Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/BQAnqBrv4Ouf3eiP0eTlwAFwNRY.roa
File: BQAnqBrv4Ouf3eiP0eTlwAFwNRY.roa (raw, json)
Hash identifier: 82EpQCOfy7ATKX4r2o6gYjHGPNZc6a4pezfN0nH6/3s=
Subject key identifier: 05:00:27:A8:1A:EF:E0:EB:9F:DD:E8:8F:D1:E4:E5:C0:01:70:35:16
Certificate issuer: /CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Certificate serial: 018856370045DE3B2C27BC8165DD4487F908
Authority key identifier: 83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/BQAnqBrv4Ouf3eiP0eTlwAFwNRY.roa
Signing time: Fri 26 May 2023 04:00:25 +0000
ROA not before: Fri 26 May 2023 04:00:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30058
IP address blocks: 91.200.220.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 30 May 2023 03:43:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:56:37:00:45:de:3b:2c:27:bc:81:65:dd:44:87:f9:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Validity
Not Before: May 26 04:00:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=050027a81aefe0eb9fdde88fd1e4e5c001703516
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:8d:97:60:c1:b8:77:89:93:90:60:d2:92:50:
7c:44:a7:c2:a4:8d:1f:07:91:be:71:e1:0b:24:98:
5e:4a:c3:f2:3b:fb:ca:7a:f9:28:e2:55:02:8f:e6:
93:e4:80:e7:1f:64:8e:00:84:03:07:ae:cd:94:71:
8e:4b:79:98:ee:d3:36:2e:03:a8:3d:29:73:a5:e0:
c7:74:e9:e1:e4:73:10:80:bb:d7:7c:fd:e0:9e:0d:
d9:84:4a:73:d3:0b:20:9c:64:e9:2f:9e:85:ac:49:
00:90:41:d7:25:01:34:14:9e:9a:44:a7:a4:58:e7:
e2:32:47:d8:d6:bd:d4:8f:ce:6f:64:f6:2f:6f:9e:
1e:fd:60:14:c9:9f:7c:0c:39:2f:6e:f0:14:9a:55:
dd:bb:26:fb:87:6a:57:73:8a:c4:a7:5e:97:c3:9a:
03:7c:7a:ea:31:5e:f5:5d:c5:b9:71:23:3c:9b:66:
1e:09:e9:46:f9:bd:f7:e7:32:30:e8:83:8d:5c:c7:
10:78:af:6b:a6:a1:82:59:e2:c1:a6:50:74:5c:e7:
78:98:22:3d:f1:78:33:94:13:e7:7a:71:c9:d2:4b:
d2:a1:2f:97:90:d8:fb:89:74:9e:e1:0e:7d:8e:c4:
29:83:2c:aa:ff:fd:c3:46:88:22:ff:83:67:9e:fd:
91:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:00:27:A8:1A:EF:E0:EB:9F:DD:E8:8F:D1:E4:E5:C0:01:70:35:16
X509v3 Authority Key Identifier:
keyid:83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/BQAnqBrv4Ouf3eiP0eTlwAFwNRY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/gz4_XvglVWsBSghdMlZbsMvFrI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.200.220.0/24
Signature Algorithm: sha256WithRSAEncryption
83:f4:00:2f:3d:99:11:7e:15:0c:ff:fd:f6:ee:b3:9e:8b:05:
2c:fc:50:36:d1:d5:49:5a:3d:4e:51:de:97:b6:ab:4a:eb:81:
bd:b1:88:78:ab:7e:8b:b0:2e:4c:5e:04:aa:3a:40:ce:84:5d:
77:2f:46:1a:d5:09:8a:ef:a4:8c:27:40:96:29:49:c7:1c:b7:
8e:24:0c:08:9c:20:8a:32:ef:f1:59:a6:3a:02:48:72:e3:7f:
7e:f4:ff:35:c4:5a:68:9e:e2:7a:88:b6:23:7c:25:d1:32:38:
06:99:bf:f8:04:d0:08:ae:3f:9b:02:9e:9b:f5:b3:81:73:ef:
59:1e:76:7b:5f:fa:90:22:19:d3:c2:f2:be:8d:b4:6a:0d:bb:
25:de:9f:9a:85:91:b9:d5:b0:b7:ea:c6:6d:94:e0:15:ce:b3:
b1:9f:44:ec:bd:9f:60:84:fe:35:04:85:04:f5:92:a1:02:88:
55:36:7a:4b:15:f1:e1:c9:49:48:07:56:5f:ee:e3:7a:58:6c:
c3:04:e9:9e:cc:bd:57:bb:75:11:cd:f2:3d:22:13:17:4c:8d:
d5:95:84:e5:7d:a9:18:fa:02:59:e4:3f:3f:41:ab:b0:af:80:
0d:46:bf:c0:71:e7:b9:7c:b4:60:79:ce:45:d3:b7:37:98:45:
0e:d9:e7:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:36 2024 by rpki-client on console-fra.rpki-client.org