Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/3abb5f-3379-4ed6-94c1-c7e338ff3b59/1/bZxgbfu1pTwIXx1RAeSetkh6j2c.roa
File: bZxgbfu1pTwIXx1RAeSetkh6j2c.roa (raw, json)
Hash identifier: vCripJzpK4810ezK3BkPEnRASzOfAmjvvip9Xpvvu8w=
Subject key identifier: 6D:9C:60:6D:FB:B5:A5:3C:08:5F:1D:51:01:E4:9E:B6:48:7A:8F:67
Certificate issuer: /CN=bc888f053099fac3a55986447cb3b1038495f332
Certificate serial: 0185879671685059FD7D88304988C8E1D74E
Authority key identifier: BC:88:8F:05:30:99:FA:C3:A5:59:86:44:7C:B3:B1:03:84:95:F3:32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vIiPBTCZ-sOlWYZEfLOxA4SV8zI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/3abb5f-3379-4ed6-94c1-c7e338ff3b59/1/bZxgbfu1pTwIXx1RAeSetkh6j2c.roa
Signing time: Fri 06 Jan 2023 14:57:41 +0000
ROA not before: Fri 06 Jan 2023 14:57:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34645
IP address blocks: 194.143.128.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:87:96:71:68:50:59:fd:7d:88:30:49:88:c8:e1:d7:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bc888f053099fac3a55986447cb3b1038495f332
Validity
Not Before: Jan 6 14:57:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6d9c606dfbb5a53c085f1d5101e49eb6487a8f67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:57:18:3e:f5:9b:c5:12:72:c9:95:ac:2e:f3:
df:b7:fe:45:e1:a5:b8:4b:e1:ef:5a:d1:99:e9:69:
66:c3:7e:6e:af:30:77:29:70:65:6f:35:7f:30:29:
ff:85:0a:2a:52:17:4f:16:54:44:98:ec:24:77:e0:
74:6b:92:1f:66:39:56:b3:27:e8:45:58:f6:88:c4:
65:03:06:4c:1f:cf:38:76:67:e4:1a:36:d7:bb:e7:
d8:b1:5c:76:df:a5:f7:a7:27:5b:29:9d:31:8c:4d:
58:35:f0:a7:4d:54:67:28:88:d5:ea:b6:77:8a:c5:
18:b8:ab:b9:4b:58:06:b5:59:e1:ba:9b:42:95:ca:
ff:c0:49:3b:5c:3a:2f:40:ea:28:50:5b:f9:29:de:
11:23:64:5d:9c:43:df:90:ed:d4:e9:27:a5:37:b4:
a4:a5:d6:88:1a:27:91:b1:40:2f:bf:4d:28:c6:5b:
dc:af:00:3c:06:e0:d6:56:43:e8:20:1c:23:21:46:
db:18:58:55:8e:1d:28:38:f6:8f:22:fc:7a:d9:5e:
e1:7a:92:75:75:0b:6c:26:be:38:a7:4e:5c:38:ea:
f5:59:c0:c0:c2:97:8b:55:3e:d6:18:af:02:f5:14:
cf:4e:28:35:c8:e6:f4:f1:1d:23:19:b3:90:09:0f:
86:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:9C:60:6D:FB:B5:A5:3C:08:5F:1D:51:01:E4:9E:B6:48:7A:8F:67
X509v3 Authority Key Identifier:
keyid:BC:88:8F:05:30:99:FA:C3:A5:59:86:44:7C:B3:B1:03:84:95:F3:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vIiPBTCZ-sOlWYZEfLOxA4SV8zI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/3abb5f-3379-4ed6-94c1-c7e338ff3b59/1/bZxgbfu1pTwIXx1RAeSetkh6j2c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/3abb5f-3379-4ed6-94c1-c7e338ff3b59/1/vIiPBTCZ-sOlWYZEfLOxA4SV8zI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.143.128.0/23
Signature Algorithm: sha256WithRSAEncryption
73:6c:9f:70:05:e6:7b:23:a5:4c:e2:40:c9:d1:c4:8c:85:a2:
ae:e8:38:b5:d2:ff:6b:02:89:3d:78:2c:0d:4f:66:32:db:34:
0c:75:f2:b3:45:f1:70:4e:c6:32:f5:37:3f:08:7b:7e:cf:48:
a9:e5:64:af:30:93:34:a1:a2:85:88:16:d6:a3:e7:20:a9:d0:
7b:ee:cb:47:75:ad:5e:f8:51:60:96:b2:db:da:92:e9:f3:c0:
ba:4e:c9:e5:f4:84:d1:62:fd:ae:c1:6a:d9:59:9f:75:77:2b:
65:4d:5f:96:9c:24:56:c7:33:09:fe:f4:cd:40:0c:03:5f:fb:
f2:0a:57:da:d7:df:00:87:05:18:f7:33:4b:5f:29:a6:0a:a6:
65:30:36:3b:0f:98:bd:68:69:30:b0:b1:12:e8:50:96:de:b3:
17:66:3e:c1:df:4f:a0:5b:5a:d8:f0:03:07:1e:cf:c7:a9:1e:
c9:26:20:e9:a9:3a:bf:0a:d7:22:28:2f:9e:19:88:b0:9f:94:
a3:0a:ab:62:74:72:c1:39:c9:ed:4b:a8:d3:27:93:e5:c5:25:
b5:af:8a:56:03:b3:cf:63:68:c0:83:b8:62:03:70:cc:05:1c:
df:fc:91:cf:b3:dd:c2:a9:e0:ab:de:da:d7:39:a7:e2:f2:9b:
f2:55:73:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:13 2024 by rpki-client on console-fra.rpki-client.org