Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/BBGMnCy3QLIvfQ57_o4beN8DQUA.roa
File: BBGMnCy3QLIvfQ57_o4beN8DQUA.roa (raw, json)
Hash identifier: p9V5bZK90jXs4FH9e9xqy+Rg4z4MMt4ilNwvyrSO4nU=
Subject key identifier: 04:11:8C:9C:2C:B7:40:B2:2F:7D:0E:7B:FE:8E:1B:78:DF:03:41:40
Certificate issuer: /CN=131881732a3e245a959bc679e0458c39f893e46b
Certificate serial: 018DD2159EB9EE65BE5EF3BB130BC5418CCC
Authority key identifier: 13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/BBGMnCy3QLIvfQ57_o4beN8DQUA.roa
Signing time: Thu 22 Feb 2024 18:30:48 +0000
ROA not before: Thu 22 Feb 2024 18:30:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215433
IP address blocks: 5.144.176.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 27 Feb 2024 17:21:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:d2:15:9e:b9:ee:65:be:5e:f3:bb:13:0b:c5:41:8c:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=131881732a3e245a959bc679e0458c39f893e46b
Validity
Not Before: Feb 22 18:30:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=04118c9c2cb740b22f7d0e7bfe8e1b78df034140
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:3a:c7:27:88:75:ac:de:1d:f9:ed:6c:41:8e:
5d:a6:b9:92:fe:1b:40:f3:38:b4:aa:79:88:66:94:
c3:ad:c2:44:10:d9:59:16:b9:e9:d2:fd:eb:62:27:
fc:13:48:15:27:33:fd:02:85:14:2f:c0:22:2c:9f:
64:df:a5:a8:ad:f7:3a:3b:0a:29:dd:49:58:fc:63:
e4:ee:3a:9f:0f:c9:a3:53:9f:6d:33:fa:69:af:8c:
96:cf:bf:8e:fb:6b:2b:e4:6c:69:79:7d:52:fc:12:
a2:95:8d:24:6b:f9:c0:2a:37:ae:58:90:2b:39:2c:
07:64:33:08:06:0e:95:0b:2b:0c:61:ce:37:1c:5a:
a1:8a:36:6a:3a:6b:cb:2a:72:74:51:98:ce:1b:25:
54:ec:70:c5:e0:fa:f8:31:19:59:38:7d:a6:7e:24:
0e:c7:58:31:7d:af:69:db:61:10:19:f7:08:26:2d:
ee:16:04:fc:fa:35:00:b2:fd:d2:f8:47:4d:44:5b:
82:20:6e:26:b1:c5:40:23:da:3a:57:53:fe:76:da:
6e:7d:d1:00:88:ec:48:1e:7d:2f:49:60:85:7a:66:
72:54:f1:da:99:13:46:3f:a1:3b:a6:86:e9:02:9a:
9b:a7:ae:8f:59:2c:95:56:d4:9e:4c:43:bb:d6:00:
e6:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:11:8C:9C:2C:B7:40:B2:2F:7D:0E:7B:FE:8E:1B:78:DF:03:41:40
X509v3 Authority Key Identifier:
keyid:13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/BBGMnCy3QLIvfQ57_o4beN8DQUA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.144.176.0/24
Signature Algorithm: sha256WithRSAEncryption
17:03:d6:f0:6c:ae:f2:3e:2b:1c:48:b8:52:74:b9:7f:e6:36:
6e:8e:73:13:c5:50:84:14:e3:40:ca:f2:99:01:11:40:ab:79:
aa:91:d2:dc:df:31:32:61:b1:64:7b:46:43:24:3a:8b:b7:78:
bd:6f:c0:1f:b3:53:02:4c:cf:2a:c7:c8:03:06:ac:2d:d6:bf:
b9:e6:ae:a5:34:40:27:5d:70:f4:e3:b5:cb:d7:82:6a:e5:70:
23:7e:44:d6:45:3c:28:2f:9b:e3:e2:b1:0e:b8:4e:f4:8c:46:
e7:ef:40:f6:07:5b:d5:92:3e:c5:c1:35:4a:0f:cb:ba:c3:bb:
00:6b:56:b4:5c:a0:6c:9b:82:cf:4e:9a:eb:9b:b3:3a:82:8c:
d2:28:5b:66:58:6a:74:2b:68:73:d1:a3:12:5d:0d:4b:74:58:
41:7f:c2:05:c0:43:68:d8:9b:03:bb:f7:ed:86:c5:66:8c:ba:
f5:d9:0f:11:e8:77:71:45:a8:a8:52:3d:17:fe:0d:d2:c1:b7:
d5:f3:1c:48:3c:93:22:d0:a3:89:17:81:51:aa:08:12:5f:4a:
65:e9:49:26:1a:7a:70:4b:ba:e6:a1:57:57:fd:34:14:d0:cb:
ed:17:e8:7d:bf:0b:10:7f:99:91:58:5d:98:d1:e2:45:5c:0d:
45:70:5b:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:14 2024 by rpki-client on console-ams.rpki-client.org