Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/481269-dbdb-425e-9642-e1ea41c9a2e6/1/BoiKX-oIq6m-jbIqyzOZij3tofg.roa
File: BoiKX-oIq6m-jbIqyzOZij3tofg.roa (raw, json)
Hash identifier: DHhhXKadnt6rfcDH4vNsZgx27tI7BRu0bwhMLeXMotI=
Subject key identifier: 06:88:8A:5F:EA:08:AB:A9:BE:8D:B2:2A:CB:33:99:8A:3D:ED:A1:F8
Certificate issuer: /CN=9ce94757ac3f70b40f369307d365ebc9657bab69
Certificate serial: 01856F42E21FEBABAA0D0DCDD8943A6F0279
Authority key identifier: 9C:E9:47:57:AC:3F:70:B4:0F:36:93:07:D3:65:EB:C9:65:7B:AB:69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nOlHV6w_cLQPNpMH02XryWV7q2k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/481269-dbdb-425e-9642-e1ea41c9a2e6/1/BoiKX-oIq6m-jbIqyzOZij3tofg.roa
Signing time: Sun 01 Jan 2023 21:35:32 +0000
ROA not before: Sun 01 Jan 2023 21:35:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3215
IP address blocks: 156.28.6.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:30:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:42:e2:1f:eb:ab:aa:0d:0d:cd:d8:94:3a:6f:02:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9ce94757ac3f70b40f369307d365ebc9657bab69
Validity
Not Before: Jan 1 21:35:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=06888a5fea08aba9be8db22acb33998a3deda1f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:c0:b8:79:86:2d:96:f8:71:a1:b8:34:43:53:
ed:ff:a6:8c:41:e5:1e:d8:ff:34:8d:d2:8b:9a:22:
11:51:c2:47:91:86:ab:39:23:bb:7e:d5:25:24:2f:
b1:a8:0f:86:89:0f:ea:4a:3a:6e:90:58:a1:83:9f:
e7:59:51:e5:d9:c0:93:bf:ae:26:e8:ff:12:31:b0:
66:45:3a:fe:6d:2d:4c:fe:17:31:67:6c:4d:30:af:
78:cf:65:bb:a3:58:dc:4b:a4:90:70:6f:c8:6d:ac:
54:c4:e3:cf:e4:d7:8a:fb:73:db:40:dc:f8:b8:2e:
ed:7c:29:e3:1b:5f:4b:b4:8c:5b:2e:d9:93:c0:3c:
55:25:66:8b:40:0c:01:02:e4:36:f6:50:6e:bd:36:
75:d6:3f:d8:f9:a4:04:8e:bd:39:34:a9:83:df:f7:
02:38:90:6a:6d:9a:df:d4:32:1a:dc:fb:18:b3:e7:
0c:26:22:8f:0e:0a:3f:50:5c:15:be:0d:f1:7b:af:
1c:34:94:b0:bb:98:3d:95:dd:b6:e3:ad:98:4f:82:
45:48:76:b6:99:65:f4:e9:09:cd:08:74:9b:71:d3:
34:18:11:59:39:7b:a0:b6:53:e1:f7:f7:0c:53:40:
b5:cc:a9:a5:bc:17:79:b2:18:24:f8:d7:74:02:b8:
cb:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:88:8A:5F:EA:08:AB:A9:BE:8D:B2:2A:CB:33:99:8A:3D:ED:A1:F8
X509v3 Authority Key Identifier:
keyid:9C:E9:47:57:AC:3F:70:B4:0F:36:93:07:D3:65:EB:C9:65:7B:AB:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nOlHV6w_cLQPNpMH02XryWV7q2k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/481269-dbdb-425e-9642-e1ea41c9a2e6/1/BoiKX-oIq6m-jbIqyzOZij3tofg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/481269-dbdb-425e-9642-e1ea41c9a2e6/1/nOlHV6w_cLQPNpMH02XryWV7q2k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
156.28.6.0/23
Signature Algorithm: sha256WithRSAEncryption
18:1c:c2:93:b2:10:ca:40:f7:c5:47:95:9e:01:1b:9f:cb:d9:
c2:8d:2a:79:2d:b6:f9:bf:37:33:d1:33:3c:97:e2:da:5f:c1:
73:50:94:09:3a:a4:7c:c9:25:0a:ca:b6:30:99:6f:29:0e:57:
07:ae:0c:da:51:3c:62:ee:92:8c:69:a1:a3:86:4c:31:ef:33:
7a:a3:07:3e:e6:21:a5:e7:6d:a2:59:1e:4b:da:13:6b:75:cf:
f4:d7:a8:0a:15:13:ac:a6:04:6e:cf:47:91:b1:90:ab:65:2c:
03:e6:14:a6:40:2d:8e:05:8e:ba:84:22:35:ff:91:06:26:40:
b5:01:64:a3:22:87:74:c5:f8:81:35:5b:d1:c1:ab:82:41:49:
16:79:9a:92:f4:1c:39:f2:f4:1c:3d:50:35:c0:95:53:f7:90:
5b:9f:d6:8f:36:a0:53:b7:c9:09:fc:9c:84:be:27:4d:eb:da:
80:cc:ca:41:e8:19:ad:4d:64:95:cb:44:d8:1d:ec:c4:ae:e4:
d6:1e:9d:90:a3:40:6a:9d:af:df:de:63:1f:62:e6:80:78:36:
b7:4e:bc:04:9e:3f:12:90:77:b9:4b:cf:89:5b:8e:bf:a7:6a:
b8:b9:62:19:76:b9:52:91:54:00:e4:be:20:d1:09:41:e9:34:
eb:5a:52:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:34 2024 by rpki-client on console-ams.rpki-client.org