Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/8357e2-a106-44ae-b866-8fa7b4c53073/1/BlIog--PjFDFQlcribUVrk87inI.roa
File: BlIog--PjFDFQlcribUVrk87inI.roa (raw, json)
Hash identifier: YTdhB18wHEHh69XmP8PT2k60iqC5OQ8/CLo8B51wxkA=
Subject key identifier: 06:52:28:83:EF:8F:8C:50:C5:42:57:2B:89:B5:15:AE:4F:3B:8A:72
Certificate issuer: /CN=17dd9c23af69ec2cdb6fe2b9936eb494cfd1621f
Certificate serial: 01856C5CA9EB4C5B8A6DC66799515CE7534F
Authority key identifier: 17:DD:9C:23:AF:69:EC:2C:DB:6F:E2:B9:93:6E:B4:94:CF:D1:62:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F92cI69p7Czbb-K5k260lM_RYh8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/8357e2-a106-44ae-b866-8fa7b4c53073/1/BlIog--PjFDFQlcribUVrk87inI.roa
Signing time: Sun 01 Jan 2023 08:04:50 +0000
ROA not before: Sun 01 Jan 2023 08:04:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 157.167.225.0/24 maxlen: 24
157.167.226.0/24 maxlen: 24
157.167.224.0/24 maxlen: 24
157.167.227.0/24 maxlen: 24
157.167.230.0/24 maxlen: 24
157.167.231.0/24 maxlen: 24
157.167.228.0/24 maxlen: 24
157.167.229.0/24 maxlen: 24
157.167.233.0/24 maxlen: 24
157.167.232.0/24 maxlen: 24
157.167.152.0/24 maxlen: 24
157.167.155.0/24 maxlen: 24
157.167.156.0/24 maxlen: 24
157.167.153.0/24 maxlen: 24
157.167.184.0/21 maxlen: 21
157.167.134.0/24 maxlen: 24
157.167.135.0/24 maxlen: 24
157.167.136.0/21 maxlen: 21
157.167.144.0/21 maxlen: 21
85.115.38.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 28 Nov 2023 20:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:5c:a9:eb:4c:5b:8a:6d:c6:67:99:51:5c:e7:53:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17dd9c23af69ec2cdb6fe2b9936eb494cfd1621f
Validity
Not Before: Jan 1 08:04:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=06522883ef8f8c50c542572b89b515ae4f3b8a72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:a2:90:c8:f2:24:0f:5b:18:23:ed:9e:e9:67:
d1:5e:5f:9a:79:a5:e8:68:37:3c:5e:03:56:46:22:
0d:73:9d:39:66:fd:5b:28:4e:8b:75:d4:3b:3d:53:
91:c4:20:c1:b8:09:74:a5:a5:18:a4:35:98:46:0f:
f1:53:8b:f6:c1:7b:0a:62:88:9c:b8:0c:ff:95:71:
fc:e8:37:90:1b:0d:30:cc:a4:44:42:25:c8:4d:8b:
de:47:29:ff:b2:b9:a3:2f:88:6e:da:3c:13:32:91:
08:e8:9f:13:65:74:79:19:fc:fa:0e:92:39:0e:08:
65:60:95:f1:d2:25:d6:fe:4b:69:76:34:00:51:1c:
22:fa:e9:38:0e:cf:92:f2:59:7a:81:b8:3b:cc:90:
a2:2a:b7:09:4f:85:65:95:7d:00:c4:1f:e9:48:9f:
1c:91:ba:3a:a0:ac:80:90:18:d1:df:d5:eb:96:4e:
b5:3a:fd:e0:89:07:7a:87:25:6f:e1:cd:ab:34:48:
8c:89:f6:1d:1a:87:10:0e:1a:7c:d3:36:67:ed:47:
83:79:43:9d:f4:ca:20:62:36:1b:4e:24:0e:8b:13:
be:20:b7:d7:20:01:d7:36:6c:b6:db:93:cf:f9:2d:
b8:79:d8:43:0c:60:2f:fb:f9:fa:eb:8b:2d:48:62:
97:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:52:28:83:EF:8F:8C:50:C5:42:57:2B:89:B5:15:AE:4F:3B:8A:72
X509v3 Authority Key Identifier:
keyid:17:DD:9C:23:AF:69:EC:2C:DB:6F:E2:B9:93:6E:B4:94:CF:D1:62:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F92cI69p7Czbb-K5k260lM_RYh8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/8357e2-a106-44ae-b866-8fa7b4c53073/1/BlIog--PjFDFQlcribUVrk87inI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/8357e2-a106-44ae-b866-8fa7b4c53073/1/F92cI69p7Czbb-K5k260lM_RYh8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.115.38.0/24
157.167.134.0-157.167.153.255
157.167.155.0-157.167.156.255
157.167.184.0/21
157.167.224.0-157.167.233.255
Signature Algorithm: sha256WithRSAEncryption
6d:00:fd:15:db:77:8f:d6:16:b8:a6:05:ae:54:af:83:80:2c:
a3:c4:6a:55:e2:0b:ce:dc:ed:85:90:01:8a:09:fe:c2:b0:3a:
fb:95:f6:3d:56:e7:9d:51:c4:4e:09:cf:68:a1:c3:8b:1d:15:
c1:04:75:4d:66:d0:7e:99:1e:54:fd:14:91:19:78:9f:7b:54:
53:00:d8:77:6f:c4:4e:9d:f7:1a:de:e2:84:8e:bf:ea:62:d6:
50:fc:6c:18:3d:07:df:a4:9e:09:37:c1:c5:a9:f8:ec:f0:13:
1c:3e:11:96:8f:fb:be:4c:bf:1e:06:a6:f4:58:37:6f:d1:31:
4f:7d:21:9d:33:e8:5b:35:46:81:e7:d8:e2:f7:2f:6c:ef:48:
a1:5c:40:9f:af:bd:bc:58:3f:ca:86:6c:6f:48:4c:e2:96:0c:
3e:6d:26:43:79:7d:63:bb:88:93:e6:90:82:3e:da:f7:09:c3:
77:99:d0:40:2d:90:78:c6:2f:2e:00:4c:54:aa:d0:ef:c6:f5:
3a:9e:85:7e:33:48:6c:50:10:ea:ab:9a:71:0e:c0:a3:2f:fb:
94:5f:5e:81:30:93:64:e3:be:c2:4e:3e:af:b5:d1:da:9d:2e:
38:33:52:16:2a:e3:fe:82:41:3a:a6:b0:89:55:e4:b1:49:ee:
f3:43:75:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:27 2024 by rpki-client on console-ams.rpki-client.org