Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/BHkMk3GLZUHYUyueZ2dV5MsNHQY.roa
File: BHkMk3GLZUHYUyueZ2dV5MsNHQY.roa (raw, json)
Hash identifier: hMbpZoVpdKw+e+I9zn2EoPMgCUCrPUl8OB5gNQNhrAw=
Subject key identifier: 04:79:0C:93:71:8B:65:41:D8:53:2B:9E:67:67:55:E4:CB:0D:1D:06
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 01888F870CDA26C3F59BC70B89B3EDDEB8C0
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/BHkMk3GLZUHYUyueZ2dV5MsNHQY.roa
Signing time: Tue 06 Jun 2023 07:06:12 +0000
ROA not before: Tue 06 Jun 2023 07:06:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213370
IP address blocks: 171.22.16.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:8f:87:0c:da:26:c3:f5:9b:c7:0b:89:b3:ed:de:b8:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jun 6 07:06:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=04790c93718b6541d8532b9e676755e4cb0d1d06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:5b:c0:40:32:96:a0:4f:2f:b8:f5:de:b1:7b:
b0:f8:6c:97:d0:7f:ef:59:96:4e:55:13:30:bd:8e:
2d:f9:d7:35:9d:52:aa:d2:e6:7d:42:6b:83:e1:59:
bc:9e:4f:73:23:c0:76:8b:68:69:70:c5:7b:b0:af:
31:13:8d:9e:2f:de:de:de:50:6d:db:e4:8f:42:3d:
54:41:c0:d7:82:09:73:6c:98:23:33:be:4a:dd:93:
9f:0e:d8:80:48:20:0c:61:52:fe:0b:4a:a8:b7:5c:
e9:6a:1b:2e:da:99:4d:c2:e3:ce:5e:48:02:1b:1f:
9e:45:02:e1:7f:71:fe:cd:d3:17:71:ce:e9:bd:06:
d5:d8:d5:11:44:99:fb:50:56:18:56:1f:c3:e8:49:
5e:5b:b3:35:58:2f:0f:72:ad:73:db:a6:cb:68:79:
d2:15:d0:4f:20:59:75:29:22:f2:28:9c:c2:28:f7:
6c:53:a4:6f:56:09:7c:86:89:3f:4f:63:cd:7f:52:
52:4b:dc:f3:03:77:dc:9b:78:fb:04:dd:7f:4c:76:
46:27:13:ce:a7:34:d4:a6:6f:b8:b6:1a:37:23:60:
38:cb:f7:87:9a:04:23:03:f0:95:12:d5:45:47:ab:
40:7e:61:2f:c9:4d:ee:78:f7:91:8d:a0:cd:3b:dd:
d1:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:79:0C:93:71:8B:65:41:D8:53:2B:9E:67:67:55:E4:CB:0D:1D:06
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/BHkMk3GLZUHYUyueZ2dV5MsNHQY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
171.22.16.0/24
Signature Algorithm: sha256WithRSAEncryption
99:a5:08:76:2d:7e:ff:84:97:f2:2c:34:1a:f1:9a:29:65:d6:
9b:b3:62:18:c3:41:6c:ee:40:86:69:e6:34:4d:72:c5:a8:21:
f2:a5:ef:11:74:a2:01:fb:48:61:16:9b:4e:00:aa:24:e3:34:
24:67:28:be:d2:d2:ba:68:73:96:80:90:d0:b5:97:a7:e6:d6:
dd:fd:ae:4a:fb:a5:1a:c6:50:14:d5:cd:b5:f7:30:ee:ef:10:
6c:d3:69:c4:c7:67:5b:5b:bb:9d:7d:0f:1e:d4:cc:cd:44:cd:
61:2c:49:3f:32:06:49:e2:a9:46:ff:ed:54:1d:a8:87:88:18:
dd:66:2d:ba:2a:70:79:bd:a3:c5:55:69:fd:74:78:e3:71:86:
b0:da:23:41:49:e6:47:92:e8:82:11:28:2d:fd:38:3d:2e:a0:
24:06:21:4b:1f:49:9d:24:3a:3b:c8:f7:96:1e:e5:34:41:ed:
5a:df:f6:fa:06:0c:94:e4:19:88:72:b0:a9:70:d0:63:58:d4:
30:2e:ff:79:26:5f:c8:3a:bb:f6:6a:2d:c8:4a:25:1e:e3:01:
94:61:e0:e5:7e:5e:68:29:55:9e:4e:aa:8e:85:9b:34:a1:ab:
3d:99:15:ea:66:af:57:4a:71:99:1f:68:2e:58:37:a3:e1:b0:
4c:9f:8f:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 4 14:49:31 2023 by rpki-client on console-ams.rpki-client.org