Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/BTos2ei4vPGMlpsKSMkEJnjAgd8.roa
File: BTos2ei4vPGMlpsKSMkEJnjAgd8.roa (raw, json)
Hash identifier: t/N5rebtv5aneD7qkXqxHpANzfgtviN+cwcCmYhPsZk=
Subject key identifier: 05:3A:2C:D9:E8:B8:BC:F1:8C:96:9B:0A:48:C9:04:26:78:C0:81:DF
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018D26C3A4692A64EB58435E0EDE93F01A65
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/BTos2ei4vPGMlpsKSMkEJnjAgd8.roa
Signing time: Sat 20 Jan 2024 12:06:12 +0000
ROA not before: Sat 20 Jan 2024 12:06:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210106
IP address blocks: 45.144.155.0/24 maxlen: 24
93.123.16.0/24 maxlen: 24
93.123.22.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 17 Jul 2024 13:43:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:26:c3:a4:69:2a:64:eb:58:43:5e:0e:de:93:f0:1a:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jan 20 12:06:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=053a2cd9e8b8bcf18c969b0a48c9042678c081df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:8b:9c:12:42:c3:44:73:b8:30:65:17:b3:ef:
26:e0:d5:c7:2b:a6:1b:0b:16:bd:3a:f4:03:b3:f4:
4b:31:b4:a0:b4:f7:fc:72:d7:fb:27:d6:94:b5:61:
23:ba:48:40:de:f1:44:c5:1e:c5:b7:0b:31:fd:69:
fe:6b:8c:10:f1:59:5d:74:4f:4e:9c:2e:db:b0:9b:
58:88:97:9f:69:8b:15:2d:28:4d:64:ca:0e:4b:2f:
e6:62:f3:07:a8:4c:a4:c5:c6:8e:4c:dc:69:cb:ca:
62:41:1d:ee:99:ad:e1:b6:ae:ed:9c:64:b5:44:be:
65:c0:63:55:65:63:26:3b:69:e7:89:ee:9c:6f:f1:
cf:f3:70:f7:d0:2d:f0:e8:fd:79:f0:63:a8:c4:0e:
e5:92:7a:b7:08:0a:b4:e7:34:ca:3f:a6:2d:ef:06:
e6:25:31:05:aa:98:02:d0:6d:7a:77:03:bd:28:cb:
cc:b7:d5:a6:63:9d:44:01:49:af:89:29:98:8c:ca:
1e:12:3a:05:38:5c:cb:79:32:25:07:1f:dc:fd:26:
aa:63:be:c7:4c:74:a9:e2:36:b3:90:ec:43:2a:93:
cf:88:45:d7:67:ce:e0:3a:ba:8f:e7:52:7f:7a:cf:
22:13:a7:e8:f2:a7:aa:98:8c:0b:1f:8f:0f:c5:db:
93:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:3A:2C:D9:E8:B8:BC:F1:8C:96:9B:0A:48:C9:04:26:78:C0:81:DF
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/BTos2ei4vPGMlpsKSMkEJnjAgd8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.144.155.0/24
93.123.16.0/24
93.123.22.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:04:45:3b:51:a1:9f:41:05:fd:a4:97:23:34:4e:5a:e3:69:
bc:1b:f4:b8:81:88:88:6e:bc:da:c0:08:d4:91:ba:29:16:be:
69:67:df:e7:fa:bb:cc:62:5d:41:6d:39:0a:09:b6:ee:15:25:
fb:dd:f1:fd:0d:0b:01:0f:db:0b:79:5d:6d:d1:2f:de:de:44:
45:6c:c9:2c:3f:86:a7:8c:55:33:83:d2:07:66:53:02:70:f0:
d7:aa:da:5a:bf:e1:ec:54:ee:67:d8:4d:55:fc:95:34:39:1b:
65:2f:cb:b9:c8:a7:58:73:7f:60:b5:b4:97:2d:15:74:7b:1e:
1c:fa:c8:77:82:76:6e:2c:e8:ad:ee:e2:7d:1e:e5:fa:9c:b5:
68:d0:29:e2:b1:4a:ac:23:f6:bf:35:d1:ed:8b:ac:7c:9b:77:
36:96:44:ec:ce:e6:18:07:51:65:de:11:44:9b:bb:89:44:a2:
8b:dd:f2:00:26:35:f4:bb:ab:f8:f7:67:43:7c:0f:d9:eb:2d:
e4:8f:3b:35:a1:74:ee:dc:d6:4e:99:29:c5:c2:99:3d:32:94:
03:8a:98:f2:f6:ce:7e:e3:61:0a:75:04:5c:c4:6a:ff:05:df:
24:b5:82:71:5f:30:b1:e4:3e:44:ff:75:d2:83:be:9a:71:9a:
d6:e3:29:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 17 17:08:46 2024 by rpki-client on console-ams.rpki-client.org