Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/200366-d881-4030-8280-b5e0e4c3315c/1/Bn5j99jXx2DyPRpjDPqninqyzGw.roa
File: Bn5j99jXx2DyPRpjDPqninqyzGw.roa (raw, json)
Hash identifier: gjK7yeKCTA5A1hRNcDaqQdm2t2Q0L95IJPutRIGVoUw=
Subject key identifier: 06:7E:63:F7:D8:D7:C7:60:F2:3D:1A:63:0C:FA:A7:8A:7A:B2:CC:6C
Certificate issuer: /CN=bd25f71ba4131483bb9b823dd88651d3afd44e7b
Certificate serial: 01856E41D2B23C21E58C7752776CB612B041
Authority key identifier: BD:25:F7:1B:A4:13:14:83:BB:9B:82:3D:D8:86:51:D3:AF:D4:4E:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vSX3G6QTFIO7m4I92IZR06_UTns.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/200366-d881-4030-8280-b5e0e4c3315c/1/Bn5j99jXx2DyPRpjDPqninqyzGw.roa
Signing time: Sun 01 Jan 2023 16:54:45 +0000
ROA not before: Sun 01 Jan 2023 16:54:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35197
IP address blocks: 194.146.152.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:29:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:41:d2:b2:3c:21:e5:8c:77:52:77:6c:b6:12:b0:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd25f71ba4131483bb9b823dd88651d3afd44e7b
Validity
Not Before: Jan 1 16:54:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=067e63f7d8d7c760f23d1a630cfaa78a7ab2cc6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:26:23:14:16:90:4f:25:03:56:df:40:70:0d:
db:10:b7:e9:97:ad:1b:1e:83:a9:3b:3c:21:60:76:
45:20:b6:08:e5:3a:8d:49:8a:2b:cf:53:3a:18:a6:
18:76:02:d6:a5:e8:1d:ee:fb:89:ef:06:bc:ac:54:
92:60:a6:18:dd:a4:98:de:3d:a9:d5:f0:57:83:76:
c2:ff:f4:d5:ee:d5:e6:78:69:09:ed:96:ef:8b:f1:
18:fc:4a:60:e3:29:95:aa:17:80:43:4e:61:3c:e5:
ab:38:5d:03:95:7a:9c:cd:4a:e6:46:c1:09:ff:0f:
8e:75:6b:74:1d:d4:95:66:44:28:c1:6b:e6:9b:07:
11:25:83:42:4a:6f:5b:04:cf:a5:5a:4e:9f:6d:6a:
b9:6c:35:82:64:4d:0a:42:14:46:74:9f:d5:2e:2c:
f6:6d:39:57:10:cc:1f:4a:17:ae:9b:41:b2:08:d2:
74:66:33:53:17:19:03:4f:27:1b:5a:36:4d:c2:c5:
74:ce:93:a5:cd:08:d2:3f:53:d4:b4:e2:ae:f6:f3:
5e:e9:6a:17:bc:3f:76:0a:1d:85:a3:0b:66:cc:18:
f5:3e:82:9f:60:d4:46:74:58:d5:dd:57:b2:7b:4f:
a7:c0:e6:18:a3:63:92:bc:48:1a:21:e5:8f:69:37:
78:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:7E:63:F7:D8:D7:C7:60:F2:3D:1A:63:0C:FA:A7:8A:7A:B2:CC:6C
X509v3 Authority Key Identifier:
keyid:BD:25:F7:1B:A4:13:14:83:BB:9B:82:3D:D8:86:51:D3:AF:D4:4E:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vSX3G6QTFIO7m4I92IZR06_UTns.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/200366-d881-4030-8280-b5e0e4c3315c/1/Bn5j99jXx2DyPRpjDPqninqyzGw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/200366-d881-4030-8280-b5e0e4c3315c/1/vSX3G6QTFIO7m4I92IZR06_UTns.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.146.152.0/24
Signature Algorithm: sha256WithRSAEncryption
17:88:db:5c:1d:58:06:bd:83:eb:f5:bc:c7:c8:80:da:b1:0b:
da:30:cb:0e:c0:af:b7:fc:01:9a:c1:3b:9a:20:b5:c7:44:53:
44:69:ee:73:70:d7:96:05:f7:6a:7c:85:f3:d3:c9:9c:d6:cc:
a3:33:52:9b:ce:a7:72:9f:7e:ac:44:51:10:fd:5c:50:69:56:
41:ed:24:a4:ff:ef:bb:99:9f:22:a5:7b:75:87:7f:87:6f:37:
54:eb:11:1f:f8:cb:16:a6:04:9c:11:88:d0:48:26:d7:1c:bc:
ce:39:1c:4e:55:3e:be:f6:95:8b:84:34:26:53:5b:e8:b9:b6:
95:6f:f5:66:26:5c:0f:f0:23:a4:9e:4c:a1:ff:5f:16:d2:73:
de:98:7e:24:31:45:96:5a:6a:a0:c7:e8:73:9f:8d:90:7a:78:
f5:91:9a:51:47:b2:2c:a5:b9:33:75:31:86:0e:82:c2:dc:bc:
c8:17:43:f5:b9:1c:1d:84:f5:d1:d0:62:8b:b2:10:70:ce:ca:
8f:03:ea:47:e3:e6:d9:63:47:17:ac:1f:48:b0:db:d3:65:8b:
ca:46:68:94:0f:68:b9:d2:73:3d:d7:eb:56:ee:4f:65:24:5d:
d5:ae:84:21:f1:34:c6:32:76:04:5b:3c:ad:3f:a6:d7:75:63:
e4:5c:76:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:33 2024 by rpki-client on console-fra.rpki-client.org