Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/b19bd8-e1d8-4388-a3b6-12255e3612ec/1/BSl1fmn977pCUk12sSnsRCVx2w4.roa
File: BSl1fmn977pCUk12sSnsRCVx2w4.roa (raw, json)
Hash identifier: IQjvDm4Dh8uu/YUox+SugwX8Y3GEYCpKU2xRPLnQuHA=
Subject key identifier: 05:29:75:7E:69:FD:EF:BA:42:52:4D:76:B1:29:EC:44:25:71:DB:0E
Certificate issuer: /CN=bde2db8498ee8f7b3ab5caae83829596620702c1
Certificate serial: 018571F0EBC674AD375906A196CFB157CF9D
Authority key identifier: BD:E2:DB:84:98:EE:8F:7B:3A:B5:CA:AE:83:82:95:96:62:07:02:C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/veLbhJjuj3s6tcqug4KVlmIHAsE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/b19bd8-e1d8-4388-a3b6-12255e3612ec/1/BSl1fmn977pCUk12sSnsRCVx2w4.roa
Signing time: Mon 02 Jan 2023 10:04:52 +0000
ROA not before: Mon 02 Jan 2023 10:04:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41325
IP address blocks: 84.38.48.0/20 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:f0:eb:c6:74:ad:37:59:06:a1:96:cf:b1:57:cf:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bde2db8498ee8f7b3ab5caae83829596620702c1
Validity
Not Before: Jan 2 10:04:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0529757e69fdefba42524d76b129ec442571db0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:94:8f:3f:f1:e3:e7:6d:3b:ec:bd:31:32:3c:
0d:29:9d:9f:b0:e9:ef:27:3f:24:c5:c3:50:10:d8:
8d:90:fa:4a:32:31:3e:cb:39:23:90:55:e6:0f:dd:
33:24:88:8f:8a:0e:62:88:1e:51:e4:60:07:38:4a:
ef:6f:c3:e1:bf:65:00:d3:af:27:2d:18:7d:5c:37:
b8:82:da:04:c9:b3:07:ec:b0:da:1a:0c:b3:26:31:
5d:e6:d7:28:6a:4a:5a:46:cc:74:4d:40:42:55:12:
0d:95:c3:2c:ea:e1:f3:b2:b0:ba:24:6a:f0:4c:f6:
36:09:23:b3:29:c6:54:59:06:eb:7d:90:ad:5a:29:
1c:c1:69:19:1e:ca:77:53:02:11:6b:54:e7:30:6f:
f6:57:0e:2a:70:9d:6f:d6:31:2c:97:97:13:dd:72:
ad:17:09:51:a4:68:85:fa:37:ec:0b:f5:9f:9d:7c:
2f:6f:bc:8e:2f:2e:e2:72:db:2c:35:2c:77:df:3a:
1e:75:01:61:32:2f:12:20:5f:a5:87:03:b8:b7:47:
62:47:7b:dc:ff:1b:92:85:d3:2b:3e:78:8c:a0:24:
43:de:e4:ea:0d:23:90:62:58:9e:93:2b:92:c3:91:
9c:f4:3a:68:97:b5:9e:38:b2:d5:15:68:ee:f6:82:
24:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:29:75:7E:69:FD:EF:BA:42:52:4D:76:B1:29:EC:44:25:71:DB:0E
X509v3 Authority Key Identifier:
keyid:BD:E2:DB:84:98:EE:8F:7B:3A:B5:CA:AE:83:82:95:96:62:07:02:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/veLbhJjuj3s6tcqug4KVlmIHAsE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/b19bd8-e1d8-4388-a3b6-12255e3612ec/1/BSl1fmn977pCUk12sSnsRCVx2w4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/b19bd8-e1d8-4388-a3b6-12255e3612ec/1/veLbhJjuj3s6tcqug4KVlmIHAsE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.38.48.0/20
Signature Algorithm: sha256WithRSAEncryption
38:20:24:58:66:35:39:84:1d:ff:25:00:cc:e8:a7:09:53:9c:
6a:c7:54:40:89:10:bb:1e:e5:69:94:cd:d7:e4:7b:ca:16:d2:
2b:b1:ec:85:d3:51:b1:94:58:1f:02:1d:07:a5:4f:13:65:a8:
93:c9:89:5b:2d:19:9a:84:aa:cf:73:87:97:86:b1:42:da:4b:
d2:d7:a0:25:db:1b:f7:fd:0f:6f:f8:f1:bc:62:fa:2f:b9:57:
fc:5c:85:a6:9e:8d:a6:96:50:1f:ef:6e:c4:52:27:e0:9a:18:
ad:1e:ff:7b:ef:a7:e6:e2:ad:82:6a:68:cd:21:17:3e:c2:1e:
8e:34:07:4d:ea:a4:cd:ca:27:a6:02:c3:33:6c:d2:8e:41:23:
e2:80:d5:0a:40:7b:70:73:8d:8e:c0:50:dc:9b:81:35:c8:bb:
da:af:fc:6b:cc:2a:c5:a6:50:f4:5a:b6:9f:5b:75:79:3f:f7:
e1:ce:b5:1f:90:1b:46:d5:64:8b:8c:e9:42:ce:d6:99:34:68:
93:4f:cc:1a:ac:75:07:99:e6:c0:54:48:11:b7:ca:9f:97:96:
13:88:a9:0e:1a:39:15:7f:39:9b:01:83:34:04:db:07:64:bf:
e1:77:c1:ee:db:e1:3b:b0:b0:00:c5:ce:ce:a6:57:1f:c7:52:
58:7c:fb:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 17:33:36 2024 by rpki-client on console-fra.rpki-client.org