Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/bwZndc0rDZ137hDuovWN9_-px_U.roa
File: bwZndc0rDZ137hDuovWN9_-px_U.roa (raw, json)
Hash identifier: g229bIeSdQzE4CSwGTy3Jx7OVj20T4gov9s4xHmFnpQ=
Subject key identifier: 6F:06:67:75:CD:2B:0D:9D:77:EE:10:EE:A2:F5:8D:F7:FF:A9:C7:F5
Certificate issuer: /CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Certificate serial: 0188953D25D4681AA0D29BD74AAAF762D631
Authority key identifier: 05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/bwZndc0rDZ137hDuovWN9_-px_U.roa
Signing time: Wed 07 Jun 2023 09:43:12 +0000
ROA not before: Wed 07 Jun 2023 09:43:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7155
IP address blocks: 82.103.105.0/24 maxlen: 24
195.34.109.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:29:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:95:3d:25:d4:68:1a:a0:d2:9b:d7:4a:aa:f7:62:d6:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Validity
Not Before: Jun 7 09:43:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6f066775cd2b0d9d77ee10eea2f58df7ffa9c7f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:93:6e:1a:6d:f3:eb:16:2c:cd:84:70:4e:6b:
d1:77:67:d5:70:55:49:68:c0:0e:5f:78:a6:12:96:
2d:ac:dc:3d:5a:af:8b:6d:f9:08:7e:c0:ca:ba:97:
18:73:6a:7e:3f:16:c7:72:c2:1a:64:f3:bb:81:d1:
cf:7b:65:5f:96:aa:dd:84:80:4b:a6:c0:93:65:f4:
26:30:6e:c9:13:ee:ee:c2:d2:93:fe:18:26:9a:80:
c1:38:64:ce:21:2a:d0:a9:cc:34:a4:2d:cd:e5:b0:
2e:57:54:d1:60:70:f3:58:8f:ba:f2:a3:ee:fd:59:
df:86:43:fc:93:a3:e5:7f:03:a6:f5:15:c1:02:37:
b1:b8:7a:14:e0:63:5c:1d:21:a3:ca:50:c8:ee:b9:
b0:45:cb:0f:87:38:71:9e:e9:70:6f:ab:ad:a7:2a:
56:22:a5:e2:6e:5b:91:7a:38:49:c1:81:71:13:57:
76:f9:1b:41:76:85:d5:72:81:a5:28:4d:af:b4:aa:
e8:95:e1:c2:35:eb:69:65:4d:03:1d:65:89:5b:4a:
f2:60:7b:c6:ef:28:31:9a:22:bf:df:51:65:92:cd:
6e:a9:09:d4:43:f9:aa:98:12:42:e3:68:89:08:27:
d9:84:3e:d8:54:af:f8:d1:28:38:59:94:62:f3:ff:
ba:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:06:67:75:CD:2B:0D:9D:77:EE:10:EE:A2:F5:8D:F7:FF:A9:C7:F5
X509v3 Authority Key Identifier:
keyid:05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/bwZndc0rDZ137hDuovWN9_-px_U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/BUjO3xcCntmKEIETxsEJ7KzNguw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.103.105.0/24
195.34.109.0/24
Signature Algorithm: sha256WithRSAEncryption
92:ce:55:f2:34:68:11:4e:24:29:3e:3d:13:f9:1c:d3:85:90:
0c:74:56:eb:0f:41:b9:90:9b:dc:63:69:0f:29:eb:33:af:14:
0d:39:a8:4b:f3:2f:c6:ff:74:03:a1:f0:69:6e:f6:16:c1:26:
9f:62:3a:b9:ad:18:48:64:4e:17:44:b8:66:a4:02:7a:57:24:
a8:13:e8:53:e3:f1:4d:cf:7b:1a:41:5e:44:2c:a3:52:5f:34:
52:fb:42:a9:26:4a:53:b4:16:31:58:30:10:d9:67:4c:3e:85:
68:9e:80:e3:17:02:3e:29:16:a7:89:84:89:62:5a:4a:9f:f7:
5b:00:e1:b3:44:6c:31:c7:83:29:8b:ca:19:18:57:32:0d:84:
d4:90:da:e0:02:31:89:9f:8b:60:a6:34:d8:56:81:cb:b9:b9:
40:1a:88:70:05:5f:ce:7f:6c:d2:06:15:93:3c:97:80:b3:54:
18:fa:34:17:eb:56:9b:77:92:13:7a:80:3d:05:7a:ba:85:fd:
0f:09:21:43:41:23:b3:d8:88:4d:08:b3:67:0b:20:0c:35:c7:
2d:c0:f6:3b:e8:c4:04:43:58:82:ba:a5:ce:31:91:5d:59:f4:
07:4b:2d:56:28:7c:bd:ff:2c:c0:84:86:64:5a:1a:29:2e:5d:
89:a9:2b:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:07 2024 by rpki-client on console-fra.rpki-client.org