Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/BhUIxiK-8qmhQUmJjLV4BTStjxY.roa
File: BhUIxiK-8qmhQUmJjLV4BTStjxY.roa (raw, json)
Hash identifier: pV6RyedAGY7IrgWsfocoEqMWKZLwzZjJjY4gq20H/14=
Subject key identifier: 06:15:08:C6:22:BE:F2:A9:A1:41:49:89:8C:B5:78:05:34:AD:8F:16
Certificate issuer: /CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Certificate serial: 01856ED4E093A6D113825219CD70F5861AE6
Authority key identifier: 83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/BhUIxiK-8qmhQUmJjLV4BTStjxY.roa
Signing time: Sun 01 Jan 2023 19:35:22 +0000
ROA not before: Sun 01 Jan 2023 19:35:22 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 398395
IP address blocks: 109.122.46.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 18 May 2023 12:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:d4:e0:93:a6:d1:13:82:52:19:cd:70:f5:86:1a:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Validity
Not Before: Jan 1 19:35:22 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=061508c622bef2a9a14149898cb5780534ad8f16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:04:6a:52:ee:cb:75:f8:ea:27:ef:fd:57:99:
75:66:fe:e7:bd:7d:ee:05:3c:8a:50:b3:23:03:6d:
a4:c8:ae:a0:58:7e:66:b2:0b:0f:db:5b:67:cc:ff:
9f:f0:de:f1:f5:c6:49:4a:ab:a0:ed:1b:e2:38:81:
b2:71:f8:ed:71:72:9c:14:a9:53:b3:67:75:1b:30:
b6:31:d2:3d:04:7f:3e:1b:94:a8:fd:2f:9f:a5:47:
5c:81:21:ea:b6:4f:5c:7d:e2:e0:2a:37:43:bf:95:
db:cd:79:7e:5e:34:e4:0c:c8:97:28:e1:16:35:fb:
c3:d4:3d:21:7f:e8:0e:48:ab:c6:ae:9f:b6:dd:63:
8d:b2:a6:c9:76:d9:f8:e8:16:ba:8a:7d:f8:a1:15:
00:e5:68:a6:4d:28:71:f7:b3:1d:ee:de:a3:02:09:
2e:26:08:78:bb:bc:40:0e:7e:b2:04:12:61:a3:ae:
68:cd:38:b6:25:70:99:f0:a0:44:4d:7c:a0:8a:ef:
2d:2e:2c:23:ee:0c:98:9a:5c:48:c8:ac:9d:55:db:
d9:b1:fd:f5:d7:ce:15:79:c9:e4:1b:a5:9e:f6:1b:
f0:b6:ef:9d:45:c3:f6:3b:79:5c:06:8d:0d:73:83:
fe:a8:9a:27:4d:87:aa:c9:4a:74:bc:a8:ea:29:2c:
95:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:15:08:C6:22:BE:F2:A9:A1:41:49:89:8C:B5:78:05:34:AD:8F:16
X509v3 Authority Key Identifier:
keyid:83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/BhUIxiK-8qmhQUmJjLV4BTStjxY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/gz4_XvglVWsBSghdMlZbsMvFrI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.122.46.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:1a:a1:42:af:c2:e9:e3:5f:35:1c:f9:4d:6c:e8:e6:70:2d:
50:a5:48:86:bb:0f:e9:5d:07:96:ac:e4:7c:c9:24:63:e5:fb:
b1:22:11:a5:8e:70:21:56:a2:2b:c1:62:44:bd:ec:76:20:58:
55:af:8c:2e:25:b6:15:dc:56:3e:5f:40:6c:c4:4f:92:26:35:
c4:a6:84:09:09:0c:be:19:f9:6c:77:ea:2b:23:7a:3b:87:e6:
d2:65:89:8a:65:93:b2:ce:7a:27:8b:07:ab:92:54:1c:21:e7:
ce:e0:43:c9:e1:dd:7a:68:31:cb:90:65:85:00:6e:c0:01:81:
04:a6:6d:7d:04:92:92:01:ed:a2:fc:72:61:01:88:a2:4a:e6:
38:1e:9f:ed:75:8c:f6:86:51:b8:63:5b:45:ec:ac:15:b1:8f:
26:3a:14:a5:97:c7:df:db:22:91:c2:8e:29:4c:94:c4:60:7f:
4d:39:99:6f:78:83:83:97:e4:77:68:b5:8b:73:06:17:a9:07:
f3:bb:02:f3:14:63:40:d7:47:0f:98:9d:dd:96:ce:a8:2e:27:
eb:43:d8:23:62:25:a1:81:06:32:56:27:ea:dd:ec:77:67:cf:
95:51:08:73:91:1a:31:05:a5:f6:a1:61:90:18:b0:5b:56:ad:
51:d7:d5:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:06 2024 by rpki-client on console-ams.rpki-client.org