Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/c75f12-97a4-4d9e-9978-b1822755f712/1/B2QkD-VW4XNYEMgnlUuI9pAWx_c.roa
File: B2QkD-VW4XNYEMgnlUuI9pAWx_c.roa (raw, json)
Hash identifier: bOHlrp9iKYYt1YwU1DduMoV+buadfGhZIusmW2HVakk=
Subject key identifier: 07:64:24:0F:E5:56:E1:73:58:10:C8:27:95:4B:88:F6:90:16:C7:F7
Certificate issuer: /CN=ce22dd19725b6a59e79f0ff39789a5658e4a5fdd
Certificate serial: 018572712C298391A68EB106196311269A3E
Authority key identifier: CE:22:DD:19:72:5B:6A:59:E7:9F:0F:F3:97:89:A5:65:8E:4A:5F:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ziLdGXJbalnnnw_zl4mlZY5KX90.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/c75f12-97a4-4d9e-9978-b1822755f712/1/B2QkD-VW4XNYEMgnlUuI9pAWx_c.roa
Signing time: Mon 02 Jan 2023 12:24:57 +0000
ROA not before: Mon 02 Jan 2023 12:24:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56395
IP address blocks: 185.215.120.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:31:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:71:2c:29:83:91:a6:8e:b1:06:19:63:11:26:9a:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce22dd19725b6a59e79f0ff39789a5658e4a5fdd
Validity
Not Before: Jan 2 12:24:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0764240fe556e1735810c827954b88f69016c7f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:b8:7f:9f:89:c1:03:e5:56:34:2f:a3:ac:fe:
1b:7a:e4:73:fe:3f:ca:2d:6e:8d:8b:9f:a8:c3:ae:
9a:bf:87:19:d0:bd:05:f1:14:b6:e8:e3:e6:50:c6:
d6:66:3a:79:61:56:28:cb:3f:b7:85:05:ff:c7:ee:
94:e9:f2:34:3f:cb:68:52:c3:1c:63:f2:0a:68:62:
01:52:1c:87:a2:3e:c1:96:98:58:8d:98:cc:b4:a3:
2f:b5:f9:a4:d3:93:e0:8e:03:2d:4f:fd:a4:e2:c5:
e8:16:41:a6:ff:bb:22:ae:4c:16:0d:8b:09:db:44:
3c:00:a5:04:1e:c6:cd:03:37:77:5d:08:20:fa:4f:
20:ad:a7:79:17:68:6b:ce:b8:53:be:bc:0c:9d:7f:
18:ae:78:a0:20:ea:2b:5d:c7:e5:49:bd:fc:72:b1:
d1:b3:44:ea:93:ea:29:a6:7d:91:3c:72:90:0f:3d:
7a:a4:64:a9:79:5e:4d:a9:ca:7d:92:d9:33:cd:ac:
82:c1:86:60:7b:7f:b9:25:b4:84:64:52:12:99:aa:
e8:69:b5:cb:d1:15:6c:1f:12:67:e0:ce:28:79:c6:
6c:8e:81:d1:d0:85:2a:ec:b6:70:ae:c8:a6:4f:3d:
51:72:a3:f2:83:30:98:20:0c:17:58:fe:c1:44:e1:
49:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:64:24:0F:E5:56:E1:73:58:10:C8:27:95:4B:88:F6:90:16:C7:F7
X509v3 Authority Key Identifier:
keyid:CE:22:DD:19:72:5B:6A:59:E7:9F:0F:F3:97:89:A5:65:8E:4A:5F:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ziLdGXJbalnnnw_zl4mlZY5KX90.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/c75f12-97a4-4d9e-9978-b1822755f712/1/B2QkD-VW4XNYEMgnlUuI9pAWx_c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/c75f12-97a4-4d9e-9978-b1822755f712/1/ziLdGXJbalnnnw_zl4mlZY5KX90.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.215.120.0/22
Signature Algorithm: sha256WithRSAEncryption
7d:c3:6e:83:c4:d1:44:ee:9d:27:dd:41:65:b6:2b:0d:93:d2:
4c:33:e7:6b:26:3a:01:11:2c:b6:f8:ee:e7:99:16:51:8b:89:
0d:0e:7b:eb:8b:61:a7:ab:d4:3f:0f:e4:fd:36:d0:b0:bf:48:
ca:d0:7e:08:c8:54:24:cf:8a:96:c6:22:76:d6:f6:35:6d:59:
ac:b1:70:fc:ce:6e:d5:3f:fd:78:64:cc:59:00:5b:6c:0c:8d:
4d:58:3a:dc:5d:d2:be:7f:21:8c:b4:b4:02:65:30:d4:ad:0a:
c9:74:be:4b:86:b7:ca:fc:99:cc:4c:a8:28:0e:31:cc:37:75:
8d:d1:cf:a1:b0:b9:25:a8:ef:89:7f:a3:a2:d9:9c:1a:7e:66:
5f:7e:03:c6:c5:ec:02:f6:ae:ba:96:6e:67:25:f2:18:e3:e3:
30:60:63:ce:5b:4c:61:aa:8a:03:02:1e:17:38:ee:fb:b0:13:
d7:6d:41:5e:f8:5b:b7:e9:d9:00:7c:46:1f:f4:a2:47:de:11:
34:71:03:16:40:12:33:af:5a:01:b3:ea:24:fb:37:89:ec:cc:
7a:94:94:26:02:ae:83:a2:17:28:ed:41:4b:be:ac:f0:31:a6:
75:ce:39:ea:36:8b:0b:92:d4:f7:bc:bb:75:2d:b1:7d:99:99:
ff:55:87:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:01 2024 by rpki-client on console-fra.rpki-client.org