Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/83c881-bef7-4f79-90ba-5590768de2cf/1/BtNcZuAbEf_ugQgy8dzxm8ihGaU.roa
File: BtNcZuAbEf_ugQgy8dzxm8ihGaU.roa (raw, json)
Hash identifier: lctW0TAw1jUwW9L0NBWXkjlqorF+YyUOp8zV4aHRJUo=
Subject key identifier: 06:D3:5C:66:E0:1B:11:FF:EE:81:08:32:F1:DC:F1:9B:C8:A1:19:A5
Certificate issuer: /CN=ad17e7016f953a0e62cca4566ff9d1052c30f25a
Certificate serial: 018E3D8D29948F778297A1A179207FF20C35
Authority key identifier: AD:17:E7:01:6F:95:3A:0E:62:CC:A4:56:6F:F9:D1:05:2C:30:F2:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rRfnAW-VOg5izKRWb_nRBSww8lo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/83c881-bef7-4f79-90ba-5590768de2cf/1/BtNcZuAbEf_ugQgy8dzxm8ihGaU.roa
Signing time: Thu 14 Mar 2024 15:20:45 +0000
ROA not before: Thu 14 Mar 2024 15:20:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 12480
IP address blocks: 195.60.186.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 16 Apr 2024 14:04:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:3d:8d:29:94:8f:77:82:97:a1:a1:79:20:7f:f2:0c:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad17e7016f953a0e62cca4566ff9d1052c30f25a
Validity
Not Before: Mar 14 15:20:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=06d35c66e01b11ffee810832f1dcf19bc8a119a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:b3:65:bd:27:2f:45:63:c5:f9:23:02:7a:1e:
63:31:b1:f4:a7:a8:5c:10:9c:94:21:32:a0:a2:a2:
3a:2a:cf:02:4c:4b:44:61:d5:6f:c0:03:bd:a7:a5:
d7:0a:2c:17:32:bd:f8:1a:a9:59:ce:cd:7e:58:c6:
64:56:3e:84:35:70:63:68:5c:19:07:11:cf:a7:93:
b2:18:34:98:02:1a:40:a7:c5:00:c9:29:7b:3f:bd:
17:d6:25:1e:cf:97:27:1e:03:78:af:67:e6:5c:28:
0b:a6:e0:a1:a2:94:1a:50:21:1e:f0:12:b8:81:9f:
cb:64:6c:50:33:2b:79:64:76:8a:4e:a6:25:39:33:
e9:8d:ce:e9:6a:b6:ff:2b:ee:74:ae:a2:fa:98:8b:
0e:df:88:45:18:ec:6c:06:44:31:d0:d0:33:7a:0d:
43:bb:a4:b5:3c:73:df:93:48:52:c5:6f:30:0e:ea:
bc:42:ba:5e:95:5d:06:33:70:2f:95:36:7c:c2:e1:
0c:23:91:3b:a5:16:18:24:c8:de:3c:5f:d6:ba:0b:
70:07:fc:76:ce:5f:9e:d5:48:49:51:2b:5f:56:37:
12:30:09:b2:e7:36:14:8c:b3:22:74:5a:8a:49:51:
71:c7:f8:79:ca:b2:ae:ff:cb:14:cc:5d:b9:ee:c6:
66:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:D3:5C:66:E0:1B:11:FF:EE:81:08:32:F1:DC:F1:9B:C8:A1:19:A5
X509v3 Authority Key Identifier:
keyid:AD:17:E7:01:6F:95:3A:0E:62:CC:A4:56:6F:F9:D1:05:2C:30:F2:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rRfnAW-VOg5izKRWb_nRBSww8lo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/83c881-bef7-4f79-90ba-5590768de2cf/1/BtNcZuAbEf_ugQgy8dzxm8ihGaU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/83c881-bef7-4f79-90ba-5590768de2cf/1/rRfnAW-VOg5izKRWb_nRBSww8lo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.60.186.0/23
Signature Algorithm: sha256WithRSAEncryption
94:66:f4:31:59:b5:61:95:d7:da:a4:c2:0a:ae:8e:3a:10:d5:
2b:cf:18:b3:e1:fb:48:a6:4a:0e:31:de:c9:da:26:70:3d:70:
f9:06:5b:ee:04:9e:fe:ff:da:c3:9c:64:c5:f2:91:00:52:93:
6b:42:2b:5a:84:8f:dc:03:d2:e3:17:4d:82:72:07:d3:4c:3f:
52:02:c2:bc:4a:94:aa:07:0b:59:83:4f:98:e9:a8:ed:19:b0:
78:4e:69:82:78:b4:fc:99:46:b2:6c:c0:12:82:af:ee:f0:f7:
ba:93:cd:1d:c0:aa:a5:57:00:f5:70:e7:6a:00:64:f0:5b:28:
fb:3c:8c:61:ce:b5:bf:53:58:26:b1:0c:70:9f:03:35:03:5c:
69:36:d1:ce:a6:a4:26:fc:e9:72:34:d3:72:f4:9f:9b:54:19:
b1:d0:6a:a8:17:94:cc:26:16:26:f9:4c:b6:bc:9b:2f:05:92:
1c:63:78:70:e1:f6:34:39:13:33:04:e2:b9:c5:d4:a8:f5:3d:
77:87:33:f8:59:70:cc:4a:e4:57:ed:ba:60:10:1f:43:31:3f:
c4:1f:e7:57:96:be:b3:a5:75:45:5d:2c:71:b9:7e:8d:cb:4b:
51:ab:77:ac:b4:56:70:f7:36:1c:a1:bf:9d:0b:3a:4c:f1:02:
3c:c8:ac:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:38 2024 by rpki-client on console-ams.rpki-client.org