Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/BiEFlXG4v0bDqcwjqbOSp15z_Zg.roa
File: BiEFlXG4v0bDqcwjqbOSp15z_Zg.roa (raw, json)
Hash identifier: No7O1T9O/Nqzn92VvhRue2EOkjEElYuV6JnGZvOva0s=
Subject key identifier: 06:21:05:95:71:B8:BF:46:C3:A9:CC:23:A9:B3:92:A7:5E:73:FD:98
Certificate issuer: /CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Certificate serial: 01856BEEE1843C9352314BF9E9FCA845FF0D
Authority key identifier: B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/BiEFlXG4v0bDqcwjqbOSp15z_Zg.roa
Signing time: Sun 01 Jan 2023 06:04:55 +0000
ROA not before: Sun 01 Jan 2023 06:04:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209292
IP address blocks: 85.31.254.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:ee:e1:84:3c:93:52:31:4b:f9:e9:fc:a8:45:ff:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Validity
Not Before: Jan 1 06:04:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0621059571b8bf46c3a9cc23a9b392a75e73fd98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:f7:bb:9d:7e:8c:4a:8b:48:61:cf:63:d7:71:
b7:24:e4:a5:ac:02:7d:96:7f:e1:8b:47:be:55:fe:
74:7d:da:92:71:4e:72:d1:b9:ed:47:16:fb:27:ba:
a7:2d:53:87:06:69:98:89:80:60:9f:3a:b9:d1:15:
a0:35:15:35:b9:a3:7d:ea:4e:ee:b7:66:ff:5a:2a:
a3:01:21:40:11:cc:68:5a:8b:8e:83:65:66:c9:3d:
41:62:8c:7c:7f:38:bf:f5:84:72:58:8b:e5:ec:cc:
25:4e:e8:bb:ce:83:e8:ac:44:d0:7c:7a:4f:34:01:
01:d7:58:ed:70:80:a8:57:de:58:73:f2:d9:da:b0:
53:e7:86:ea:cf:6c:92:13:d6:52:79:3c:9f:e8:87:
9c:54:a5:8e:39:b0:ce:e9:bf:87:fa:93:53:36:e1:
74:61:6a:e3:c0:de:b5:46:f7:3c:bb:97:1d:fb:f6:
e9:63:5b:1b:dc:f6:2e:91:c4:52:09:e7:8d:10:13:
b2:3c:22:d8:1d:57:2f:b5:2c:dd:c9:6f:08:40:58:
0c:09:f0:97:f9:df:1e:7a:d7:30:a7:9c:fd:65:cd:
da:25:ce:a6:92:2d:41:52:94:a3:0c:0b:97:2a:5f:
24:cf:e5:3b:d6:29:d2:92:c1:83:81:e9:ad:98:83:
86:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:21:05:95:71:B8:BF:46:C3:A9:CC:23:A9:B3:92:A7:5E:73:FD:98
X509v3 Authority Key Identifier:
keyid:B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/BiEFlXG4v0bDqcwjqbOSp15z_Zg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/uZVEmZdyeKdVcLNAP006oAsbNug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.31.254.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:e5:48:63:fa:ad:5f:0f:2a:1b:d9:4a:cf:cb:6e:26:29:4a:
9e:d9:a3:bf:ce:1d:06:74:69:2b:3e:0b:00:0a:c5:d0:e4:55:
d7:a6:53:33:0e:dd:50:c5:51:76:07:43:f6:e4:8a:90:7b:7d:
61:d3:ba:0e:ef:df:4a:84:e4:81:c9:2e:13:c7:10:fd:47:6c:
bc:4b:a3:88:d9:33:a5:62:78:d1:cd:50:3c:b4:07:ef:d6:1b:
47:e6:6b:52:0c:a6:24:2e:05:d3:2c:58:d0:6a:b3:0e:32:4a:
b2:9a:fb:58:d9:39:b0:9f:e8:ef:c6:af:1d:49:54:70:6c:6a:
7a:13:57:8b:68:1f:21:d6:e7:fd:0a:1b:ed:11:db:a9:25:87:
b4:d4:35:77:dc:4d:39:07:3a:d5:7c:a8:90:3d:83:20:05:a7:
7e:20:c5:0c:22:fb:44:79:39:20:7e:51:71:1c:4f:46:15:dd:
de:6d:a1:b4:dd:5a:8e:37:cb:65:8c:98:c6:f4:75:36:4e:97:
dc:11:f6:63:f3:32:3d:24:c9:6a:63:8d:45:04:f8:39:db:bc:
cb:af:af:e6:7b:d6:a7:4e:82:4e:3b:0f:26:10:f6:74:6e:1c:
7d:1d:63:67:84:2f:59:8a:1a:26:d7:ab:43:75:96:c8:61:1b:
8d:b3:c6:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:21 2024 by rpki-client on console-ams.rpki-client.org