Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/6451c1-2bcd-4463-a700-d442c4f9e9bd/1/bWP9jSnLpHpiEFABy7YFR-5LRP4.roa
File: bWP9jSnLpHpiEFABy7YFR-5LRP4.roa (raw, json)
Hash identifier: kNn4wkmPvcQwD3ZTQ45LRrssLQlkR6uUUD6bCP+ABXQ=
Subject key identifier: 6D:63:FD:8D:29:CB:A4:7A:62:10:50:01:CB:B6:05:47:EE:4B:44:FE
Certificate issuer: /CN=070483d3d62f19c0835746dcb721c8832c3b7926
Certificate serial: 018571F100E3351FD101049AF2479F144563
Authority key identifier: 07:04:83:D3:D6:2F:19:C0:83:57:46:DC:B7:21:C8:83:2C:3B:79:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BwSD09YvGcCDV0bctyHIgyw7eSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/6451c1-2bcd-4463-a700-d442c4f9e9bd/1/bWP9jSnLpHpiEFABy7YFR-5LRP4.roa
Signing time: Mon 02 Jan 2023 10:04:57 +0000
ROA not before: Mon 02 Jan 2023 10:04:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12679
IP address blocks: 45.85.204.0/22 maxlen: 22
Validation: Failed, certificate revoked on Wed 15 Feb 2023 14:08:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:f1:00:e3:35:1f:d1:01:04:9a:f2:47:9f:14:45:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=070483d3d62f19c0835746dcb721c8832c3b7926
Validity
Not Before: Jan 2 10:04:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6d63fd8d29cba47a62105001cbb60547ee4b44fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:b0:a5:c1:f2:ed:09:f9:10:7e:40:8c:c3:89:
e8:69:99:71:6a:59:18:c5:d0:ce:ad:9c:e4:05:19:
c2:7a:cd:24:36:ef:dc:2f:c1:54:9b:33:3c:cf:80:
fd:2a:b8:65:27:23:b5:9c:78:f8:71:bc:95:44:02:
de:f2:80:4f:40:00:f5:61:ae:50:b7:a5:6e:f2:68:
a3:3c:bc:96:9b:1b:0b:3a:10:03:95:f7:c4:84:2b:
a7:2f:2a:ab:41:62:6c:5e:a7:02:83:3f:52:fe:1c:
5e:03:ea:5b:13:24:cd:7c:1c:38:72:b3:4d:74:1a:
f9:a5:95:08:73:89:b3:fa:22:19:b7:e7:31:d4:e1:
22:fa:42:cc:0f:e2:aa:33:46:72:06:b0:ea:d2:ac:
eb:33:42:dc:c2:ba:56:fc:bb:7b:8d:3f:4f:d4:c2:
29:2a:e6:2b:b0:a6:5b:8f:d5:10:5a:0b:ac:0e:66:
01:97:ef:e7:7f:f4:41:85:61:0d:49:2e:60:ad:94:
a6:96:ef:3c:03:22:cd:e6:a7:53:29:99:e0:3e:7a:
23:83:a6:54:ae:fd:d4:d7:6f:30:5a:46:e2:63:80:
7b:bc:eb:37:58:5d:ef:b5:bb:f1:09:44:37:88:b9:
38:8d:66:f4:e6:de:a0:b0:54:7c:ca:51:90:72:9f:
78:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:63:FD:8D:29:CB:A4:7A:62:10:50:01:CB:B6:05:47:EE:4B:44:FE
X509v3 Authority Key Identifier:
keyid:07:04:83:D3:D6:2F:19:C0:83:57:46:DC:B7:21:C8:83:2C:3B:79:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BwSD09YvGcCDV0bctyHIgyw7eSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/6451c1-2bcd-4463-a700-d442c4f9e9bd/1/bWP9jSnLpHpiEFABy7YFR-5LRP4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/6451c1-2bcd-4463-a700-d442c4f9e9bd/1/BwSD09YvGcCDV0bctyHIgyw7eSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.85.204.0/22
Signature Algorithm: sha256WithRSAEncryption
35:c2:e0:29:99:07:0e:f6:15:47:34:1d:4d:ba:9f:27:0a:0e:
93:98:3a:b0:d1:a9:32:bf:31:8a:8e:83:3e:b6:c0:18:52:eb:
ff:f9:09:0c:36:1b:98:6a:50:f8:5f:55:e1:29:e1:67:ba:ba:
a6:cd:40:d3:7a:27:a7:f1:db:50:7b:1b:09:4a:95:5d:bc:3d:
e7:5c:36:b7:28:45:a5:0f:60:93:4e:e8:56:e2:6e:50:3a:18:
7d:e2:51:22:21:9b:0e:2f:2d:99:11:81:f8:34:34:b8:c3:58:
bf:3f:d9:0c:98:2a:40:2e:ab:84:dc:29:b8:77:ac:c7:4b:ec:
be:13:5f:ba:01:b7:e3:e7:b4:bc:d0:c7:1b:4a:3d:52:70:10:
78:e8:1f:fd:52:f4:30:64:e1:73:ba:64:e5:49:f6:88:cc:6a:
69:e4:a2:b1:0c:ee:a4:5d:b1:a5:8f:6b:54:df:7a:6e:4f:73:
10:eb:cd:51:a3:8d:1f:f6:eb:30:40:dd:d6:d2:13:ae:53:ce:
b9:31:50:05:40:4a:f3:31:68:37:46:85:fb:43:a1:63:75:dd:
a0:33:2d:29:f3:24:04:eb:62:1b:e7:3b:78:43:3f:f6:58:3c:
e3:17:f3:84:21:29:b4:4d:3d:bc:91:ed:9f:c9:bb:4b:c7:cc:
72:20:56:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:02 2024 by rpki-client on console-fra.rpki-client.org