Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/031818-0463-4bab-bb56-51485fe222db/1/bgfyLcc3AE2q_Q_d11IEhsLqYfQ.roa
File: bgfyLcc3AE2q_Q_d11IEhsLqYfQ.roa (raw, json)
Hash identifier: G44gpsxqdeaCnfpQ4WvYaxSitwGOOOL1/XGBtUjf/Uk=
Subject key identifier: 6E:07:F2:2D:C7:37:00:4D:AA:FD:0F:DD:D7:52:04:86:C2:EA:61:F4
Certificate issuer: /CN=07d08df8bc7a383e976dbb03d2a0eb9fe0d786e7
Certificate serial: 01862F5FC05904BD899A96F502F0BDD5A55C
Authority key identifier: 07:D0:8D:F8:BC:7A:38:3E:97:6D:BB:03:D2:A0:EB:9F:E0:D7:86:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B9CN-Lx6OD6XbbsD0qDrn-DXhuc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/031818-0463-4bab-bb56-51485fe222db/1/bgfyLcc3AE2q_Q_d11IEhsLqYfQ.roa
Signing time: Wed 08 Feb 2023 04:54:09 +0000
ROA not before: Wed 08 Feb 2023 04:54:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8856
IP address blocks: 195.214.192.0/24 maxlen: 24
195.214.194.0/24 maxlen: 24
195.214.193.0/24 maxlen: 24
195.214.195.0/24 maxlen: 24
212.42.79.0/24 maxlen: 24
212.42.81.0/24 maxlen: 24
212.42.80.0/22 maxlen: 22
212.42.80.0/24 maxlen: 24
212.42.82.0/23 maxlen: 23
212.42.84.0/24 maxlen: 24
212.42.85.0/24 maxlen: 24
212.42.89.0/24 maxlen: 24
212.42.93.0/24 maxlen: 24
212.42.92.0/24 maxlen: 24
212.42.95.0/24 maxlen: 24
212.42.94.0/23 maxlen: 23
212.42.94.0/24 maxlen: 24
212.42.64.0/22 maxlen: 22
212.42.64.0/23 maxlen: 23
212.42.66.0/23 maxlen: 23
212.42.74.0/23 maxlen: 23
212.42.73.0/24 maxlen: 24
212.42.76.0/24 maxlen: 24
212.42.76.0/23 maxlen: 23
212.42.77.0/24 maxlen: 24
212.42.78.0/23 maxlen: 23
212.42.78.0/24 maxlen: 24
212.42.72.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 07 Apr 2023 08:26:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:2f:5f:c0:59:04:bd:89:9a:96:f5:02:f0:bd:d5:a5:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07d08df8bc7a383e976dbb03d2a0eb9fe0d786e7
Validity
Not Before: Feb 8 04:54:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6e07f22dc737004daafd0fddd7520486c2ea61f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:48:ca:34:b8:8b:6c:9c:bc:69:f4:68:d4:16:
37:61:91:4c:2f:0b:0f:4e:e5:ff:a0:46:ae:4d:f2:
70:77:3e:29:fc:90:52:86:ae:86:49:d4:5f:6f:e6:
62:3d:42:fa:9c:b1:22:26:16:70:22:a9:0a:e9:aa:
dd:a3:2b:07:f2:44:8f:2a:ac:95:fa:f3:ef:f7:78:
f1:a0:75:f2:78:8b:26:54:67:bf:79:85:ce:89:91:
c0:bd:d7:01:d9:40:1a:97:b7:6f:6a:1f:06:71:a5:
0d:18:05:3b:e3:64:f5:5b:e4:83:6d:26:2e:78:52:
37:db:c9:10:66:e8:0d:7b:a1:80:7e:43:f5:90:66:
ac:4a:04:ff:2f:10:6b:60:ee:3b:61:44:4d:2d:d9:
49:72:59:96:84:ac:f9:6f:b4:05:df:a3:b4:ec:b3:
74:6d:5e:7f:47:6a:fd:69:1a:9c:87:91:88:42:78:
c5:aa:bf:3f:f8:c1:d0:17:9f:f4:b9:7e:77:21:cf:
64:21:0d:07:fe:c5:5c:af:db:ca:52:31:07:b8:63:
5b:99:98:f0:f2:8b:cf:97:fc:28:20:56:6d:32:be:
f3:dc:dc:c9:c7:a5:5f:00:4b:ff:97:2e:a5:fe:81:
c3:0e:56:fd:a4:9b:d6:17:2c:ef:23:b2:22:1f:ac:
f9:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:07:F2:2D:C7:37:00:4D:AA:FD:0F:DD:D7:52:04:86:C2:EA:61:F4
X509v3 Authority Key Identifier:
keyid:07:D0:8D:F8:BC:7A:38:3E:97:6D:BB:03:D2:A0:EB:9F:E0:D7:86:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B9CN-Lx6OD6XbbsD0qDrn-DXhuc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/031818-0463-4bab-bb56-51485fe222db/1/bgfyLcc3AE2q_Q_d11IEhsLqYfQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/031818-0463-4bab-bb56-51485fe222db/1/B9CN-Lx6OD6XbbsD0qDrn-DXhuc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.214.192.0/22
212.42.64.0/22
212.42.72.0-212.42.85.255
212.42.89.0/24
212.42.92.0/22
Signature Algorithm: sha256WithRSAEncryption
35:35:61:3f:5c:25:72:a2:d1:05:a6:7b:8b:3e:10:be:be:99:
a4:41:7b:78:12:98:1a:97:3f:0b:1b:30:f1:c6:4d:b2:2b:97:
8d:ba:a9:7a:8b:7a:b7:57:3a:18:87:be:fb:58:30:58:32:42:
fa:1a:fb:da:17:af:12:f1:18:b5:35:d3:44:7b:ed:ab:9d:37:
bd:06:6e:f3:3a:4d:79:d4:3a:b5:a9:8d:a7:d9:09:b2:f5:2a:
7b:5e:9a:15:d9:26:7a:0f:da:a0:91:0b:4c:7d:5e:ac:4b:ae:
f6:09:31:4b:20:a1:73:0b:8d:de:05:7a:dd:89:61:bc:34:51:
96:2c:df:58:17:e2:5b:fb:2a:06:bb:f1:aa:9c:b7:85:5b:1b:
77:9a:89:f5:19:b1:7d:b1:49:b4:cd:1a:58:f0:65:b8:b8:e5:
26:0b:94:6c:06:a9:aa:25:07:cc:37:f4:63:fc:05:7a:8f:01:
c9:87:a3:80:09:83:19:68:a2:14:9f:71:f2:19:64:1b:b9:14:
ca:fe:6e:e9:79:b1:bb:cc:e6:19:f7:31:1f:b9:c1:5d:76:51:
ab:69:99:32:e4:e9:e4:9a:f0:98:8e:6c:58:34:7e:17:5f:08:
c7:a4:98:69:0a:dd:c1:3f:cc:2b:e7:ca:10:81:8c:32:64:a6:
49:05:3c:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:26 2024 by rpki-client on console-fra.rpki-client.org