Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/80c387-b20b-430a-a5e6-6e3074c6c663/1/bpdtyk0GDAWLKOVRsfN09ywALtA.roa
File: bpdtyk0GDAWLKOVRsfN09ywALtA.roa (raw, json)
Hash identifier: l0cs7r1dWW0/6xT4zBy6+HYYobvJjVkN+GgAyS+MJBU=
Subject key identifier: 6E:97:6D:CA:4D:06:0C:05:8B:28:E5:51:B1:F3:74:F7:2C:00:2E:D0
Certificate issuer: /CN=4722aea0ef4c0667db819f5d5a3daea6399f038c
Certificate serial: 01856D4ACC987DDA1762E8F611CBD3B55DF1
Authority key identifier: 47:22:AE:A0:EF:4C:06:67:DB:81:9F:5D:5A:3D:AE:A6:39:9F:03:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RyKuoO9MBmfbgZ9dWj2upjmfA4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/80c387-b20b-430a-a5e6-6e3074c6c663/1/bpdtyk0GDAWLKOVRsfN09ywALtA.roa
Signing time: Sun 01 Jan 2023 12:24:56 +0000
ROA not before: Sun 01 Jan 2023 12:24:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41075
IP address blocks: 185.6.136.0/22 maxlen: 22
94.199.176.0/23 maxlen: 24
185.234.180.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 13 Jun 2023 13:11:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:4a:cc:98:7d:da:17:62:e8:f6:11:cb:d3:b5:5d:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4722aea0ef4c0667db819f5d5a3daea6399f038c
Validity
Not Before: Jan 1 12:24:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6e976dca4d060c058b28e551b1f374f72c002ed0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:da:a8:53:a8:18:ca:3a:a0:06:2e:de:99:08:
99:f7:71:34:8b:0d:a7:a5:e5:c4:a7:e0:9d:97:89:
31:64:57:23:22:2c:d3:18:b7:4a:ee:25:e0:f5:00:
c0:22:fd:b6:11:00:5a:67:b3:c5:22:1e:26:57:14:
17:d3:41:eb:31:ab:10:84:30:eb:56:7a:6a:3b:8f:
c0:17:6f:a4:46:a9:d2:3b:4a:7a:64:b9:f5:3e:d3:
eb:6b:1f:85:e9:b7:e2:b1:90:54:c6:e5:d8:1e:79:
f9:70:5c:33:69:6a:04:13:4a:df:57:3d:23:b7:54:
d4:7f:cb:a9:50:e7:0c:e9:8c:a6:f1:3f:e0:de:6b:
ed:eb:02:76:f9:76:50:0e:75:b0:18:31:10:21:a2:
12:66:c9:84:b9:7d:79:fd:17:50:dc:b4:12:39:66:
4d:e1:53:c6:60:79:ed:82:ac:22:14:75:75:6a:ac:
e7:8b:85:08:5d:89:98:38:88:68:98:6a:11:8d:08:
43:13:52:8b:e8:3b:1e:a6:aa:2a:72:47:82:92:98:
47:5b:d9:57:63:21:f9:33:6b:3e:17:61:7d:b7:f9:
42:d3:77:7f:2d:13:2c:eb:ea:c8:75:d1:97:55:56:
3d:2e:31:10:fa:42:b8:1e:18:a6:53:42:aa:e4:84:
4a:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:97:6D:CA:4D:06:0C:05:8B:28:E5:51:B1:F3:74:F7:2C:00:2E:D0
X509v3 Authority Key Identifier:
keyid:47:22:AE:A0:EF:4C:06:67:DB:81:9F:5D:5A:3D:AE:A6:39:9F:03:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RyKuoO9MBmfbgZ9dWj2upjmfA4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/80c387-b20b-430a-a5e6-6e3074c6c663/1/bpdtyk0GDAWLKOVRsfN09ywALtA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/80c387-b20b-430a-a5e6-6e3074c6c663/1/RyKuoO9MBmfbgZ9dWj2upjmfA4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.199.176.0/23
185.6.136.0/22
185.234.180.0/22
Signature Algorithm: sha256WithRSAEncryption
5b:88:50:06:b8:dc:c8:41:e8:01:a6:07:54:ad:5c:31:aa:5f:
00:b2:49:27:00:3e:86:1f:83:fb:80:3a:03:39:4e:0b:aa:e3:
44:08:58:e8:61:5b:a9:f8:88:92:74:4a:37:2a:95:b6:ff:ef:
d6:1f:f7:43:25:48:34:c5:70:ef:34:cf:d2:a0:44:89:41:e9:
8a:51:74:23:22:7d:f3:83:f8:6b:70:cd:e2:9d:5b:a6:2e:35:
99:bf:1e:db:b5:b9:dc:f7:f0:d4:1c:02:dd:0d:34:b3:b2:b7:
44:0e:a5:6a:75:7c:9b:67:9c:d3:e8:f5:5e:ea:d0:9b:0d:ed:
04:58:ba:e0:04:46:77:8c:cd:b2:e7:bd:32:f1:80:f6:1e:71:
47:90:95:13:a4:16:f5:b7:5e:ea:c4:20:1c:11:c8:1e:75:78:
be:bf:ca:d4:81:e4:ff:3e:dd:b8:cf:d3:88:da:a4:dc:47:db:
61:71:ba:fb:12:ba:98:5a:19:00:c5:44:39:ac:4b:22:ff:e7:
b0:40:49:f0:cd:a5:22:00:bc:3a:f7:52:4c:fa:55:df:c8:d7:
52:3e:95:7f:55:60:3e:23:cc:14:db:79:3c:4f:22:e8:01:c4:
2d:0c:8e:79:f6:65:66:73:b9:bd:35:b2:fa:b6:dd:75:4f:19:
d1:6b:15:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:22 2024 by rpki-client on console-ams.rpki-client.org