Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/8c51cb-a3bd-476d-880f-a96c6266abdb/1/BJwFk4NPveaeooulNBJiCen75dU.roa
File: BJwFk4NPveaeooulNBJiCen75dU.roa (raw, json)
Hash identifier: cBrSo67fnR7VWTbCUl0nkzLWWPT8oCvb/3h44wVQdWM=
Subject key identifier: 04:9C:05:93:83:4F:BD:E6:9E:A2:8B:A5:34:12:62:09:E9:FB:E5:D5
Certificate issuer: /CN=57182aab5ad9efa380a6c6f06c016e158be977bc
Certificate serial: 018571D7B71A3EDC538A25F3113CB25A563E
Authority key identifier: 57:18:2A:AB:5A:D9:EF:A3:80:A6:C6:F0:6C:01:6E:15:8B:E9:77:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Vxgqq1rZ76OApsbwbAFuFYvpd7w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/8c51cb-a3bd-476d-880f-a96c6266abdb/1/BJwFk4NPveaeooulNBJiCen75dU.roa
Signing time: Mon 02 Jan 2023 09:37:20 +0000
ROA not before: Mon 02 Jan 2023 09:37:20 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8220
IP address blocks: 193.30.84.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:d7:b7:1a:3e:dc:53:8a:25:f3:11:3c:b2:5a:56:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57182aab5ad9efa380a6c6f06c016e158be977bc
Validity
Not Before: Jan 2 09:37:20 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=049c0593834fbde69ea28ba534126209e9fbe5d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:09:30:0c:73:25:9b:ff:46:8f:05:a3:0b:8f:
c5:d1:af:2d:45:b6:b0:50:b0:c9:79:40:58:af:d5:
bd:20:cf:28:ae:f1:dd:53:eb:77:2d:56:13:91:ad:
c8:35:0a:f5:75:fb:32:11:8f:ce:36:56:eb:b6:e0:
a2:9f:f6:42:ac:d7:d6:24:e1:bb:4d:74:66:e5:6e:
94:fb:61:81:d3:a7:e7:1b:5c:b5:3c:59:f6:33:4a:
ce:f7:ab:bd:f4:e9:f4:e9:df:17:9e:ab:2c:7a:ef:
18:fe:48:54:06:9c:31:3d:87:e1:16:41:92:c7:9c:
a3:9a:16:bd:76:f5:2d:3b:49:f5:ed:23:93:c3:b8:
36:19:3d:4e:60:11:ee:f9:77:9b:f0:1b:c9:ca:08:
1b:bb:c5:e7:c4:11:f8:03:6b:d6:4f:74:d3:7b:ce:
3e:d5:fa:88:1f:8d:a4:8c:8f:53:1f:c9:52:44:64:
2a:d4:03:58:da:09:f4:3e:4e:a0:7e:fe:09:98:30:
7d:b8:7c:fb:04:60:da:a5:a3:fe:3f:ef:1d:ec:38:
35:b2:2a:99:a7:a0:dc:74:1b:0b:ee:a5:52:1d:2e:
62:2d:61:d2:56:8b:f8:31:ae:1e:ba:7f:32:08:aa:
f8:24:3b:78:d1:c8:97:c5:30:b8:c3:25:7f:a6:8e:
f0:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:9C:05:93:83:4F:BD:E6:9E:A2:8B:A5:34:12:62:09:E9:FB:E5:D5
X509v3 Authority Key Identifier:
keyid:57:18:2A:AB:5A:D9:EF:A3:80:A6:C6:F0:6C:01:6E:15:8B:E9:77:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Vxgqq1rZ76OApsbwbAFuFYvpd7w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/8c51cb-a3bd-476d-880f-a96c6266abdb/1/BJwFk4NPveaeooulNBJiCen75dU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/8c51cb-a3bd-476d-880f-a96c6266abdb/1/Vxgqq1rZ76OApsbwbAFuFYvpd7w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.30.84.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:61:6f:7a:8a:ea:b9:15:86:6d:12:31:c3:7a:b4:a3:3f:b2:
3b:ca:e8:ab:34:c2:a6:37:dc:77:34:01:d6:65:b0:9e:0c:28:
c1:c3:54:72:5d:51:6a:36:dd:cb:14:dd:76:29:3f:2f:b2:4b:
c3:48:61:b2:e9:33:63:f0:00:ba:fa:4c:8a:1e:48:0a:78:0b:
bc:69:58:93:c4:a5:d6:e5:01:9a:ef:c1:b2:98:19:8a:5d:2f:
f3:79:0c:16:27:87:b7:1d:a3:80:f4:d3:d1:f6:ca:53:c7:7c:
00:73:73:39:e0:8f:3f:df:d6:5a:af:1f:38:32:2f:19:25:59:
d0:ec:81:2e:04:d0:e9:82:9e:91:15:3a:d3:17:c9:db:9e:2d:
e1:21:ab:c4:40:d9:3e:a4:a9:d4:f3:00:07:be:ef:68:17:24:
24:5b:f3:1a:9d:d3:d7:79:ae:b6:4c:5b:b6:2a:43:17:00:13:
e0:a8:bd:e1:16:01:da:57:78:6f:fc:b6:f8:3b:d5:28:b5:7d:
bb:77:77:42:9a:49:76:e7:f5:75:46:d0:4c:e6:92:ff:ea:ec:
bd:f1:76:ad:a6:75:d8:81:a1:41:7c:a5:17:5e:e7:25:1d:88:
a5:2d:69:09:42:3a:bc:da:8d:c6:e0:1c:ea:95:94:c1:75:c3:
21:f7:2e:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:20 2024 by rpki-client on console-fra.rpki-client.org