Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/c41c74-0b82-40e7-a0bf-0aae1ccd874b/1/Bgv6OfsXPAEC-mcQdgkeSzxy8-E.roa
File: Bgv6OfsXPAEC-mcQdgkeSzxy8-E.roa (raw, json)
Hash identifier: Mui1+CmmMzK2Umw/wZko0jjwqCFsDCrgUeOY0BogZlQ=
Subject key identifier: 06:0B:FA:39:FB:17:3C:01:02:FA:67:10:76:09:1E:4B:3C:72:F3:E1
Certificate issuer: /CN=78b04fbafaa36b71fcd36eca50b5fe0e88dd3551
Certificate serial: 018570D53A701A97177D94AFBB8BAA246CA9
Authority key identifier: 78:B0:4F:BA:FA:A3:6B:71:FC:D3:6E:CA:50:B5:FE:0E:88:DD:35:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eLBPuvqja3H8027KULX-DojdNVE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/c41c74-0b82-40e7-a0bf-0aae1ccd874b/1/Bgv6OfsXPAEC-mcQdgkeSzxy8-E.roa
Signing time: Mon 02 Jan 2023 04:55:00 +0000
ROA not before: Mon 02 Jan 2023 04:55:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50242
IP address blocks: 109.236.112.0/20 maxlen: 24
2a02:6ca3::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:d5:3a:70:1a:97:17:7d:94:af:bb:8b:aa:24:6c:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=78b04fbafaa36b71fcd36eca50b5fe0e88dd3551
Validity
Not Before: Jan 2 04:55:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=060bfa39fb173c0102fa671076091e4b3c72f3e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:f1:b6:2b:42:41:72:fe:e6:22:61:3a:c1:9f:
e9:ad:6f:2e:30:5a:74:f4:26:10:61:a3:9b:11:5c:
d2:94:5a:e8:69:cb:fc:5f:a5:95:fa:b4:6b:fa:c5:
fc:a5:31:47:9a:8d:6e:b0:6e:19:ec:5a:7b:45:70:
13:7d:3d:54:45:35:ad:be:98:a0:5c:f0:70:64:4a:
1f:0e:2e:18:d7:af:cd:9c:0c:f5:cc:14:4d:6c:de:
93:c5:bc:1f:a2:a6:97:ac:6f:05:2b:32:22:19:71:
62:b4:97:bf:92:7e:c0:3a:c5:ad:d7:cb:2e:9a:87:
15:9f:f8:bf:ae:d0:f5:b3:c9:9e:4c:df:d4:80:08:
11:95:90:9c:d1:53:60:37:fb:ef:02:51:72:23:f6:
f6:c6:b5:a5:14:a5:1e:02:18:5f:b5:e1:8f:f1:e6:
ef:12:16:c6:d7:85:59:1f:9f:32:d0:74:2f:75:75:
58:c2:86:0f:d3:6a:16:af:0c:f4:af:e0:7e:b1:05:
b1:93:ae:9b:eb:83:77:53:97:aa:4d:11:b4:6b:36:
e4:0f:6e:73:1a:1c:91:8d:15:54:dc:3d:e8:80:59:
b1:46:10:6c:f1:bf:1f:9d:fb:54:b5:a4:39:15:e8:
c7:00:57:50:6f:22:26:d8:df:3a:a9:90:e8:02:0a:
56:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:0B:FA:39:FB:17:3C:01:02:FA:67:10:76:09:1E:4B:3C:72:F3:E1
X509v3 Authority Key Identifier:
keyid:78:B0:4F:BA:FA:A3:6B:71:FC:D3:6E:CA:50:B5:FE:0E:88:DD:35:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eLBPuvqja3H8027KULX-DojdNVE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/c41c74-0b82-40e7-a0bf-0aae1ccd874b/1/Bgv6OfsXPAEC-mcQdgkeSzxy8-E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/c41c74-0b82-40e7-a0bf-0aae1ccd874b/1/eLBPuvqja3H8027KULX-DojdNVE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.236.112.0/20
IPv6:
2a02:6ca3::/32
Signature Algorithm: sha256WithRSAEncryption
87:16:ff:e9:5f:b7:1f:68:3f:de:b3:aa:fb:b6:b7:fd:55:a1:
09:6a:3b:f4:19:af:78:d8:ce:47:f2:bd:17:51:e2:4d:a0:ef:
68:c7:91:34:77:89:c9:e0:df:20:f8:5d:bf:ce:c5:50:6a:a5:
17:70:c1:b5:88:b2:4d:8c:5b:28:ac:52:e6:89:0b:33:01:03:
0d:e9:37:38:4d:53:02:6c:3d:51:e1:55:e9:04:09:60:d2:36:
c4:81:20:65:f6:f8:c3:eb:05:2b:64:34:7f:00:9d:69:55:3c:
18:c9:ca:8c:6a:e9:9a:f6:3d:76:b4:36:8f:0c:04:6d:c5:8f:
33:1e:5a:bf:ec:dd:34:76:ca:f5:23:8c:9c:95:82:91:b2:60:
5d:85:69:7c:a9:2d:bf:61:21:eb:05:1d:76:e0:71:ac:ad:9b:
24:4c:1f:d8:84:dc:7e:ce:62:07:21:ff:23:28:b4:f8:33:02:
44:69:ce:54:36:45:0e:60:e8:98:ce:1e:c4:28:91:6e:0c:fb:
80:20:19:3f:41:e9:e9:1b:55:23:3d:75:32:3b:8d:53:e8:ff:
fb:d4:f0:0d:df:e9:20:30:3e:0b:d7:46:06:f6:e3:16:b7:16:
a3:bc:ed:45:9f:5e:a7:37:0e:c9:fd:d7:ad:c9:2a:f9:69:7f:
f1:4d:f7:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:05 2024 by rpki-client on console-fra.rpki-client.org