Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/294e84-cfc5-45a4-a5cd-33b7459975e0/1/bcrvCZjVdtN5D_nWR7lxrkIBUtA.roa
File: bcrvCZjVdtN5D_nWR7lxrkIBUtA.roa (raw, json)
Hash identifier: ozMimpIKqOTGN7JSS5adxqQRCg6ux2weM+aQamcpzy4=
Subject key identifier: 6D:CA:EF:09:98:D5:76:D3:79:0F:F9:D6:47:B9:71:AE:42:01:52:D0
Certificate issuer: /CN=5324defbaade93e998e13a942029dd593b8b2ea3
Certificate serial: 018570B062107B3FD4F42D657A9ECDB27A9D
Authority key identifier: 53:24:DE:FB:AA:DE:93:E9:98:E1:3A:94:20:29:DD:59:3B:8B:2E:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UyTe-6rek-mY4TqUICndWTuLLqM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/294e84-cfc5-45a4-a5cd-33b7459975e0/1/bcrvCZjVdtN5D_nWR7lxrkIBUtA.roa
Signing time: Mon 02 Jan 2023 04:14:45 +0000
ROA not before: Mon 02 Jan 2023 04:14:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49805
IP address blocks: 185.118.141.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:b0:62:10:7b:3f:d4:f4:2d:65:7a:9e:cd:b2:7a:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5324defbaade93e998e13a942029dd593b8b2ea3
Validity
Not Before: Jan 2 04:14:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6dcaef0998d576d3790ff9d647b971ae420152d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:79:93:af:83:15:ae:56:4d:a9:28:dd:1e:1c:
53:51:10:fc:c8:9f:2c:fa:93:5d:59:41:d4:5f:a1:
ca:21:e0:50:f1:bd:44:2f:16:12:fc:db:7a:12:81:
15:a7:94:10:32:19:4c:36:ad:6f:05:fb:3a:c4:4b:
30:4e:ba:77:a7:d2:5f:0c:a9:93:94:d5:92:a1:cb:
96:09:0b:db:4c:b9:47:b4:54:39:4b:0e:57:2d:fa:
84:24:aa:2c:14:3f:10:07:6f:7e:f3:e3:06:04:f2:
57:6a:36:cb:78:d1:c2:31:80:b1:14:f0:9a:b2:cf:
03:51:28:a2:41:9b:d8:17:fb:1b:1a:0f:19:1a:55:
c8:6b:70:e1:a6:29:26:56:e4:9f:7c:f1:36:55:07:
64:36:6d:6b:3d:67:4a:f0:c8:9c:b2:a2:5a:9c:90:
9d:64:96:0f:4f:4c:15:13:de:93:0d:ad:0b:51:00:
9a:e1:46:1c:ea:65:74:f7:40:b4:b9:56:8d:41:75:
19:a0:97:2c:1c:2f:a3:42:63:11:4a:d5:74:5b:6b:
a4:58:fb:94:ae:24:09:8e:22:61:73:14:b2:4d:dc:
30:a6:a0:be:10:2c:5c:5f:4e:f7:80:67:a1:3a:d7:
50:5e:34:e2:3f:2b:82:27:61:7f:ce:44:8e:a1:c3:
9d:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:CA:EF:09:98:D5:76:D3:79:0F:F9:D6:47:B9:71:AE:42:01:52:D0
X509v3 Authority Key Identifier:
keyid:53:24:DE:FB:AA:DE:93:E9:98:E1:3A:94:20:29:DD:59:3B:8B:2E:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UyTe-6rek-mY4TqUICndWTuLLqM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/294e84-cfc5-45a4-a5cd-33b7459975e0/1/bcrvCZjVdtN5D_nWR7lxrkIBUtA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/294e84-cfc5-45a4-a5cd-33b7459975e0/1/UyTe-6rek-mY4TqUICndWTuLLqM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.118.141.0/24
Signature Algorithm: sha256WithRSAEncryption
09:84:81:7b:6e:3c:3c:f2:49:34:1b:7b:d7:f6:8a:8c:a6:b5:
58:e6:01:4b:92:e4:64:df:55:57:95:93:b1:d9:53:f2:02:e4:
62:3c:e4:fe:74:77:4a:03:72:92:12:0b:74:d3:6c:55:29:ed:
2a:06:83:03:c3:e7:7e:b7:3d:af:fc:88:19:c0:00:d1:de:b8:
5b:13:d2:19:cb:dd:8c:dc:0b:98:8b:6a:b7:84:3b:c7:17:ae:
19:60:08:19:ae:d5:f1:89:a5:8e:56:1e:3e:c0:e8:2c:39:a4:
bc:91:44:55:e1:9f:06:8e:67:68:83:6d:b9:d9:a1:ae:af:27:
b3:9e:ae:dc:1b:12:c3:1a:35:4a:0c:04:d7:8f:fd:af:23:31:
14:65:ef:45:5e:17:d9:e1:8c:03:e5:68:10:30:ac:4c:0a:f1:
a8:4a:6b:b3:c9:4a:6c:a6:00:3b:06:5c:10:50:e5:ee:80:a1:
30:42:03:ee:9c:4b:44:1d:8b:98:e7:13:b4:13:7c:ac:d3:f1:
23:d6:d9:6f:b9:b3:c9:3a:33:2c:00:e7:bd:65:ff:86:b4:99:
c1:66:b1:d2:54:80:f8:54:c6:16:bf:db:eb:f9:e2:36:da:c4:
ba:b9:3c:50:0b:87:b0:d5:f6:75:3e:47:9d:29:74:72:4f:16:
e2:86:96:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:09 2024 by rpki-client on console-ams.rpki-client.org