Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/1d2df9-8f82-4716-853e-53859490d26f/1/Bvz6KQQaVAh1lUpPSWBXqTZrH_M.roa
File: Bvz6KQQaVAh1lUpPSWBXqTZrH_M.roa (raw, json)
Hash identifier: WIzpqnfpqao9aTQdJnsbyrG2cQ0Had15sgl/nWiqNcc=
Subject key identifier: 06:FC:FA:29:04:1A:54:08:75:95:4A:4F:49:60:57:A9:36:6B:1F:F3
Certificate issuer: /CN=3e70c14bf26faf0198f1e7b24729cd71b33518de
Certificate serial: 019295511476C85823F28D03400726214D72
Authority key identifier: 3E:70:C1:4B:F2:6F:AF:01:98:F1:E7:B2:47:29:CD:71:B3:35:18:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PnDBS_JvrwGY8eeyRynNcbM1GN4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/1d2df9-8f82-4716-853e-53859490d26f/1/Bvz6KQQaVAh1lUpPSWBXqTZrH_M.roa
Signing time: Wed 16 Oct 2024 12:32:51 +0000
ROA not before: Wed 16 Oct 2024 12:32:51 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212808
IP address blocks: 185.175.88.0/24 maxlen: 24
2a10:45c0::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 02 Jan 2025 03:49:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:95:51:14:76:c8:58:23:f2:8d:03:40:07:26:21:4d:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e70c14bf26faf0198f1e7b24729cd71b33518de
Validity
Not Before: Oct 16 12:32:51 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=06fcfa29041a540875954a4f496057a9366b1ff3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:e0:db:b3:15:c6:e9:9d:e8:b7:6f:cc:fb:ef:
27:25:27:28:30:1c:9b:77:c9:61:be:6a:82:20:a9:
e4:3a:e0:4a:ff:8e:f3:57:5c:66:87:36:e1:1b:8c:
8a:a6:13:9f:23:b8:dc:e4:32:f8:f8:1a:33:86:5a:
d5:c4:04:fc:5a:06:02:e5:8c:aa:34:d8:3f:43:db:
7a:b4:e3:59:95:ae:36:de:bd:72:f2:2d:c7:8e:14:
ff:5a:b7:d0:15:31:69:f6:f9:13:2d:b0:4e:e4:5e:
be:56:fd:48:e2:51:2b:f0:f5:63:4b:df:0f:75:8b:
77:10:5f:3c:18:76:df:6b:71:ed:6f:b4:5c:e9:0c:
bc:55:f2:d4:fe:07:c3:b6:fd:ca:dd:d9:bd:0a:4f:
be:c3:b1:6d:de:4e:a2:4d:a4:58:2e:93:50:b6:87:
06:89:4e:85:43:51:12:88:28:af:fc:e7:5f:04:16:
c7:2f:e8:db:0c:fc:20:06:a0:b1:2e:b3:42:4a:cb:
0d:5e:68:b5:ca:01:4d:a3:1f:42:fd:00:a2:bb:78:
85:53:be:7d:1b:83:e5:e9:91:79:df:af:ca:bf:bf:
94:fb:13:05:b6:43:92:a3:eb:22:c9:8f:3c:87:af:
26:ef:b8:0d:a4:67:1e:7e:b2:d1:47:cf:cf:3b:90:
99:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:FC:FA:29:04:1A:54:08:75:95:4A:4F:49:60:57:A9:36:6B:1F:F3
X509v3 Authority Key Identifier:
keyid:3E:70:C1:4B:F2:6F:AF:01:98:F1:E7:B2:47:29:CD:71:B3:35:18:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PnDBS_JvrwGY8eeyRynNcbM1GN4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/1d2df9-8f82-4716-853e-53859490d26f/1/Bvz6KQQaVAh1lUpPSWBXqTZrH_M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/1d2df9-8f82-4716-853e-53859490d26f/1/PnDBS_JvrwGY8eeyRynNcbM1GN4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.175.88.0/24
IPv6:
2a10:45c0::/32
Signature Algorithm: sha256WithRSAEncryption
95:b5:2a:c5:7b:b3:90:ba:65:57:b9:74:66:0e:fa:80:c4:c3:
d0:3d:00:1c:10:36:33:15:be:5d:b2:d8:8f:1f:6b:37:e0:ce:
f6:50:b5:11:58:62:bb:bc:f3:97:b1:54:1a:68:da:ea:ac:1d:
0a:02:62:2d:8d:65:09:b8:b6:08:65:40:83:3a:84:5b:88:ac:
7f:e4:3f:b0:ef:33:ce:23:86:4b:aa:ab:f0:e7:22:77:8d:47:
40:95:e0:11:33:da:25:3d:b9:95:e5:1c:19:8e:f3:da:4b:78:
c1:25:d3:d7:5a:0f:02:e9:7b:68:58:13:7c:f3:99:d0:c2:03:
46:06:42:4e:30:d7:d3:9a:61:96:53:0d:9b:8a:0c:cd:fa:8c:
89:76:74:f3:92:0a:2a:fd:d0:e2:7e:8a:24:04:c0:1c:2d:6e:
7d:47:c5:0e:24:b8:49:eb:7a:37:f0:07:cd:80:4e:ca:19:26:
49:7e:08:ba:aa:c0:c2:3d:60:c0:88:17:8c:33:18:53:9b:13:
65:59:71:af:5c:e5:bb:88:6f:dd:e7:6f:f4:54:23:d9:73:26:
fb:25:39:ca:b8:e0:9c:23:1e:eb:c1:ba:7b:bd:86:18:5d:7e:
2c:da:78:6f:c1:80:73:a6:34:9b:3e:64:7b:05:a1:5a:bf:d0:
f5:3f:9c:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 04:52:34 2025 by rpki-client