Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/b79871-b1dd-4e6e-95e7-de025e6f8589/1/vwD1WgJUqvztY_UnGfqJ4HbELAE.roa
File: vwD1WgJUqvztY_UnGfqJ4HbELAE.roa (raw, json)
Hash identifier: xijYNWYxu+h2xvyk+PhWJaCIzFd+TqzmJHLhhFxVxUs=
Subject key identifier: BF:00:F5:5A:02:54:AA:FC:ED:63:F5:27:19:FA:89:E0:76:C4:2C:01
Certificate issuer: /CN=bb30155764cb2ee0f5eeefcdf52a7b12d372eddd
Certificate serial: 0185967DCF76C254E118CE07F20E18117654
Authority key identifier: BB:30:15:57:64:CB:2E:E0:F5:EE:EF:CD:F5:2A:7B:12:D3:72:ED:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uzAVV2TLLuD17u_N9Sp7EtNy7d0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/b79871-b1dd-4e6e-95e7-de025e6f8589/1/vwD1WgJUqvztY_UnGfqJ4HbELAE.roa
Signing time: Mon 09 Jan 2023 12:25:05 +0000
ROA not before: Mon 09 Jan 2023 12:25:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 28847
IP address blocks: 81.94.64.0/19 maxlen: 19
80.245.224.0/20 maxlen: 20
185.145.92.0/22 maxlen: 22
2001:1630::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:30:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:96:7d:cf:76:c2:54:e1:18:ce:07:f2:0e:18:11:76:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb30155764cb2ee0f5eeefcdf52a7b12d372eddd
Validity
Not Before: Jan 9 12:25:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bf00f55a0254aafced63f52719fa89e076c42c01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:3c:24:5b:41:6b:28:d4:18:85:97:b8:ea:e7:
b4:6c:82:4f:23:13:b5:57:46:2d:d9:7f:bc:97:1f:
20:e9:a5:74:17:2e:cc:1f:b6:7d:9d:80:9e:3b:05:
fb:41:5d:80:59:a8:74:a7:3b:f7:ef:a3:ea:2b:a2:
19:1d:b8:5b:79:b8:27:bc:bd:03:12:8b:fc:e0:d7:
f9:2d:93:9d:a9:1f:d3:c3:1d:cb:b9:b3:c4:fd:3d:
a0:7c:d6:be:00:e6:b2:10:3d:8e:4b:9c:31:c2:77:
3e:8a:4e:fd:40:85:dc:dc:3d:2a:dc:24:2a:98:e3:
92:1f:64:d9:c0:f6:a5:4f:06:d6:20:41:92:5b:25:
a4:0e:8e:fa:12:6f:5c:74:0d:96:05:4d:38:f3:61:
44:34:9d:53:db:61:8c:c3:42:77:6b:e4:5b:6f:de:
bc:18:16:9a:73:c8:b4:32:70:51:b9:f3:28:22:76:
89:27:31:7a:c2:be:61:30:c8:0a:e8:1b:56:85:93:
7c:4a:81:0f:37:fb:e1:14:ad:9b:7a:f9:d0:e3:b6:
78:d9:79:a2:89:c5:31:46:ef:9e:1b:d2:0d:e2:c8:
6d:04:9e:9f:e3:e7:c0:ab:ae:85:65:c7:4e:56:df:
f5:ef:73:78:46:07:ef:03:85:ba:73:f9:06:72:df:
03:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:00:F5:5A:02:54:AA:FC:ED:63:F5:27:19:FA:89:E0:76:C4:2C:01
X509v3 Authority Key Identifier:
keyid:BB:30:15:57:64:CB:2E:E0:F5:EE:EF:CD:F5:2A:7B:12:D3:72:ED:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uzAVV2TLLuD17u_N9Sp7EtNy7d0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/b79871-b1dd-4e6e-95e7-de025e6f8589/1/vwD1WgJUqvztY_UnGfqJ4HbELAE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/b79871-b1dd-4e6e-95e7-de025e6f8589/1/uzAVV2TLLuD17u_N9Sp7EtNy7d0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.245.224.0/20
81.94.64.0/19
185.145.92.0/22
IPv6:
2001:1630::/29
Signature Algorithm: sha256WithRSAEncryption
bb:e5:59:9b:5b:ec:ed:62:64:56:d4:9f:72:66:84:f6:27:47:
1f:3e:c0:6e:e2:8a:18:ad:00:93:4e:48:80:ba:ea:c4:32:9c:
71:04:47:56:03:9d:57:49:e3:63:ec:ad:cd:dc:6f:31:5a:43:
a8:5d:dd:16:d3:f7:56:4c:bd:aa:3d:1d:af:b0:92:56:13:dc:
7d:0f:c2:05:c8:3f:69:95:91:4a:06:4b:e9:6c:b5:89:0a:13:
47:30:34:6f:29:48:be:5c:b6:50:77:17:a6:02:a2:19:24:14:
0f:fa:36:ea:4f:b4:f7:7a:fe:73:fc:54:89:73:72:98:1f:2e:
31:3b:5e:f7:7b:a6:4f:1b:76:15:a3:f5:57:81:ec:ea:9d:8b:
bd:4f:53:3e:48:f9:71:9b:35:05:db:19:5c:46:3f:cc:8c:0c:
dc:12:ae:be:1b:4a:7d:3b:bb:e1:7d:b3:65:42:15:7c:e5:86:
02:9d:39:16:dc:7e:8d:fa:50:c4:9c:7b:4f:6c:0f:a7:71:a5:
6a:87:ca:df:90:de:98:d5:7f:8a:b9:95:1e:36:07:6e:30:94:
86:33:6a:01:61:e2:2f:7e:22:10:a4:f6:05:13:ae:e4:3b:0a:
1e:e2:ae:a2:3d:4f:2e:58:a9:3d:2b:5e:64:f8:f6:ee:d2:b8:
0f:a7:ad:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:24 2024 by rpki-client on console-ams.rpki-client.org