Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/186a18-5d7f-43ed-b06a-cea7eb350537/1/BcGmgaiSs7mryIsuiLhuv2zuwUU.roa
File: BcGmgaiSs7mryIsuiLhuv2zuwUU.roa (raw, json)
Hash identifier: pSTnUVgRNe1wwR2PX6tpU/o4QiKhxDmWC8cNioXyMAY=
Subject key identifier: 05:C1:A6:81:A8:92:B3:B9:AB:C8:8B:2E:88:B8:6E:BF:6C:EE:C1:45
Certificate issuer: /CN=7ff1b81cfe6abb118e97e0325b662eaf984f2f6a
Certificate serial: 01857383A1145FAC086683CBD640A0961597
Authority key identifier: 7F:F1:B8:1C:FE:6A:BB:11:8E:97:E0:32:5B:66:2E:AF:98:4F:2F:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/f_G4HP5quxGOl-AyW2Yur5hPL2o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/186a18-5d7f-43ed-b06a-cea7eb350537/1/BcGmgaiSs7mryIsuiLhuv2zuwUU.roa
Signing time: Mon 02 Jan 2023 17:24:44 +0000
ROA not before: Mon 02 Jan 2023 17:24:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50737
IP address blocks: 193.105.111.0/24 maxlen: 24
2a03:4740::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:30:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:83:a1:14:5f:ac:08:66:83:cb:d6:40:a0:96:15:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ff1b81cfe6abb118e97e0325b662eaf984f2f6a
Validity
Not Before: Jan 2 17:24:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=05c1a681a892b3b9abc88b2e88b86ebf6ceec145
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:81:76:18:55:d4:02:21:fe:a7:c8:3b:79:bb:
72:b8:49:5a:c5:ce:e3:16:e3:3a:e0:a7:82:1f:68:
cc:fa:32:ef:1e:a9:31:f0:b3:4c:ff:09:da:ce:51:
8d:17:a7:7c:ee:2b:58:e2:03:af:75:77:fb:5d:4f:
6e:ae:0f:6f:4c:52:18:84:8a:e9:20:0b:11:5c:42:
93:97:23:b6:fe:0d:2c:2c:95:0f:d6:bb:44:58:83:
3f:f3:d7:13:ae:1f:98:ab:bf:d9:69:e6:98:ec:51:
2e:cb:2d:03:4e:15:54:f9:39:32:3a:4c:9e:39:0b:
6f:1a:fb:ad:04:dd:4e:9d:e8:0e:72:6d:66:c2:32:
21:21:cc:6b:74:df:cb:34:6c:fd:ab:27:e7:f3:33:
d7:00:22:40:3e:7d:d5:18:03:20:28:cb:80:d2:40:
fe:06:fd:6b:ff:89:b0:f2:64:97:53:5c:77:79:1c:
fa:1b:0f:f7:4f:ce:fa:ad:74:18:d9:1d:6a:69:7f:
20:c7:05:e2:39:55:5e:16:3f:5e:0e:67:83:a9:dc:
14:c2:8e:59:07:03:d2:a5:82:14:78:80:c0:a7:dd:
09:1e:0d:9e:c7:23:9a:f8:6e:d4:93:0e:1a:05:17:
ad:8b:37:ff:8d:ae:85:eb:ac:b4:43:f9:8a:dc:a7:
bd:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:C1:A6:81:A8:92:B3:B9:AB:C8:8B:2E:88:B8:6E:BF:6C:EE:C1:45
X509v3 Authority Key Identifier:
keyid:7F:F1:B8:1C:FE:6A:BB:11:8E:97:E0:32:5B:66:2E:AF:98:4F:2F:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/f_G4HP5quxGOl-AyW2Yur5hPL2o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/186a18-5d7f-43ed-b06a-cea7eb350537/1/BcGmgaiSs7mryIsuiLhuv2zuwUU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/186a18-5d7f-43ed-b06a-cea7eb350537/1/f_G4HP5quxGOl-AyW2Yur5hPL2o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.105.111.0/24
IPv6:
2a03:4740::/32
Signature Algorithm: sha256WithRSAEncryption
98:df:50:d0:c6:8e:b3:94:4d:c5:5a:00:28:ec:f6:fc:05:f1:
df:e6:7c:ac:10:d2:11:b7:2a:24:e8:0d:75:ed:c8:62:08:43:
d6:93:15:ad:88:7b:96:0a:58:de:d7:53:6d:97:55:eb:be:7c:
51:c7:a3:2b:6c:c7:0f:b9:87:77:a1:e1:8f:e9:a3:70:e4:94:
04:ac:0d:97:71:17:b8:5e:05:b1:96:6d:d9:0e:ee:d0:a2:c7:
10:40:25:0f:44:ab:81:b5:28:fb:ef:b9:5b:c8:59:3f:38:fc:
79:22:71:ea:10:15:19:b4:65:a9:b9:b7:17:e4:79:ea:12:43:
fa:66:85:d7:37:d8:f9:1e:69:05:e2:5f:44:46:d6:02:54:bc:
ac:a9:be:71:2d:88:d3:2d:dd:7d:af:46:3b:e7:a6:e6:6c:28:
4f:bf:60:3e:db:8b:d4:07:cd:3a:39:b0:53:5e:de:b0:42:48:
e0:a0:67:1c:8f:31:a3:3c:fb:fe:a2:fa:7f:b7:b1:df:9a:f8:
83:63:6f:a5:5f:46:95:43:07:fb:c3:30:52:25:49:16:fe:1e:
ee:92:38:d9:78:ec:0c:94:73:a4:2e:2a:d8:62:cb:d2:9c:cd:
ae:a9:47:fe:1f:84:cb:5f:08:3e:33:23:85:f4:ac:e7:52:aa:
73:1f:a1:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:11 2024 by rpki-client on console-fra.rpki-client.org