Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/6123c4-2bc5-4df9-ad13-e1d99b8706e4/1/BmWAPt8dCurh8gtq6YBnJw7QiSY.roa
File: BmWAPt8dCurh8gtq6YBnJw7QiSY.roa (raw, json)
Hash identifier: jYQ9B9Es5d2tmiXqupPOdCotmaufZ1iROwnKWKZulu8=
Subject key identifier: 06:65:80:3E:DF:1D:0A:EA:E1:F2:0B:6A:E9:80:67:27:0E:D0:89:26
Certificate issuer: /CN=1008ba5429a709bc58ecdbae3f17e1bc9d3a4d5c
Certificate serial: 01857271146C4D00101A896605FF608CA667
Authority key identifier: 10:08:BA:54:29:A7:09:BC:58:EC:DB:AE:3F:17:E1:BC:9D:3A:4D:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EAi6VCmnCbxY7NuuPxfhvJ06TVw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/6123c4-2bc5-4df9-ad13-e1d99b8706e4/1/BmWAPt8dCurh8gtq6YBnJw7QiSY.roa
Signing time: Mon 02 Jan 2023 12:24:51 +0000
ROA not before: Mon 02 Jan 2023 12:24:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47688
IP address blocks: 185.142.226.0/23 maxlen: 24
2a07:3146::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:71:14:6c:4d:00:10:1a:89:66:05:ff:60:8c:a6:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1008ba5429a709bc58ecdbae3f17e1bc9d3a4d5c
Validity
Not Before: Jan 2 12:24:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0665803edf1d0aeae1f20b6ae98067270ed08926
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:61:83:4b:d5:e0:f6:6f:c0:52:86:d4:5a:bb:
1a:61:10:ef:40:2c:dc:8a:5a:8b:32:24:7a:a4:61:
3b:01:3a:7f:63:ce:9b:69:44:94:93:28:a5:0d:9c:
ba:c1:b4:9f:1c:e0:fe:c4:63:8f:75:37:d5:4c:f1:
7d:e3:52:66:87:3e:32:4d:ce:e1:90:07:97:3b:b4:
7d:d4:e6:04:7e:d3:67:a4:7d:fa:45:06:c6:89:d0:
70:1a:7c:38:ea:ba:2b:fe:02:ee:cb:28:37:8b:73:
7e:73:1e:65:75:ee:67:9a:d6:d0:5e:e9:ab:af:5c:
bd:6e:a3:59:4a:f8:9b:d9:01:7b:22:e3:93:6c:99:
2e:39:f9:df:1d:16:07:a9:8a:25:e8:74:aa:7f:f9:
18:b3:68:c3:70:d2:57:71:07:1f:e8:20:20:f8:c7:
4f:9f:7a:78:40:c1:34:33:51:bb:c4:2c:68:fd:35:
22:07:d9:5e:e0:1d:0b:9f:6c:a3:62:52:6e:86:e4:
b7:5e:85:86:a7:3a:ee:be:61:02:89:60:06:47:fb:
00:e8:f4:14:aa:31:f8:a4:0a:10:fc:ec:41:ab:62:
bd:a7:86:ca:d0:06:48:79:ce:fc:9b:fb:f9:f3:ad:
fa:05:4c:b0:d6:a4:c1:e6:11:0d:7f:3a:2e:5e:2e:
0f:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:65:80:3E:DF:1D:0A:EA:E1:F2:0B:6A:E9:80:67:27:0E:D0:89:26
X509v3 Authority Key Identifier:
keyid:10:08:BA:54:29:A7:09:BC:58:EC:DB:AE:3F:17:E1:BC:9D:3A:4D:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EAi6VCmnCbxY7NuuPxfhvJ06TVw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/6123c4-2bc5-4df9-ad13-e1d99b8706e4/1/BmWAPt8dCurh8gtq6YBnJw7QiSY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/6123c4-2bc5-4df9-ad13-e1d99b8706e4/1/EAi6VCmnCbxY7NuuPxfhvJ06TVw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.142.226.0/23
IPv6:
2a07:3146::/32
Signature Algorithm: sha256WithRSAEncryption
8c:a9:de:f0:b3:aa:b2:9b:22:9c:3f:a9:c0:84:a9:66:0b:cc:
4d:de:57:97:1d:0c:e1:b5:77:00:35:a3:25:47:a4:e2:d9:f1:
c5:79:07:4c:18:3d:cd:42:fe:07:d3:c8:d0:09:29:1a:0a:dc:
9c:29:5e:52:9e:7f:7f:1d:1d:21:84:55:9e:74:ad:f1:a4:b7:
b8:84:7d:f2:b1:97:d0:ac:30:ba:7f:48:7f:bd:21:ab:3f:b7:
43:39:79:bd:25:ab:5e:82:7c:5a:29:eb:28:ff:26:97:30:35:
da:9f:5d:71:e2:96:b7:15:cc:d7:0a:f4:4e:e9:40:c8:70:9c:
39:74:9e:20:33:f3:5e:15:71:d7:66:ce:91:89:d9:9a:2b:2b:
3e:bf:a8:5a:bc:02:0b:43:31:dd:5b:ba:84:b6:78:68:ea:2b:
62:f6:a1:9e:87:d7:fa:0b:69:b3:38:1c:45:a8:0b:b9:ee:2b:
4e:04:16:65:08:f1:8d:2b:0b:27:13:71:3c:62:34:33:0c:92:
d8:cb:b8:2b:79:cb:be:8f:62:19:6d:8f:f4:63:50:12:ec:d2:
97:85:d8:65:12:83:7d:93:12:94:8f:4e:a8:78:a3:40:6b:8a:
c4:8f:66:38:70:d8:30:88:a4:bb:ba:89:89:aa:ea:60:9c:93:
cf:1e:22:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:34 2024 by rpki-client on console-fra.rpki-client.org