Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/8c0473-e7d0-4e43-a7f9-797f4cc4b500/1/bdBannmtKH3pybrCtkK4bwuHVXY.roa
File: bdBannmtKH3pybrCtkK4bwuHVXY.roa (raw, json)
Hash identifier: cMbCUoJeXAy+At8mShokxrJY7yjlOxFUaAFR/jtQzck=
Subject key identifier: 6D:D0:5A:9E:79:AD:28:7D:E9:C9:BA:C2:B6:42:B8:6F:0B:87:55:76
Certificate issuer: /CN=6c1bec3f9358668a87d1a16c4722f41e3c2381e2
Certificate serial: 01865432119BC8D588D8BBAFB8FC746806DC
Authority key identifier: 6C:1B:EC:3F:93:58:66:8A:87:D1:A1:6C:47:22:F4:1E:3C:23:81:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bBvsP5NYZoqH0aFsRyL0HjwjgeI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/8c0473-e7d0-4e43-a7f9-797f4cc4b500/1/bdBannmtKH3pybrCtkK4bwuHVXY.roa
Signing time: Wed 15 Feb 2023 08:30:12 +0000
ROA not before: Wed 15 Feb 2023 08:30:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21351
IP address blocks: 185.161.8.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:54:32:11:9b:c8:d5:88:d8:bb:af:b8:fc:74:68:06:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c1bec3f9358668a87d1a16c4722f41e3c2381e2
Validity
Not Before: Feb 15 08:30:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6dd05a9e79ad287de9c9bac2b642b86f0b875576
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:7a:32:cd:11:82:f0:0f:50:9d:02:eb:b8:c0:
6a:d7:57:4c:de:53:2e:04:fe:b0:54:38:99:0a:2b:
90:a5:da:92:f2:72:97:d0:d4:61:14:42:9f:69:71:
ca:d7:37:9c:b4:83:ea:1b:e0:7c:29:fd:78:94:d1:
21:24:87:34:46:a4:94:57:1c:ca:c8:23:01:42:3e:
2c:85:ce:9d:4f:1a:d3:90:44:76:46:86:bd:15:a5:
56:12:af:b9:7f:7d:0d:88:af:70:a9:51:7c:b8:18:
bd:b7:8b:de:ab:18:2b:03:fa:c3:bc:3d:5c:3b:d1:
d0:96:9a:63:f6:40:07:08:d1:8e:d2:e2:1a:24:67:
42:c4:d7:e8:5b:05:10:59:ef:3e:b9:93:80:59:52:
71:01:4a:07:8f:52:34:18:1e:ec:7d:09:f3:ff:16:
ea:38:09:42:bb:db:22:54:02:d6:62:ad:7c:c7:66:
dd:84:ca:05:ec:e3:3d:53:5c:ef:f3:75:d5:29:34:
e1:83:7c:72:07:6a:eb:05:05:9f:71:b8:86:ec:1c:
12:c4:5b:68:84:0e:4b:31:1d:af:c7:a1:07:da:30:
09:a1:91:86:c2:97:5e:d3:d3:88:fd:d2:d4:48:76:
38:28:c9:ba:25:3b:4e:13:0f:ba:89:56:90:74:4b:
f5:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:D0:5A:9E:79:AD:28:7D:E9:C9:BA:C2:B6:42:B8:6F:0B:87:55:76
X509v3 Authority Key Identifier:
keyid:6C:1B:EC:3F:93:58:66:8A:87:D1:A1:6C:47:22:F4:1E:3C:23:81:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bBvsP5NYZoqH0aFsRyL0HjwjgeI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/8c0473-e7d0-4e43-a7f9-797f4cc4b500/1/bdBannmtKH3pybrCtkK4bwuHVXY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/8c0473-e7d0-4e43-a7f9-797f4cc4b500/1/bBvsP5NYZoqH0aFsRyL0HjwjgeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.161.8.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:62:d6:bf:78:94:ec:83:d3:bd:09:8e:1d:71:14:7e:b2:87:
ec:4d:99:f4:02:15:bf:e7:0b:8a:61:76:5d:63:9d:95:3d:9b:
c2:87:8e:82:47:bf:fe:11:ae:55:6e:d0:cb:9f:6d:17:35:d1:
f7:55:72:eb:6b:16:53:2e:8f:b1:09:4e:62:d8:5a:b0:d7:b6:
ff:57:ed:5d:a4:40:f9:a6:e5:98:b2:a2:be:d5:b8:8a:4b:f2:
54:7e:0f:78:fa:6a:a7:61:10:2e:7d:9c:9e:a5:06:2b:15:a4:
32:cd:3f:d9:b0:d0:a4:09:5d:16:a7:2c:1f:46:60:71:ed:9a:
18:47:f8:af:30:7d:13:ea:94:cd:cf:26:92:41:cd:4f:c7:1a:
b8:53:2b:30:88:12:65:83:d2:29:4a:fe:f8:bd:cf:33:8c:03:
17:bf:92:34:fd:ad:c4:95:ab:cb:5c:69:fd:c3:f3:fb:cf:52:
b2:83:ab:1b:9d:90:11:d3:25:16:e9:35:ac:db:32:9b:c9:b8:
0b:b4:22:e6:45:43:bc:c1:e8:32:79:11:f1:5e:3c:1e:c5:c8:
05:ad:e2:9f:45:1b:60:6b:95:03:5e:ff:81:58:7f:9f:b5:00:
c3:b2:ac:e8:9b:de:9b:86:e9:b7:31:ab:87:56:ec:20:0c:fb:
d0:64:77:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:06 2024 by rpki-client on console-ams.rpki-client.org