Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/b8bd3b-0026-4d56-bb25-6a5c9c0d91e9/1/BN-24VlEU9GXTQNS1upOg25xadI.roa
File: BN-24VlEU9GXTQNS1upOg25xadI.roa (raw, json)
Hash identifier: O6wmybqinPHV2wOmQosFyewO6nXl19qddATzgBmRq90=
Subject key identifier: 04:DF:B6:E1:59:44:53:D1:97:4D:03:52:D6:EA:4E:83:6E:71:69:D2
Certificate issuer: /CN=283648aff886185ffce3626f090f119a3e4ede35
Certificate serial: 01856FD507F75EC91B06C73643292961CB81
Authority key identifier: 28:36:48:AF:F8:86:18:5F:FC:E3:62:6F:09:0F:11:9A:3E:4E:DE:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KDZIr_iGGF_842JvCQ8Rmj5O3jU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/b8bd3b-0026-4d56-bb25-6a5c9c0d91e9/1/BN-24VlEU9GXTQNS1upOg25xadI.roa
Signing time: Mon 02 Jan 2023 00:15:10 +0000
ROA not before: Mon 02 Jan 2023 00:15:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25365
IP address blocks: 195.190.136.0/24 maxlen: 24
2001:67c:2f24::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:d5:07:f7:5e:c9:1b:06:c7:36:43:29:29:61:cb:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=283648aff886185ffce3626f090f119a3e4ede35
Validity
Not Before: Jan 2 00:15:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=04dfb6e1594453d1974d0352d6ea4e836e7169d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:42:e8:b4:dc:ad:06:c8:d6:3e:74:20:1d:1c:
70:9d:d8:b8:56:ac:07:45:d8:ad:7b:d3:d2:5a:c3:
0c:83:63:5f:c7:a3:94:b1:a1:9b:1a:eb:37:f5:f2:
d1:68:4c:f6:40:af:eb:a7:81:c5:56:e0:98:c7:59:
23:9a:fe:50:45:e4:24:3b:84:ce:ec:fc:6a:8c:36:
80:56:c6:75:d8:3a:03:b0:a3:17:c9:3c:2b:5e:83:
e0:c8:80:fc:ed:64:3c:ba:c0:ef:0d:df:96:0a:a6:
19:4d:68:ee:67:3e:38:81:33:be:4a:1d:38:bf:e2:
2c:a6:d4:36:a0:d7:6c:37:ec:97:10:92:b1:88:2e:
9a:49:a3:2f:5f:49:4d:7e:00:ad:15:0d:be:34:e5:
8c:cc:d2:f6:38:05:1d:5f:49:59:2e:ac:46:47:eb:
f8:d9:7a:ca:a5:af:c2:18:3a:de:8e:9a:74:a8:62:
a0:bd:06:89:81:91:aa:61:38:c2:b0:8f:68:b4:b9:
64:fe:84:18:ca:c1:d3:ba:8b:9c:10:5e:0c:4e:ce:
a1:9d:c6:ec:ac:72:ce:37:5a:c7:f2:4d:d4:4d:c5:
7a:bd:92:b4:1e:62:b5:27:52:28:23:93:70:7a:8a:
9b:2a:54:80:f1:b5:8f:0e:6f:af:df:69:74:41:ad:
06:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:DF:B6:E1:59:44:53:D1:97:4D:03:52:D6:EA:4E:83:6E:71:69:D2
X509v3 Authority Key Identifier:
keyid:28:36:48:AF:F8:86:18:5F:FC:E3:62:6F:09:0F:11:9A:3E:4E:DE:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KDZIr_iGGF_842JvCQ8Rmj5O3jU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/b8bd3b-0026-4d56-bb25-6a5c9c0d91e9/1/BN-24VlEU9GXTQNS1upOg25xadI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/b8bd3b-0026-4d56-bb25-6a5c9c0d91e9/1/KDZIr_iGGF_842JvCQ8Rmj5O3jU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.190.136.0/24
IPv6:
2001:67c:2f24::/48
Signature Algorithm: sha256WithRSAEncryption
ad:09:31:10:dc:e3:4b:4c:f3:73:53:f7:78:10:ef:1d:c5:cd:
39:73:6c:e6:15:a6:72:9f:36:a8:58:f2:b6:d0:f0:6e:0b:1c:
e2:fa:c4:93:bf:4f:a2:2c:5c:a9:50:2a:44:2b:6a:fb:ea:b2:
de:b0:e6:51:79:6c:77:69:c9:0c:89:cd:90:a5:73:e4:a5:a8:
66:0e:2a:a8:8d:66:dc:8c:a7:36:50:c2:7f:fb:5c:b2:3a:66:
35:1a:b0:38:b3:ed:c0:61:0d:6d:e4:7c:cb:02:5c:42:45:df:
66:a7:0a:a9:cf:6b:15:81:b1:27:01:0a:2e:64:d3:cc:84:3e:
dc:2c:50:42:9a:c6:75:25:2c:a9:b8:36:9f:20:19:dd:6f:62:
fe:8e:1d:ec:c2:3b:44:36:bc:37:96:44:57:12:29:51:e7:3e:
08:66:f3:f4:26:b9:79:5b:ee:4d:6a:22:6f:ba:d4:0b:49:1d:
32:dc:69:4c:00:4c:ac:77:95:2a:13:28:bf:3c:c2:7f:35:88:
cc:7c:58:af:c0:65:e9:eb:c0:38:58:a0:6e:26:18:c4:19:e3:
6f:ec:63:76:f3:4c:dc:bc:ee:1e:4f:fe:50:e3:f1:95:8d:68:
28:c8:79:47:27:e9:c8:60:cf:87:85:d2:8f:01:aa:1b:56:44:
9f:b5:c5:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:16 2024 by rpki-client on console-ams.rpki-client.org