Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/bcnT8_crmZ66IlxiyFueIOK5kw4.roa
File: bcnT8_crmZ66IlxiyFueIOK5kw4.roa (raw, json)
Hash identifier: gbVDRiQdtlmQ9uG8pZYfOuIkamLHAqrpwfEk8E8ytGM=
Subject key identifier: 6D:C9:D3:F3:F7:2B:99:9E:BA:22:5C:62:C8:5B:9E:20:E2:B9:93:0E
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 01919905DAE746916C36A93FE9FA882E2C85
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/bcnT8_crmZ66IlxiyFueIOK5kw4.roa
Signing time: Wed 28 Aug 2024 12:46:23 +0000
ROA not before: Wed 28 Aug 2024 12:46:23 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207459
IP address blocks: 45.66.228.0/24 maxlen: 24
193.149.28.0/24 maxlen: 24
193.149.29.0/24 maxlen: 24
193.149.30.0/24 maxlen: 24
193.149.31.0/24 maxlen: 24
194.180.36.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 09 Sep 2024 10:43:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:99:05:da:e7:46:91:6c:36:a9:3f:e9:fa:88:2e:2c:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Aug 28 12:46:23 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6dc9d3f3f72b999eba225c62c85b9e20e2b9930e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:b0:1f:60:bf:e2:6d:81:ee:dd:c9:f4:9b:41:
c8:45:a9:e4:1b:06:40:fb:15:9c:ba:2c:42:e9:7a:
c6:7c:ea:1d:aa:81:0d:c6:ae:20:73:d5:d0:17:f4:
89:1a:e4:57:2f:6b:a2:19:2f:28:1a:51:c5:ea:b0:
08:21:e6:ab:b4:73:16:bb:1a:f5:27:dd:f6:5a:20:
32:c6:4b:cd:73:d0:9a:33:6b:a6:6e:e6:86:a7:68:
71:a7:d0:c6:a3:f8:91:b8:93:c4:3c:bd:6e:02:9f:
78:b1:79:32:7b:84:bf:9b:54:21:98:65:e7:9f:dd:
e9:ed:48:51:2b:0d:a2:e8:9c:f7:75:6a:dc:b7:02:
92:bf:f6:44:a7:af:ef:a4:a6:d2:48:18:8d:c3:ab:
06:c3:c3:f9:d6:aa:9f:44:70:6d:e7:59:86:9c:34:
de:28:b3:18:15:0e:72:68:d2:e1:89:c4:f5:40:38:
30:3e:98:32:a1:67:df:ad:e6:8e:c5:eb:5a:08:1c:
9f:3c:01:84:a2:4e:44:8d:c1:3f:9c:df:97:5f:61:
6a:eb:99:c2:88:36:98:63:15:3c:19:d3:f1:04:90:
ff:0b:f4:2a:2f:71:27:97:98:de:6c:98:b1:81:d9:
2d:6c:ac:26:24:26:ae:02:23:09:85:0d:59:27:4e:
b5:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:C9:D3:F3:F7:2B:99:9E:BA:22:5C:62:C8:5B:9E:20:E2:B9:93:0E
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/bcnT8_crmZ66IlxiyFueIOK5kw4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.66.228.0/24
193.149.28.0/22
194.180.36.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:fe:55:d9:6c:2f:26:f0:eb:9c:89:98:38:b9:0a:0f:8c:7e:
fc:b8:f2:17:f6:82:54:72:15:4a:15:48:ca:72:4e:73:48:9d:
24:e3:da:2b:9f:12:9f:6b:30:86:25:76:35:91:a1:cf:4f:fa:
83:94:88:1d:df:b9:64:34:d5:d9:3f:ea:28:b1:8d:71:bb:9f:
a3:0b:64:5f:36:7a:a8:c1:59:dc:73:4b:0e:b6:bb:c6:c4:13:
92:f2:d9:25:83:e0:c3:96:4c:bc:e8:f9:39:2a:c1:fa:66:af:
d4:c6:e2:ab:8e:e7:df:86:9a:3e:0d:db:ed:23:82:41:f9:cb:
f6:39:75:c6:86:4b:13:30:59:6f:6d:d5:53:83:48:00:3a:5b:
41:b3:67:fb:b2:9c:79:99:93:0c:a0:28:89:ef:18:10:9f:b7:
2d:4e:6a:5b:29:8b:df:7d:32:c7:57:1a:36:cd:91:24:d0:2e:
65:8d:de:b2:d3:06:67:06:d2:b1:e4:92:04:67:d0:c1:c7:41:
82:1f:38:a1:31:fb:ba:ab:ce:43:5c:b5:37:0a:6b:16:52:0b:
a7:62:ac:3e:5d:2c:90:c6:86:76:e2:8a:c5:8d:e7:b4:83:d6:
90:a2:91:c4:d5:42:c5:c2:61:d2:4f:49:09:38:63:19:f9:9f:
d2:21:e1:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 9 12:52:54 2024 by rpki-client on console-ams.rpki-client.org