Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/d17527-cf98-4d37-866f-8e9b98a99cdb/1/Bmws6codhuVPMnCByb2dKURLD6A.roa
File: Bmws6codhuVPMnCByb2dKURLD6A.roa (raw, json)
Hash identifier: VkCkAARdS93lubk7gaT8uHvPneJukNic7+Or+svyM/Q=
Subject key identifier: 06:6C:2C:E9:CA:1D:86:E5:4F:32:70:81:C9:BD:9D:29:44:4B:0F:A0
Certificate issuer: /CN=bb0d4e85937b7a0f271054d28614f2934d4ea500
Certificate serial: 018FBFF607564306604081693D3CD57001E0
Authority key identifier: BB:0D:4E:85:93:7B:7A:0F:27:10:54:D2:86:14:F2:93:4D:4E:A5:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uw1OhZN7eg8nEFTShhTyk01OpQA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/d17527-cf98-4d37-866f-8e9b98a99cdb/1/Bmws6codhuVPMnCByb2dKURLD6A.roa
Signing time: Tue 28 May 2024 16:08:42 +0000
ROA not before: Tue 28 May 2024 16:08:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 5.144.154.0/24 maxlen: 24
78.143.252.0/24 maxlen: 24
78.143.253.0/24 maxlen: 24
79.135.102.0/23 maxlen: 23
194.33.150.0/24 maxlen: 24
194.33.151.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 31 May 2024 06:43:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:bf:f6:07:56:43:06:60:40:81:69:3d:3c:d5:70:01:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb0d4e85937b7a0f271054d28614f2934d4ea500
Validity
Not Before: May 28 16:08:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=066c2ce9ca1d86e54f327081c9bd9d29444b0fa0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:9c:9e:dd:df:2c:f4:ae:d9:5c:61:33:9d:fb:
91:dc:a8:18:d0:e7:3b:49:56:b3:cc:91:f8:73:35:
d6:34:fa:2c:ed:45:97:70:5f:3d:57:fa:e7:7a:d5:
8d:7c:b1:c9:41:86:ad:62:0d:0c:ac:9f:aa:84:f2:
16:bf:60:24:92:15:ec:5e:21:fa:e9:dd:06:22:66:
18:e0:c3:d0:18:63:8e:08:19:89:48:7c:66:ab:73:
4b:cd:80:07:b9:34:89:b7:d3:42:50:15:44:89:da:
f3:e1:ae:d7:62:99:3e:8f:f0:ee:30:03:d5:90:ef:
16:35:07:b9:86:eb:67:9d:cc:3b:f6:bf:67:7a:f9:
33:1c:6b:9c:2d:4d:4b:9b:11:cd:0a:5c:4b:8c:1e:
7c:c4:8d:99:f4:e1:80:88:b3:bb:11:03:b7:9a:e4:
4f:1f:77:aa:67:37:88:4c:5b:dc:04:65:d9:98:ad:
32:a3:1d:b9:74:0a:24:73:49:43:1d:9e:d1:ff:4a:
9f:9e:e8:e4:19:00:dc:65:57:e4:e9:1e:75:1e:7a:
9b:77:bc:93:f4:95:cb:ae:05:a6:bb:e2:bf:e3:fe:
c2:5e:10:39:5f:78:c3:c5:18:80:ce:b5:a6:74:1a:
ab:9a:ca:3f:a1:c4:07:51:35:25:14:c3:ba:11:6f:
ca:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:6C:2C:E9:CA:1D:86:E5:4F:32:70:81:C9:BD:9D:29:44:4B:0F:A0
X509v3 Authority Key Identifier:
keyid:BB:0D:4E:85:93:7B:7A:0F:27:10:54:D2:86:14:F2:93:4D:4E:A5:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uw1OhZN7eg8nEFTShhTyk01OpQA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/d17527-cf98-4d37-866f-8e9b98a99cdb/1/Bmws6codhuVPMnCByb2dKURLD6A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/d17527-cf98-4d37-866f-8e9b98a99cdb/1/uw1OhZN7eg8nEFTShhTyk01OpQA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.144.154.0/24
78.143.252.0/23
79.135.102.0/23
194.33.150.0/23
Signature Algorithm: sha256WithRSAEncryption
76:04:3d:dc:e0:22:47:dd:91:dd:29:93:d1:a6:6b:50:75:76:
dd:a1:99:27:e3:15:ad:b4:2a:8b:1f:75:ef:6f:e1:7d:10:ea:
72:25:17:c9:b4:60:a1:00:4a:dc:4f:ea:67:0a:05:44:68:d1:
e3:44:16:d5:8b:e7:e3:17:e5:b2:06:56:2c:79:57:56:95:e4:
88:36:b5:d6:96:01:a1:c3:79:86:d9:5c:7c:6a:81:d0:dc:c2:
bf:4d:b2:0a:57:86:90:1f:fa:54:16:d4:ea:65:96:61:cc:49:
81:03:38:6f:f1:5c:b2:39:0d:4b:61:73:22:36:ed:d3:ee:11:
70:21:ab:92:0a:cb:7a:89:f3:f7:d1:c7:ee:a3:ad:b6:89:f1:
8d:2c:c8:20:53:5a:58:d4:0e:d7:52:cc:8b:db:52:6e:5b:24:
b2:ad:78:41:b0:d7:6b:0a:4d:df:b1:5f:70:0b:b6:d6:65:8a:
e9:73:5a:5c:40:7f:58:64:84:ea:96:f8:46:9f:ea:34:6c:4b:
c4:0e:b3:f8:d1:9b:85:8b:cb:b1:0b:3a:22:c2:e8:9d:41:94:
6a:0f:30:aa:02:a7:76:d5:32:b5:c7:bf:b4:7a:4d:1e:94:75:
7c:85:ec:d6:94:ed:0a:67:30:8c:f7:7a:6f:0f:ec:8b:a7:c6:
a0:d1:a3:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:56:41 2024 by rpki-client on console-ams.rpki-client.org