Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/BuQvuPfIPO3D82h_G_Q7HH4vGac.roa
File: BuQvuPfIPO3D82h_G_Q7HH4vGac.roa (raw, json)
Hash identifier: T75KOGmugdy3AY4rsmtGMr35YZwTykcUzPbDt/UICfo=
Subject key identifier: 06:E4:2F:B8:F7:C8:3C:ED:C3:F3:68:7F:1B:F4:3B:1C:7E:2F:19:A7
Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Certificate serial: 0185D03A9236364D372926CAE0750CC01347
Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/BuQvuPfIPO3D82h_G_Q7HH4vGac.roa
Signing time: Fri 20 Jan 2023 17:29:37 +0000
ROA not before: Fri 20 Jan 2023 17:29:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50354
IP address blocks: 81.22.132.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 21 Jan 2023 00:05:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:d0:3a:92:36:36:4d:37:29:26:ca:e0:75:0c:c0:13:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Validity
Not Before: Jan 20 17:29:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=06e42fb8f7c83cedc3f3687f1bf43b1c7e2f19a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:d4:e6:f8:ca:c3:ea:58:ba:eb:52:46:00:5f:
c4:34:eb:6d:46:da:d2:c3:c8:04:60:b3:86:c3:cf:
b7:57:6b:40:d5:8b:89:f2:53:2c:65:3e:20:00:e0:
f6:2f:b7:50:bc:15:4c:91:f4:43:3e:58:77:29:c3:
be:62:1b:2d:bd:93:71:6d:78:06:1f:bd:9b:ea:d5:
35:e9:1c:df:1d:82:88:7a:bf:23:8e:01:dd:fc:45:
c5:4e:d4:c0:61:07:2f:da:1a:0d:87:99:1e:c4:08:
9b:93:96:ab:50:9d:ea:83:c2:d2:1f:18:fd:ac:3f:
ef:0b:0f:5c:ab:33:14:ff:18:10:99:dd:ea:af:ed:
17:0f:b4:b6:c1:8b:b6:99:ae:be:25:cf:d9:7e:d8:
3b:36:bb:a0:c0:32:bd:20:1c:24:3d:e7:1d:71:82:
02:df:d8:c3:74:d1:1b:ff:30:87:9f:71:77:26:04:
b7:70:90:8a:63:1f:59:e6:05:9a:c3:7d:4b:ee:e9:
fd:f5:0d:0c:12:83:38:f2:64:4d:ce:8d:7b:89:db:
20:23:85:80:f1:fc:1d:b3:e4:ef:1a:79:39:6c:4c:
23:ac:4a:8c:33:24:1c:69:dc:af:20:af:c0:13:b3:
31:e0:b7:da:b0:13:6b:a4:68:0a:2d:38:13:2d:f6:
80:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:E4:2F:B8:F7:C8:3C:ED:C3:F3:68:7F:1B:F4:3B:1C:7E:2F:19:A7
X509v3 Authority Key Identifier:
keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/BuQvuPfIPO3D82h_G_Q7HH4vGac.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.22.132.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:0c:ad:2d:2c:c0:34:31:13:b8:72:8d:20:70:c1:c5:e4:f0:
00:28:ee:1f:d7:87:8a:c1:94:f5:bd:d9:13:bf:6c:34:78:3f:
15:51:85:87:eb:67:4c:bd:bd:30:38:5c:2d:5f:4d:e8:28:2c:
e9:e9:1f:30:d3:94:41:eb:20:49:5c:12:60:f6:85:fd:4a:f4:
7f:1f:78:02:0e:78:5d:f8:ad:4e:f0:22:16:07:69:bf:dd:2d:
65:b8:fd:dd:59:6d:b5:1d:17:d6:88:56:43:79:e1:05:3c:a3:
0b:43:7d:e5:58:0e:fa:aa:6a:7f:50:ea:1b:89:a4:f2:6b:92:
4d:82:d2:fd:cc:aa:52:35:06:e7:dd:63:24:e8:c2:54:2f:4f:
5d:36:fc:d5:89:02:ef:bc:d6:c2:73:5a:17:0b:fd:38:fe:7a:
80:ab:e7:fc:4b:06:7d:12:b9:f9:6c:4d:3c:47:d3:fc:9d:68:
78:67:04:8c:c1:a4:24:55:2e:cb:7e:33:6b:57:8e:7b:7e:c4:
34:9e:9b:16:91:4a:d5:82:63:28:32:ce:e6:a8:65:cc:ca:aa:
1e:2d:85:65:08:40:15:f6:aa:2b:96:d9:92:1d:30:01:47:71:
d1:b0:7b:f5:42:7b:47:67:65:ee:7d:e0:34:29:7c:9b:80:4e:
41:65:a2:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:15 2024 by rpki-client on console-fra.rpki-client.org