Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/b1a82a-490f-43fb-986e-26170da4a0b1/1/FG7BKM-kFSghty81AqchM81VktA.roa
File: FG7BKM-kFSghty81AqchM81VktA.roa (raw, json)
Hash identifier: XfNuoyw+1oRA4fYu5yZ5IPmNsCeNiVhnKnkm18FHt1w=
Subject key identifier: 14:6E:C1:28:CF:A4:15:28:21:B7:2F:35:02:A7:21:33:CD:55:92:D0
Certificate issuer: /CN=6d69da44ae067fc1a98a5f6f05f12e545d0fc62a
Certificate serial: 0196C96522D35CF2181F3BFEC03DC6AF427C
Authority key identifier: 6D:69:DA:44:AE:06:7F:C1:A9:8A:5F:6F:05:F1:2E:54:5D:0F:C6:2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bWnaRK4Gf8Gpil9vBfEuVF0Pxio.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/b1a82a-490f-43fb-986e-26170da4a0b1/1/FG7BKM-kFSghty81AqchM81VktA.roa
Signing time: Tue 13 May 2025 11:26:10 +0000
ROA not before: Tue 13 May 2025 11:26:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 56582
IP address blocks: 31.169.64.0/24 maxlen: 24
31.169.65.0/24 maxlen: 24
31.169.66.0/24 maxlen: 24
31.169.67.0/24 maxlen: 24
31.169.69.0/24 maxlen: 24
31.169.70.0/24 maxlen: 24
31.169.71.0/24 maxlen: 24
31.169.72.0/24 maxlen: 24
31.169.74.0/24 maxlen: 24
31.169.76.0/24 maxlen: 24
31.169.77.0/24 maxlen: 24
31.169.78.0/24 maxlen: 24
31.169.79.0/24 maxlen: 24
31.169.81.0/24 maxlen: 24
31.169.82.0/24 maxlen: 24
31.169.84.0/24 maxlen: 24
31.169.88.0/24 maxlen: 24
31.169.92.0/24 maxlen: 24
31.169.93.0/24 maxlen: 24
31.169.94.0/24 maxlen: 24
185.33.63.0/24 maxlen: 24
2a00:5740::/29 maxlen: 29
Validation: Failed, certificate revoked on Fri 16 May 2025 08:45:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c9:65:22:d3:5c:f2:18:1f:3b:fe:c0:3d:c6:af:42:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d69da44ae067fc1a98a5f6f05f12e545d0fc62a
Validity
Not Before: May 13 11:26:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=146ec128cfa4152821b72f3502a72133cd5592d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:23:33:24:03:5d:04:ad:2c:39:d7:ca:cd:c2:
08:1c:0b:88:7b:84:f9:f6:23:8f:64:e1:30:7e:6b:
f6:32:d0:ef:6d:55:a7:de:a1:42:46:9f:c3:e1:ed:
ca:09:79:6c:68:f5:e2:d1:6f:07:37:f8:94:cd:f8:
70:df:d1:5f:77:b4:21:ce:99:3e:58:7c:3a:9e:66:
9b:4d:ff:47:ea:5a:a3:6c:bc:da:08:07:fb:d5:f2:
9b:f9:10:d8:77:18:71:2d:c9:a6:50:20:0c:a6:a5:
f3:20:73:4c:d6:94:88:90:04:8d:ef:dd:91:c6:b7:
7b:c9:e1:2c:91:59:6d:11:f5:9d:4e:23:c2:f6:fe:
34:8a:e5:dc:3c:48:a7:61:45:3d:13:6a:77:2b:32:
b8:b4:d4:8f:3c:79:08:58:c0:31:47:c3:35:aa:60:
a8:ec:7b:2a:73:69:90:53:1f:9d:8c:69:ea:24:d1:
36:4c:d7:43:9e:06:26:2e:76:65:09:39:0c:ba:a1:
63:e8:90:be:cf:98:18:e4:fe:1b:5c:ab:65:25:95:
54:a5:f9:6d:d3:1e:b6:e3:26:b6:1a:f9:a1:fe:18:
59:ee:54:f5:48:e1:16:e0:c0:f1:0c:2a:ce:d9:44:
f9:44:33:80:5c:7a:ba:f9:9b:04:cc:a0:de:0c:08:
dd:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:6E:C1:28:CF:A4:15:28:21:B7:2F:35:02:A7:21:33:CD:55:92:D0
X509v3 Authority Key Identifier:
keyid:6D:69:DA:44:AE:06:7F:C1:A9:8A:5F:6F:05:F1:2E:54:5D:0F:C6:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bWnaRK4Gf8Gpil9vBfEuVF0Pxio.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/b1a82a-490f-43fb-986e-26170da4a0b1/1/FG7BKM-kFSghty81AqchM81VktA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/b1a82a-490f-43fb-986e-26170da4a0b1/1/bWnaRK4Gf8Gpil9vBfEuVF0Pxio.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.169.64.0/22
31.169.69.0-31.169.72.255
31.169.74.0/24
31.169.76.0/22
31.169.81.0-31.169.82.255
31.169.84.0/24
31.169.88.0/24
31.169.92.0-31.169.94.255
185.33.63.0/24
IPv6:
2a00:5740::/29
Signature Algorithm: sha256WithRSAEncryption
20:ba:da:50:0a:d1:9a:34:09:cf:21:02:63:c8:ba:d2:93:a4:
a8:53:d3:d7:0d:92:ab:3c:8b:b2:29:84:e2:64:24:f0:4f:e4:
d4:db:00:d1:10:69:ab:02:a2:b9:82:a8:8b:a9:cf:d6:96:c6:
fc:b4:c7:ee:da:b0:a9:cc:d2:3d:b2:7b:e7:58:b7:78:82:e2:
5c:59:90:d8:7f:c3:fb:37:94:eb:a6:9f:6f:cc:cd:7a:40:3e:
87:75:3c:cd:d2:a8:56:87:68:b0:a2:f5:84:a3:6e:b2:b4:00:
20:14:ba:8d:cb:0c:c0:22:65:02:12:18:2e:12:5a:f2:5f:0f:
f9:ec:f0:b4:20:d1:0c:57:53:9d:b7:82:0b:8e:42:a2:14:f5:
e0:97:81:41:fc:f2:81:16:89:b9:81:81:c6:9b:e1:a2:63:1d:
9b:b5:84:66:96:eb:63:c7:5d:7a:80:08:42:c7:69:c8:f4:0d:
5a:ae:18:af:16:5d:49:78:1f:3a:00:b6:71:0b:90:b5:38:c6:
c7:0e:21:75:96:6b:f7:8e:68:56:c0:ee:f2:e8:50:85:1d:4c:
2c:51:53:d8:33:67:95:a5:fb:48:81:d7:17:3c:e5:c8:bd:55:
37:08:4f:5c:74:fb:b0:96:a5:1a:b1:c1:ee:74:e9:12:37:77:
12:9b:36:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 11:39:24 2025 by rpki-client