Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/d52020-ac08-4dc0-925d-65ab40855de2/1/BQyNxrtZZBceyJpjrePSgmdWtJk.roa
File: BQyNxrtZZBceyJpjrePSgmdWtJk.roa (raw, json)
Hash identifier: 35C2O/K9mUC+Us5eTYC5aBM+B1Qsy7N0PDRHXkUYtHw=
Subject key identifier: 05:0C:8D:C6:BB:59:64:17:1E:C8:9A:63:AD:E3:D2:82:67:56:B4:99
Certificate issuer: /CN=c7ffd7ebbfa98083307c63f717a3aba7107696a2
Certificate serial: 01856D93D10086CBC4C5416659BC06D569B0
Authority key identifier: C7:FF:D7:EB:BF:A9:80:83:30:7C:63:F7:17:A3:AB:A7:10:76:96:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x__X67-pgIMwfGP3F6OrpxB2lqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/d52020-ac08-4dc0-925d-65ab40855de2/1/BQyNxrtZZBceyJpjrePSgmdWtJk.roa
Signing time: Sun 01 Jan 2023 13:44:41 +0000
ROA not before: Sun 01 Jan 2023 13:44:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 24904
IP address blocks: 185.216.240.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:93:d1:00:86:cb:c4:c5:41:66:59:bc:06:d5:69:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c7ffd7ebbfa98083307c63f717a3aba7107696a2
Validity
Not Before: Jan 1 13:44:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=050c8dc6bb5964171ec89a63ade3d2826756b499
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:46:f4:55:c1:84:76:25:fc:52:2a:0c:16:1d:
bf:ed:85:0d:2e:f6:7c:93:06:c2:2f:1c:18:e9:91:
0c:be:a3:8a:3f:07:b9:e3:3e:b3:bd:33:5f:0c:ef:
4a:d5:c9:5e:ad:0c:49:40:d6:53:25:08:2d:08:99:
f5:d7:c1:cd:48:e5:b8:b6:7f:0f:74:87:c7:50:15:
d4:bf:a0:9b:f0:10:54:ca:d0:37:6d:89:52:5a:f3:
19:12:6a:ea:6e:fd:bb:f8:f9:96:1e:37:a5:30:d5:
f6:bc:6f:09:93:ef:2e:fc:75:20:c1:58:22:85:e0:
f0:6a:da:83:7c:82:36:d2:35:01:e2:bc:d7:1e:cd:
88:40:aa:f2:e9:5a:25:1e:2a:11:b9:65:77:ea:85:
a4:41:0a:c1:c2:39:86:63:4b:00:05:09:1a:e6:5c:
ee:47:2b:b5:12:b9:b6:45:d7:9a:1c:b7:3e:86:e7:
62:da:75:2b:3b:dd:b2:93:b4:62:83:af:10:c8:5b:
e8:7b:39:d8:a2:e6:58:e2:ba:ae:d5:bb:0c:02:a0:
5e:28:c0:b3:f3:9e:80:6c:9f:16:26:c1:9e:a4:9c:
e9:ad:10:33:91:ec:75:98:ed:7f:e8:e1:0c:6f:fa:
c1:c0:9a:8f:03:4a:f2:bb:90:0b:3c:91:12:79:af:
df:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:0C:8D:C6:BB:59:64:17:1E:C8:9A:63:AD:E3:D2:82:67:56:B4:99
X509v3 Authority Key Identifier:
keyid:C7:FF:D7:EB:BF:A9:80:83:30:7C:63:F7:17:A3:AB:A7:10:76:96:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x__X67-pgIMwfGP3F6OrpxB2lqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/d52020-ac08-4dc0-925d-65ab40855de2/1/BQyNxrtZZBceyJpjrePSgmdWtJk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/d52020-ac08-4dc0-925d-65ab40855de2/1/x__X67-pgIMwfGP3F6OrpxB2lqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.216.240.0/22
Signature Algorithm: sha256WithRSAEncryption
06:2a:68:86:1e:38:85:20:2f:39:0c:b5:6e:81:9c:5b:aa:82:
3f:30:32:fd:0d:ac:f7:e9:b2:53:dc:bd:70:05:21:ae:60:c9:
12:5b:92:25:d5:52:38:6c:9b:3b:0a:90:d0:79:d5:d9:87:c6:
6f:fe:64:ab:f3:02:99:fc:f3:32:47:26:9d:32:b6:97:15:55:
58:8c:e4:e0:d5:1b:31:bd:97:cf:2d:0d:d9:75:29:b3:8e:d2:
aa:e2:3f:21:6d:83:e0:ab:8c:44:48:37:65:05:fb:cf:5c:d4:
31:cf:87:1c:2e:d2:33:74:1a:42:f5:fb:ef:f3:00:4e:fa:de:
0f:d1:a6:b5:17:73:cd:0c:2d:66:3a:2c:85:27:e1:dd:84:e8:
02:1c:cb:7e:5d:e1:ae:5b:9b:43:ee:bf:c4:a1:c8:0b:9f:15:
e3:b2:19:c3:62:b8:b1:fb:e4:db:70:56:db:02:d6:d0:15:66:
11:55:5e:61:44:2a:64:1d:5c:f7:a2:7e:49:50:ee:5d:16:61:
90:93:99:ec:91:25:4f:75:8c:d3:0a:a1:8f:6e:7a:c5:02:bc:
e3:99:15:23:19:aa:85:66:e7:46:ab:a7:16:37:56:3a:26:3a:
4c:0b:23:b8:d4:61:0e:6e:7c:0a:97:5a:bd:a3:6b:9e:b8:9a:
70:c6:e1:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 04:09:24 2024 by rpki-client on console-ams.rpki-client.org