Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/bxFV8JN5bBCivEHhHVSiWNIRM-E.roa
File: bxFV8JN5bBCivEHhHVSiWNIRM-E.roa (raw, json)
Hash identifier: cToDMctWrG2EcY+dQnsGsacWbCCanaz8quRR7u/LBJg=
Subject key identifier: 6F:11:55:F0:93:79:6C:10:A2:BC:41:E1:1D:54:A2:58:D2:11:33:E1
Certificate issuer: /CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Certificate serial: 018D2866073918B33E1696EEEAE4F9F6256E
Authority key identifier: 77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/bxFV8JN5bBCivEHhHVSiWNIRM-E.roa
Signing time: Sat 20 Jan 2024 19:43:11 +0000
ROA not before: Sat 20 Jan 2024 19:43:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 201703
IP address blocks: 87.248.130.0/24 maxlen: 24
87.248.133.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 21 Jan 2024 10:12:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:28:66:07:39:18:b3:3e:16:96:ee:ea:e4:f9:f6:25:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Validity
Not Before: Jan 20 19:43:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6f1155f093796c10a2bc41e11d54a258d21133e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:1e:1b:f4:35:fb:70:f1:61:c6:1d:52:c2:a0:
3b:88:2b:e6:a6:f1:01:d5:0e:33:c1:fa:f8:69:d4:
e5:2d:8a:15:33:6d:8a:ec:28:d3:06:b0:b9:02:c7:
28:45:85:aa:d3:06:d1:47:54:37:78:34:62:9a:b0:
18:b6:18:89:c1:73:61:83:d5:25:71:2c:89:24:d7:
29:78:58:7d:b1:44:f6:8a:bc:59:ea:eb:fc:4b:77:
e3:9b:79:81:f4:7b:f9:b9:19:75:31:9f:40:37:15:
85:87:9a:10:70:60:0e:c4:88:5b:e8:5c:4a:10:f2:
4f:28:ab:7a:5f:9a:21:21:a0:31:ab:11:6a:b6:d6:
68:25:fc:83:1f:93:b4:54:f1:97:68:29:20:e3:4e:
92:01:87:2c:3d:fd:10:48:6d:69:da:6f:30:b4:4b:
f4:21:de:1a:a4:ef:c7:73:8e:f8:ba:2c:8f:13:0a:
05:50:2b:cc:2b:4e:0a:b6:8c:38:55:26:c8:76:33:
eb:91:39:b5:8c:0d:f7:c0:a5:c3:91:fc:0f:0a:04:
89:28:b0:1c:ad:1e:33:73:e4:1b:d2:ee:62:7d:55:
e3:6e:eb:bc:03:80:b8:5a:bb:8e:c4:4d:b2:c9:26:
69:a0:7e:00:0e:80:cc:bf:dd:9f:60:9a:8f:f2:33:
87:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:11:55:F0:93:79:6C:10:A2:BC:41:E1:1D:54:A2:58:D2:11:33:E1
X509v3 Authority Key Identifier:
keyid:77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/bxFV8JN5bBCivEHhHVSiWNIRM-E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.248.130.0/24
87.248.133.0/24
Signature Algorithm: sha256WithRSAEncryption
38:1c:93:bd:2e:32:98:a2:71:98:31:48:cd:25:3d:38:2a:58:
c9:f1:f3:71:bb:ed:92:cb:cc:93:ec:c9:7d:2c:5b:8e:5f:64:
02:f9:bd:fb:d6:14:2b:50:1a:9c:62:ff:68:59:b6:a0:dd:2a:
e4:16:5e:6b:1e:a5:ef:4b:37:bb:12:0f:12:6c:3e:19:c1:a9:
d2:d2:1e:b7:41:ad:84:13:b2:3c:3e:38:5c:d2:4d:db:ad:21:
08:f0:93:05:bf:2d:3f:4b:05:00:79:70:0a:3f:3f:c8:19:98:
89:f1:c1:96:dc:1a:e2:30:c6:c6:79:67:1b:e5:4e:61:18:9e:
d5:ad:dd:40:67:fb:f4:db:63:0d:49:6d:8a:6f:aa:1c:d1:31:
cf:b7:89:f3:03:96:ff:09:cf:2b:c6:15:92:ca:7a:b4:40:fc:
9d:fe:37:b1:61:0c:8b:19:af:93:24:50:64:4d:3d:35:bd:8d:
4f:62:42:d9:a6:c7:46:dc:d0:2c:cd:c7:3b:ce:8a:25:80:29:
dd:74:da:11:83:fd:bb:fd:53:6d:db:70:09:37:cd:8f:ac:13:
99:29:ba:bf:3f:49:30:ab:b7:83:18:a0:57:6f:e1:17:61:23:
fa:84:e6:45:f8:0f:c0:2e:6d:5b:23:8a:f9:fe:6c:2a:b4:20:
e3:f4:39:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:35 2024 by rpki-client on console-fra.rpki-client.org