Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/375a67-8c4e-4a46-99cc-65078a7f65b8/1/Bj9IK5hzRNx6J-blgu97cB9R4fM.roa
File: Bj9IK5hzRNx6J-blgu97cB9R4fM.roa (raw, json)
Hash identifier: 1U7NGTF0YAVgiCxLXUvOFcRCqHfsKpz8TW9r10zQLpE=
Subject key identifier: 06:3F:48:2B:98:73:44:DC:7A:27:E6:E5:82:EF:7B:70:1F:51:E1:F3
Certificate issuer: /CN=065a470dbab9c1c334f0f85f417cd1aa425e9f13
Certificate serial: 018F54850C793D8A86C0797E72DF7C85C1E0
Authority key identifier: 06:5A:47:0D:BA:B9:C1:C3:34:F0:F8:5F:41:7C:D1:AA:42:5E:9F:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BlpHDbq5wcM08PhfQXzRqkJenxM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/375a67-8c4e-4a46-99cc-65078a7f65b8/1/Bj9IK5hzRNx6J-blgu97cB9R4fM.roa
Signing time: Tue 07 May 2024 19:25:56 +0000
ROA not before: Tue 07 May 2024 19:25:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 40866
IP address blocks: 195.66.101.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 08 May 2024 16:43:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:54:85:0c:79:3d:8a:86:c0:79:7e:72:df:7c:85:c1:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=065a470dbab9c1c334f0f85f417cd1aa425e9f13
Validity
Not Before: May 7 19:25:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=063f482b987344dc7a27e6e582ef7b701f51e1f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:eb:b4:0d:7a:ca:2a:a9:3e:9c:82:a9:ac:87:
9d:14:35:2c:7a:b7:87:57:3a:ad:df:23:97:38:8e:
f6:60:3f:c7:0e:a2:4f:dc:9b:0d:a1:52:a1:54:d3:
c4:a4:bd:ec:25:4b:85:65:b7:43:25:9b:b4:b6:41:
22:07:96:13:41:23:25:70:2d:9f:25:87:9e:3b:d6:
73:8d:98:13:e5:14:2c:6e:54:08:64:f5:85:36:89:
cf:3a:03:c1:13:27:15:a7:d2:5a:0f:cf:e3:6a:c1:
10:39:97:53:2e:2f:07:47:ea:b1:a0:2e:41:2c:02:
0d:13:6e:a7:ed:13:bf:57:46:0f:34:71:8a:63:e9:
b2:21:72:a7:0b:40:3b:bf:6f:bc:92:5d:1b:a1:eb:
f4:5a:6e:62:bf:58:1a:1e:52:e6:1e:b7:ee:4c:8e:
14:be:72:af:ea:43:d5:e5:13:8d:a5:97:c7:7f:fd:
95:a3:83:3d:e7:2f:03:3a:ff:ff:ea:b0:16:5a:50:
6b:8f:57:a7:43:b3:89:46:8a:8a:6c:65:31:68:1b:
2c:da:5d:6b:09:d8:5e:74:85:25:c2:26:5e:46:4a:
b6:c0:d4:e4:a5:38:ab:7a:06:d5:6c:30:70:19:ac:
c0:3d:6b:5f:50:40:e0:a8:c3:a3:cb:55:9d:02:62:
a4:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:3F:48:2B:98:73:44:DC:7A:27:E6:E5:82:EF:7B:70:1F:51:E1:F3
X509v3 Authority Key Identifier:
keyid:06:5A:47:0D:BA:B9:C1:C3:34:F0:F8:5F:41:7C:D1:AA:42:5E:9F:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BlpHDbq5wcM08PhfQXzRqkJenxM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/375a67-8c4e-4a46-99cc-65078a7f65b8/1/Bj9IK5hzRNx6J-blgu97cB9R4fM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/375a67-8c4e-4a46-99cc-65078a7f65b8/1/BlpHDbq5wcM08PhfQXzRqkJenxM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.66.101.0/24
Signature Algorithm: sha256WithRSAEncryption
84:06:e6:44:2b:f3:6a:ea:75:70:e9:82:23:37:8c:4a:b2:b9:
10:dd:e4:c6:ba:5d:e0:db:17:86:50:ab:10:a5:9b:2f:93:58:
6a:82:0c:7c:bd:57:5c:dc:af:08:4c:95:9a:36:c9:ff:e0:be:
b9:aa:e1:ca:fe:cf:5e:92:f6:47:02:5c:c7:8c:d7:73:86:5e:
b6:6f:19:83:dc:af:0f:a8:19:37:d0:90:5d:05:d4:20:4a:5d:
6a:fd:38:59:cc:48:1e:b6:3e:6c:7c:9b:20:b1:91:5f:bd:01:
cf:d4:01:ea:78:38:bf:2d:a9:1c:f7:23:74:e9:9b:3f:cb:e5:
20:0d:9f:bd:50:7d:91:ef:6c:25:49:67:14:d0:85:fe:08:2e:
e6:35:0b:f0:34:be:6a:8e:96:1a:8d:38:69:96:8c:36:3d:21:
c0:2f:f5:e3:6d:8e:3d:b9:9c:47:a0:b9:de:91:2c:3c:a5:f0:
66:69:d8:a2:7b:0c:bf:5c:8a:e6:a9:c5:32:75:e6:42:98:15:
e7:63:c6:48:88:55:14:8d:95:1c:d9:e6:11:9b:03:bd:a4:63:
ca:9a:3e:c2:93:76:17:93:f1:e9:c6:1e:7d:55:a5:dc:76:98:
9d:33:70:be:cc:d8:f9:ac:f6:22:7f:e4:94:3d:4b:d2:f2:65:
81:ba:fe:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:56:57 2024 by rpki-client on console-ams.rpki-client.org