:2e:b5:92:e1:96:20:2e:
f6:ee:27:ca:f0:cd:0f:85:1d:25:30:63:d0:a1:46:
43:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:BC:A5:82:AA:BF:F7:23:E2:44:01:1E:9C:3F:6D:8E:9E:E5:22:FC
X509v3 Authority Key Identifier:
keyid:F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/fbylgqq_9yPiRAEenD9tjp7lIvw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
14.102.62.0/24
167.160.28.0/24
198.55.31.0/24
203.188.166.0/24
203.188.174.0-203.188.191.255
212.32.48.0/22
212.56.52.0/22
Signature Algorithm: sha256WithRSAEncryption
a1:f2:1e:df:47:04:81:8a:43:e5:e5:3f:31:60:30:ba:93:6a:
29:09:4c:70:8a:d2:3d:76:c4:b6:d0:c3:29:08:93:c3:4a:6b:
37:9c:e7:f3:70:9f:a0:49:e8:34:45:14:5d:2d:64:f3:bc:44:
59:0e:6c:33:b5:3c:86:22:ed:c2:c7:55:19:3d:5f:76:df:5b:
64:72:22:00:be:33:33:b0:71:8b:1b:46:52:ff:5c:07:2a:09:
98:23:9f:71:e6:92:22:4b:c8:a9:83:30:72:67:29:45:2d:6a:
87:c7:1f:05:b9:c4:5e:9d:4f:0c:74:21:9a:f4:b9:00:23:1b:
0d:7d:87:42:2b:e1:94:3c:67:1d:7f:ed:eb:ce:17:6f:cf:fb:
03:3f:bc:4b:36:4d:ce:00:96:cc:1c:a1:0d:dc:cd:69:a3:69:
39:ce:79:92:cd:09:b6:92:a4:15:73:79:3a:1b:bd:d4:cf:1c:
74:2a:21:e1:e2:3f:7a:eb:0a:92:d6:7a:e9:93:93:b4:45:47:
8f:62:c8:b4:d7:e3:61:45:2b:ec:22:61:40:50:b2:85:1e:5c:
75:f9:bf:f0:40:1f:0e:d8:f1:7e:de:1f:72:92:ad:3d:15:67:
8e:c7:fc:2b:fd:4b:a0:9f:a9:6f:2c:2c:6b:3f:50:03:f4:60:
d9:cd:3f:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 13:29:25 2025 by rpki-client