Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/7bc3ab-d9b6-4ae4-bcd1-ce57150695a9/1/bf1PZ1R3lbHTbawMLNPB90ZG8aU.roa
File: bf1PZ1R3lbHTbawMLNPB90ZG8aU.roa (raw, json)
Hash identifier: trkFi5TdxBb7zRbrX+5VeHWjLK5q1ujNnU2fVvOScQI=
Subject key identifier: 6D:FD:4F:67:54:77:95:B1:D3:6D:AC:0C:2C:D3:C1:F7:46:46:F1:A5
Certificate issuer: /CN=ec4fb061a9426e4fb2885d822867572a1b58a4c0
Certificate serial: 018790DF5ED0B83B59B89C9065E53892D3C3
Authority key identifier: EC:4F:B0:61:A9:42:6E:4F:B2:88:5D:82:28:67:57:2A:1B:58:A4:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7E-wYalCbk-yiF2CKGdXKhtYpMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/7bc3ab-d9b6-4ae4-bcd1-ce57150695a9/1/bf1PZ1R3lbHTbawMLNPB90ZG8aU.roa
Signing time: Mon 17 Apr 2023 20:19:30 +0000
ROA not before: Mon 17 Apr 2023 20:19:30 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49042
IP address blocks: 45.14.226.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:30:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:90:df:5e:d0:b8:3b:59:b8:9c:90:65:e5:38:92:d3:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ec4fb061a9426e4fb2885d822867572a1b58a4c0
Validity
Not Before: Apr 17 20:19:30 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6dfd4f67547795b1d36dac0c2cd3c1f74646f1a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:bc:d9:fc:a7:37:ab:72:3e:92:bc:b0:26:8e:
48:dc:b6:86:ba:19:75:04:a0:b2:74:c3:52:10:5c:
3e:5d:90:72:f2:b3:94:e5:72:38:45:3c:33:bf:d8:
68:28:f4:f2:2e:de:e7:e3:93:72:0e:3a:0e:83:c2:
4e:e6:1a:39:29:21:39:ef:44:62:5f:07:63:b7:0f:
f3:4f:4e:21:0b:de:be:24:53:1b:fc:f1:ed:9a:84:
19:d5:a1:6f:96:61:11:c5:30:65:c7:e0:7d:50:07:
55:ff:1f:25:75:8c:d8:66:8c:d2:e1:8b:b5:0c:b9:
c3:72:81:8e:94:0a:8f:31:32:76:a6:e5:44:8a:6b:
5a:64:e3:82:9c:e8:32:7b:f4:64:92:01:03:7e:15:
74:e7:95:da:51:ba:1b:f7:95:53:9d:3f:f6:b7:56:
36:ab:11:dd:e5:41:91:e6:4e:da:83:25:c4:c6:bf:
10:9d:e0:c4:d8:1e:57:39:40:2a:28:05:a7:19:b1:
d8:04:28:9f:c7:5d:08:39:e1:67:06:37:24:1d:dd:
70:29:24:bf:4f:57:ee:d9:5a:11:5a:21:1d:06:5d:
7a:71:20:26:a4:94:e7:7c:e2:13:7f:e7:37:19:1f:
cc:09:cd:f1:81:87:93:76:04:b5:98:89:d6:1f:ac:
7a:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:FD:4F:67:54:77:95:B1:D3:6D:AC:0C:2C:D3:C1:F7:46:46:F1:A5
X509v3 Authority Key Identifier:
keyid:EC:4F:B0:61:A9:42:6E:4F:B2:88:5D:82:28:67:57:2A:1B:58:A4:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7E-wYalCbk-yiF2CKGdXKhtYpMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7bc3ab-d9b6-4ae4-bcd1-ce57150695a9/1/bf1PZ1R3lbHTbawMLNPB90ZG8aU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7bc3ab-d9b6-4ae4-bcd1-ce57150695a9/1/7E-wYalCbk-yiF2CKGdXKhtYpMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.14.226.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:af:7f:67:bb:ba:d1:8e:22:08:6c:04:4a:f2:a2:30:7e:07:
2d:79:d2:d8:ec:ec:94:31:80:9f:8b:cb:d7:da:f8:14:db:9a:
b3:ab:78:5b:0d:24:c6:6d:66:94:e1:19:f5:67:c0:78:09:1a:
a0:65:e5:c6:6f:5e:ab:d3:00:42:2c:28:27:2c:22:95:4c:65:
ce:0f:2e:b5:d9:df:ef:f2:59:ea:fb:e6:47:c8:68:fe:30:83:
69:10:87:04:0e:73:7f:80:3e:e5:50:f8:d7:de:d3:8d:72:aa:
b1:25:d2:55:a5:7b:9c:b9:e7:00:6a:91:12:ad:b0:e7:73:13:
8d:31:cc:cc:d0:6c:f5:1c:2d:2d:99:54:3c:39:99:8c:72:5a:
a8:8f:c4:ac:00:c0:7b:28:c4:ff:60:9a:8c:3f:d6:2e:dc:c1:
da:3c:fe:91:9f:a0:4f:19:4d:96:7c:73:d6:f1:ba:e2:99:47:
27:c0:67:c5:6b:39:c3:d3:47:d4:fb:76:09:45:76:53:87:2b:
84:c5:0d:1a:ca:8c:c8:46:e5:b7:f7:1e:2a:6f:74:09:ed:dd:
54:72:78:10:df:62:ab:db:d4:43:d2:1d:db:6f:29:e7:1f:a0:
d3:6d:e3:8a:c0:19:e6:83:8b:dd:86:ee:b9:cc:cf:c2:3f:e3:
5e:65:cd:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:00 2024 by rpki-client on console-ams.rpki-client.org