Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/670d1b-5129-4146-be5b-78c04bcedad3/1/BUjnq1IBT45ye8T5mt14Sjn5Oso.roa
File: BUjnq1IBT45ye8T5mt14Sjn5Oso.roa (raw, json)
Hash identifier: y2n5lD7BdrCLzCE6XlPByM74K4wPdYvIKgbGNNUkXVg=
Subject key identifier: 05:48:E7:AB:52:01:4F:8E:72:7B:C4:F9:9A:DD:78:4A:39:F9:3A:CA
Certificate issuer: /CN=c05074877f78dbf49bd37a215491e69a0f8b6e43
Certificate serial: 018BAE7D1DE5B0D45D82F4CA2DF647231982
Authority key identifier: C0:50:74:87:7F:78:DB:F4:9B:D3:7A:21:54:91:E6:9A:0F:8B:6E:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wFB0h3942_Sb03ohVJHmmg-LbkM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/670d1b-5129-4146-be5b-78c04bcedad3/1/BUjnq1IBT45ye8T5mt14Sjn5Oso.roa
Signing time: Wed 08 Nov 2023 10:31:57 +0000
ROA not before: Wed 08 Nov 2023 10:31:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49183
IP address blocks: 94.231.176.0/24 maxlen: 24
94.231.179.0/24 maxlen: 24
94.231.178.0/24 maxlen: 24
94.231.177.0/24 maxlen: 24
94.231.186.0/24 maxlen: 24
94.231.185.0/24 maxlen: 24
94.231.180.0/24 maxlen: 24
94.231.183.0/24 maxlen: 24
94.231.182.0/24 maxlen: 24
94.231.181.0/24 maxlen: 24
94.231.187.0/24 maxlen: 24
94.231.190.0/24 maxlen: 24
94.231.189.0/24 maxlen: 24
94.231.188.0/24 maxlen: 24
94.231.191.0/24 maxlen: 24
46.173.173.0/24 maxlen: 24
46.173.175.0/24 maxlen: 24
46.173.164.0/24 maxlen: 24
46.173.166.0/24 maxlen: 24
46.173.165.0/24 maxlen: 24
46.173.164.0/22 maxlen: 22
46.173.160.0/24 maxlen: 24
46.173.160.0/22 maxlen: 22
46.173.163.0/24 maxlen: 24
46.173.162.0/24 maxlen: 24
46.173.161.0/24 maxlen: 24
46.173.167.0/24 maxlen: 24
46.173.168.0/22 maxlen: 22
46.173.172.0/24 maxlen: 24
2001:678:d94::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:30:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:ae:7d:1d:e5:b0:d4:5d:82:f4:ca:2d:f6:47:23:19:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c05074877f78dbf49bd37a215491e69a0f8b6e43
Validity
Not Before: Nov 8 10:31:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0548e7ab52014f8e727bc4f99add784a39f93aca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:01:25:3d:00:cf:5e:cd:48:61:52:20:7a:96:
65:49:4a:b2:c9:1d:1d:ce:c3:e3:c0:ff:cd:89:d2:
ff:0d:2e:eb:ad:d5:36:2f:22:1e:dd:dc:0a:07:e7:
69:ee:70:51:5b:58:6f:25:bd:d5:96:98:b7:69:99:
99:c7:30:40:d1:de:e1:cb:68:4b:f3:69:b5:21:04:
30:f8:44:5d:36:7c:ad:0f:ee:4f:bc:dd:49:5e:92:
9a:42:9a:28:36:3b:ee:07:0e:ad:c3:47:38:21:43:
8a:5a:ed:f9:ac:52:9c:d1:b1:18:80:70:3b:5a:1c:
09:b3:64:36:fe:19:89:5a:9d:33:11:71:e0:36:8b:
a7:ee:f7:16:66:a2:9f:c2:a7:f1:f8:28:7a:a0:f5:
44:b8:66:59:10:22:8d:e0:6c:91:fd:81:3e:25:1c:
53:c7:ad:c1:d6:99:23:18:a6:72:2b:ee:52:7d:3e:
bb:47:ef:b0:df:c0:60:9f:9d:3d:f3:25:cf:2f:0e:
6e:e3:a8:b4:b9:2f:0a:61:e6:74:53:8f:6c:d1:70:
bc:a0:33:0f:7d:e3:ae:a3:31:f2:2f:01:a4:f4:54:
af:7f:0a:81:3e:4c:78:47:46:1f:81:f0:bb:2b:c0:
c2:94:d9:fa:a3:11:00:72:a7:ce:60:41:29:32:07:
21:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:48:E7:AB:52:01:4F:8E:72:7B:C4:F9:9A:DD:78:4A:39:F9:3A:CA
X509v3 Authority Key Identifier:
keyid:C0:50:74:87:7F:78:DB:F4:9B:D3:7A:21:54:91:E6:9A:0F:8B:6E:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wFB0h3942_Sb03ohVJHmmg-LbkM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/670d1b-5129-4146-be5b-78c04bcedad3/1/BUjnq1IBT45ye8T5mt14Sjn5Oso.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/670d1b-5129-4146-be5b-78c04bcedad3/1/wFB0h3942_Sb03ohVJHmmg-LbkM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.173.160.0-46.173.173.255
46.173.175.0/24
94.231.176.0/21
94.231.185.0-94.231.191.255
IPv6:
2001:678:d94::/48
Signature Algorithm: sha256WithRSAEncryption
48:90:21:da:56:cb:55:65:63:79:4b:6e:a2:b1:d9:b7:ba:b0:
b1:3c:7e:8e:ef:37:6d:53:aa:ce:15:d0:15:92:97:c1:27:3e:
54:4d:f6:74:19:7d:5b:27:7c:5e:d4:4b:db:3b:a8:b8:21:d8:
ca:7f:c6:c5:54:2f:48:84:b0:a7:d3:af:ce:b9:27:23:a2:55:
b2:10:74:c3:9e:f9:04:2a:aa:20:c1:09:82:56:e5:ef:0c:bc:
bf:71:72:1c:0f:de:e3:1b:68:28:1c:20:f2:97:3d:e7:d3:4b:
2a:ae:88:cb:7c:cb:ff:d9:c3:7b:9e:47:d0:74:de:46:81:95:
49:9e:89:7d:52:9c:ce:f6:e1:3b:3b:d2:f5:c4:67:38:c6:ea:
95:bb:67:e4:c5:84:14:3c:31:a5:89:97:fd:8c:7f:11:68:a6:
da:61:bf:b4:bd:f5:61:b5:fb:5d:16:60:2c:32:00:9f:b2:34:
3e:a8:3a:04:d2:f5:34:01:34:0d:d5:3a:73:4c:d8:1a:db:a0:
d4:5e:26:7f:d8:14:40:cd:d2:79:28:f8:cd:c7:f8:b9:4b:0f:
49:84:c4:71:29:6a:dd:aa:aa:b7:d2:ad:27:8c:85:df:6d:07:
38:92:55:9a:45:ea:0f:33:01:93:c2:01:5a:24:15:1d:93:68:
22:0a:a0:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:03 2024 by rpki-client on console-fra.rpki-client.org