Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/6c3d9f-8a4f-4a6c-8579-e92ece4d3cb3/1/bBFlZSNFi7XFBdndxJA5rxnXGTU.roa
File: bBFlZSNFi7XFBdndxJA5rxnXGTU.roa (raw, json)
Hash identifier: FeRXM2RQdl0mpGGPHLuTd/ggGD2A2xxvsmajw3xw4e4=
Subject key identifier: 6C:11:65:65:23:45:8B:B5:C5:05:D9:DD:C4:90:39:AF:19:D7:19:35
Certificate issuer: /CN=21a00080cd2cb1bb073903b32b25ad660a366486
Certificate serial: 018CF51EB9B09776E44C2840889EE5F0A050
Authority key identifier: 21:A0:00:80:CD:2C:B1:BB:07:39:03:B3:2B:25:AD:66:0A:36:64:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IaAAgM0ssbsHOQOzKyWtZgo2ZIY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/6c3d9f-8a4f-4a6c-8579-e92ece4d3cb3/1/bBFlZSNFi7XFBdndxJA5rxnXGTU.roa
Signing time: Wed 10 Jan 2024 20:44:40 +0000
ROA not before: Wed 10 Jan 2024 20:44:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51167
IP address blocks: 195.191.65.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 17 Jan 2024 17:53:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:f5:1e:b9:b0:97:76:e4:4c:28:40:88:9e:e5:f0:a0:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21a00080cd2cb1bb073903b32b25ad660a366486
Validity
Not Before: Jan 10 20:44:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6c11656523458bb5c505d9ddc49039af19d71935
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:68:9d:fa:5a:88:19:2d:60:61:c3:e9:75:7e:
aa:f4:4c:58:51:e7:a3:e8:fd:c4:c6:38:ef:67:cb:
6a:99:00:95:52:75:38:fb:f5:65:ab:1c:15:89:c4:
87:54:41:30:bd:fa:9b:70:c7:53:7e:be:d2:49:32:
39:76:48:9e:5b:8a:67:ee:99:12:aa:a4:0a:08:f0:
f4:84:45:7a:f6:b3:e8:43:72:93:f6:1f:02:48:d1:
10:bc:95:e2:b5:bb:b6:3b:ea:f3:70:61:df:1c:09:
5e:98:e2:26:62:c3:03:c4:62:e3:22:ab:36:43:b0:
d0:77:c6:90:87:3a:47:ad:76:fe:44:0a:bb:15:1e:
68:1e:bb:aa:de:a1:6d:36:7a:31:14:5e:61:03:50:
70:54:eb:e5:80:a3:21:47:c1:ac:8d:f5:74:45:3e:
46:3b:bd:51:a2:8a:7e:5d:fd:ce:cd:7a:a8:3a:67:
7d:c2:fe:27:44:d1:a3:88:79:f6:be:c0:1b:0f:1a:
65:a6:27:38:b2:01:fa:fd:71:69:0a:15:97:17:7b:
5e:85:87:90:c6:08:b3:6f:ff:df:00:0f:f4:26:32:
55:bb:07:48:4f:f1:d2:c7:2d:bb:b0:5b:ca:78:18:
61:4e:c3:15:90:57:b9:90:2f:c7:b2:d0:96:55:4e:
59:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:11:65:65:23:45:8B:B5:C5:05:D9:DD:C4:90:39:AF:19:D7:19:35
X509v3 Authority Key Identifier:
keyid:21:A0:00:80:CD:2C:B1:BB:07:39:03:B3:2B:25:AD:66:0A:36:64:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IaAAgM0ssbsHOQOzKyWtZgo2ZIY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/6c3d9f-8a4f-4a6c-8579-e92ece4d3cb3/1/bBFlZSNFi7XFBdndxJA5rxnXGTU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/6c3d9f-8a4f-4a6c-8579-e92ece4d3cb3/1/IaAAgM0ssbsHOQOzKyWtZgo2ZIY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.191.65.0/24
Signature Algorithm: sha256WithRSAEncryption
28:39:08:52:a9:c4:da:0b:16:4f:5b:96:a9:61:7d:4a:c1:5f:
b0:89:5c:2d:07:e9:09:d8:25:6f:72:93:02:7d:e1:a0:c6:3e:
18:a3:6f:5b:ce:3a:a1:24:62:60:67:ce:06:91:52:25:ab:35:
54:2f:d1:67:72:54:4f:c9:6a:e6:69:88:d4:6f:d7:69:ce:89:
0a:8d:de:ee:42:f3:aa:fb:fe:1e:49:54:b6:6d:cf:5c:92:c2:
f3:3f:89:ef:a4:bd:47:06:26:b9:9f:05:d6:52:d6:9d:a0:b5:
75:1d:4e:db:8d:ad:84:bd:b7:09:52:44:58:95:7d:f5:96:b5:
7b:4d:b1:c1:7a:c8:cd:f1:fd:19:54:cc:40:b6:66:21:68:13:
db:90:a6:2c:4c:55:30:00:e1:f8:41:0e:84:58:9a:c8:ba:ab:
75:a7:8f:c3:fe:82:be:8b:9a:33:a8:c1:9a:3a:a0:05:c5:a8:
bf:3d:cb:1d:88:0b:c6:e0:3d:cc:87:99:50:5f:28:bf:ac:ec:
b3:0f:9b:49:d4:4c:cd:1c:58:b4:69:68:2f:d0:78:d8:49:8e:
37:a3:36:44:c3:57:f8:a7:59:5b:f2:1c:fe:e2:ee:01:ac:63:
a1:78:98:46:dd:c1:07:dc:bd:cf:50:a3:73:e2:ba:b4:9e:9e:
fc:97:e0:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:30 2024 by rpki-client on console-ams.rpki-client.org