Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/a2bb92-c591-4250-b2d3-8dda6c6ca81d/1/BOSQIF7vkXIrLLPN-nk-O1dPnPk.roa
File: BOSQIF7vkXIrLLPN-nk-O1dPnPk.roa (raw, json)
Hash identifier: nTOWGqojFbeUzsmzAdwj+OKOXXGFNU9W/xqYfSlRs34=
Subject key identifier: 04:E4:90:20:5E:EF:91:72:2B:2C:B3:CD:FA:79:3E:3B:57:4F:9C:F9
Certificate issuer: /CN=a137891dd4f3df83772d7cfe7183843cbff44d54
Certificate serial: 01856F5DE55A23A13F690B4515BEAA34141E
Authority key identifier: A1:37:89:1D:D4:F3:DF:83:77:2D:7C:FE:71:83:84:3C:BF:F4:4D:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oTeJHdTz34N3LXz-cYOEPL_0TVQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/a2bb92-c591-4250-b2d3-8dda6c6ca81d/1/BOSQIF7vkXIrLLPN-nk-O1dPnPk.roa
Signing time: Sun 01 Jan 2023 22:05:02 +0000
ROA not before: Sun 01 Jan 2023 22:05:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44489
IP address blocks: 93.91.48.0/20 maxlen: 20
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:5d:e5:5a:23:a1:3f:69:0b:45:15:be:aa:34:14:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a137891dd4f3df83772d7cfe7183843cbff44d54
Validity
Not Before: Jan 1 22:05:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=04e490205eef91722b2cb3cdfa793e3b574f9cf9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:2d:db:a0:f6:ea:6b:9c:d7:f9:f7:ad:e6:76:
f4:8d:cf:c3:d3:2c:1a:5d:84:7b:42:ba:a8:5e:e2:
f1:77:46:16:48:53:42:1a:bc:28:46:b6:22:b4:c5:
37:82:c1:99:a5:fb:00:ee:7e:73:85:bb:08:2f:c6:
9c:6d:c7:8a:25:dc:ba:c9:cf:16:de:c4:c2:6a:94:
fe:19:70:b4:03:cd:81:e3:15:5e:39:0d:4c:c3:5c:
2b:a7:97:95:36:9a:90:2b:07:dc:6b:60:36:2f:d2:
9d:30:0d:61:d7:ed:a5:59:df:da:8d:45:66:d4:63:
b1:26:9d:92:98:36:41:a2:5a:09:24:bf:25:9b:15:
8c:21:bf:f0:7a:e3:c1:83:67:3e:45:e4:7e:5f:42:
5c:93:9f:50:c8:c9:0b:37:3d:b1:71:e5:bf:f4:82:
7f:5a:c3:b5:ac:8c:4c:f2:f0:85:f1:2c:35:4d:97:
df:eb:51:95:35:90:e6:c8:5e:74:e5:df:6a:82:2f:
f8:ca:51:f2:77:f0:8f:c6:d5:d5:c8:38:3e:0f:c5:
e6:de:cb:cc:3e:c7:54:93:38:12:db:dd:ef:bf:6b:
ed:72:c5:75:03:ed:45:18:1e:d0:67:b5:d6:7a:3f:
df:dd:0c:7b:02:c7:9b:a4:db:ec:d3:23:05:59:98:
23:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:E4:90:20:5E:EF:91:72:2B:2C:B3:CD:FA:79:3E:3B:57:4F:9C:F9
X509v3 Authority Key Identifier:
keyid:A1:37:89:1D:D4:F3:DF:83:77:2D:7C:FE:71:83:84:3C:BF:F4:4D:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oTeJHdTz34N3LXz-cYOEPL_0TVQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/a2bb92-c591-4250-b2d3-8dda6c6ca81d/1/BOSQIF7vkXIrLLPN-nk-O1dPnPk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/a2bb92-c591-4250-b2d3-8dda6c6ca81d/1/oTeJHdTz34N3LXz-cYOEPL_0TVQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.91.48.0/20
Signature Algorithm: sha256WithRSAEncryption
34:bc:37:99:41:52:00:19:66:d5:b5:8d:8e:02:07:51:c1:a7:
6e:85:0b:32:ca:c1:4d:8f:0f:5e:59:6e:3e:e7:2b:e6:f1:55:
d7:78:c1:2f:0d:81:c3:c8:90:8f:08:f3:48:62:cb:74:b0:f6:
e9:28:a5:1d:af:0e:fc:8c:a6:ea:64:8c:ce:39:f4:86:59:1e:
01:97:fe:06:63:d8:44:9d:92:8d:50:39:52:da:f2:3a:da:d4:
b5:d3:a7:15:e2:78:09:71:ab:15:67:7e:a9:79:48:90:48:d4:
6a:d8:8c:55:4a:9d:19:31:6e:38:50:5d:38:42:d1:2b:94:ce:
da:12:bf:7e:d6:06:65:56:cb:8c:6d:8d:b7:19:2a:52:be:94:
88:b8:b2:ed:7b:90:f0:87:cb:2a:29:f8:7c:fc:70:78:0f:f3:
b2:7d:42:ac:24:b0:95:e4:29:68:2e:12:9c:6b:c6:6b:78:f4:
eb:90:6b:36:b1:6e:2f:de:2a:18:06:9e:c9:72:de:bf:23:e0:
a6:5f:18:0c:6c:38:57:a0:e9:1d:f9:d4:28:7a:97:6d:e6:30:
ed:fb:7c:a2:5e:fd:e8:e3:b1:6f:18:11:99:ae:49:2a:0f:cb:
2f:a2:bb:29:13:7c:28:e1:6c:c1:2c:c9:21:67:da:56:0a:86:
14:11:14:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:22 2024 by rpki-client on console-ams.rpki-client.org