Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/a87aec-beaa-4aeb-a48e-8f34bd391d18/1/BkThhpWoPYFDPdVnbxOFbxec3B4.roa
File: BkThhpWoPYFDPdVnbxOFbxec3B4.roa (raw, json)
Hash identifier: hYUKCv5LoZoFhGiAqV2+8RMDmM7GGBBGNeTGbnkJ1QM=
Subject key identifier: 06:44:E1:86:95:A8:3D:81:43:3D:D5:67:6F:13:85:6F:17:9C:DC:1E
Certificate issuer: /CN=a5ee926f1f1537b9be75eb4b9d792df41d25cd99
Certificate serial: 01856F54A6F4FD4CA921F0310B4F2156C12A
Authority key identifier: A5:EE:92:6F:1F:15:37:B9:BE:75:EB:4B:9D:79:2D:F4:1D:25:CD:99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pe6Sbx8VN7m-detLnXkt9B0lzZk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/a87aec-beaa-4aeb-a48e-8f34bd391d18/1/BkThhpWoPYFDPdVnbxOFbxec3B4.roa
Signing time: Sun 01 Jan 2023 21:54:56 +0000
ROA not before: Sun 01 Jan 2023 21:54:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 38998
IP address blocks: 193.111.68.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:29:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:54:a6:f4:fd:4c:a9:21:f0:31:0b:4f:21:56:c1:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a5ee926f1f1537b9be75eb4b9d792df41d25cd99
Validity
Not Before: Jan 1 21:54:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0644e18695a83d81433dd5676f13856f179cdc1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:4b:a6:90:a8:44:6a:47:9d:84:74:9a:86:1f:
25:75:d9:9c:b5:31:08:c0:f4:b0:45:6b:01:97:2a:
7d:7b:cb:17:38:45:fb:df:dc:ba:4f:bf:45:2a:df:
dc:09:13:70:e4:0f:71:17:6d:b9:f2:3e:87:a6:41:
ea:4b:ef:bb:e2:83:a7:0d:e4:f7:49:80:70:bc:00:
bb:14:91:97:48:18:89:cf:54:39:79:17:70:f0:40:
cc:4e:c4:82:a9:f3:f7:2c:d8:e8:0d:d0:46:8c:7a:
ce:0d:98:32:4e:d4:23:27:9e:59:99:d1:a3:c6:5b:
52:02:66:ab:b8:92:68:01:33:65:ad:90:35:2d:74:
2c:d7:c1:31:88:92:28:59:d7:9f:e6:76:7b:22:77:
ac:68:d3:0d:00:f6:e9:51:b6:55:5c:e5:1c:2b:9e:
0e:f3:79:6d:f2:a7:f9:ec:e3:fe:a8:81:dd:79:00:
66:9a:a3:f3:ec:6f:b2:bb:cf:73:5c:f0:d8:4f:12:
a2:f9:3e:45:3e:9f:fa:27:9e:9d:04:92:38:fd:9b:
2b:c7:b2:3d:9f:0b:2b:c6:eb:2d:1e:52:8f:17:f0:
e8:ae:cf:56:95:b7:03:29:ed:cd:2a:9e:4c:d9:6f:
b5:1e:ad:76:b1:b4:35:d6:a2:11:6a:a4:0d:81:52:
05:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:44:E1:86:95:A8:3D:81:43:3D:D5:67:6F:13:85:6F:17:9C:DC:1E
X509v3 Authority Key Identifier:
keyid:A5:EE:92:6F:1F:15:37:B9:BE:75:EB:4B:9D:79:2D:F4:1D:25:CD:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pe6Sbx8VN7m-detLnXkt9B0lzZk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/a87aec-beaa-4aeb-a48e-8f34bd391d18/1/BkThhpWoPYFDPdVnbxOFbxec3B4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/a87aec-beaa-4aeb-a48e-8f34bd391d18/1/pe6Sbx8VN7m-detLnXkt9B0lzZk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.111.68.0/23
Signature Algorithm: sha256WithRSAEncryption
65:cf:d8:8a:71:97:66:ea:26:b1:27:5a:53:76:b0:89:42:d2:
d3:17:29:8e:2b:c0:41:69:bb:8d:78:7a:a8:fc:dc:f2:99:f7:
93:28:9e:4e:c6:61:44:7a:2d:47:59:c8:24:45:ce:e2:7e:e1:
1f:e3:31:e8:13:06:7e:31:9d:28:72:e5:8d:03:08:a3:c6:3a:
d2:bd:2c:69:fa:56:62:4f:55:8d:df:7c:68:78:be:95:91:9c:
09:0d:8e:63:a5:80:0f:45:d0:9e:83:11:20:ea:39:43:4c:88:
66:cf:4d:30:af:b1:f0:1c:a4:3d:10:d1:d4:bd:1e:7f:bd:63:
42:53:a1:84:0c:b5:e5:49:ae:7f:d0:6e:84:db:f6:03:5a:d8:
cd:3f:7d:bc:1f:c1:b6:1a:ea:07:c7:7b:3c:55:c7:c8:66:54:
1a:b5:dd:37:cb:0e:f7:b0:c4:f1:67:a9:5f:16:75:50:e2:98:
0f:b1:aa:6d:2c:aa:ec:1e:a9:ac:23:cc:6c:6c:bd:67:6d:51:
be:ce:4e:9a:20:f3:0b:be:07:43:fd:c0:ce:aa:77:11:20:76:
a8:f3:86:95:51:ef:0b:78:b8:52:da:90:60:c4:64:8e:e1:dc:
86:98:12:12:92:21:f2:be:c6:57:a7:d1:47:e5:57:ff:7a:64:
8d:ff:6f:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:00 2024 by rpki-client on console-fra.rpki-client.org