Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/5f172f-65d2-4591-88f4-9f8657190f55/1/BiIF9RH-ZU6AmtAKwWAnQjijh8o.roa
File: BiIF9RH-ZU6AmtAKwWAnQjijh8o.roa (raw, json)
Hash identifier: QP09AF9UH2ko9B9r2SlDKYJGX5RbMSaO1LsAKk4FvBU=
Subject key identifier: 06:22:05:F5:11:FE:65:4E:80:9A:D0:0A:C1:60:27:42:38:A3:87:CA
Certificate issuer: /CN=943955a6e8c546ce3ed919f38ea0630d840a17ed
Certificate serial: 01856D3855910CA316F98BDA29A56C67BDD5
Authority key identifier: 94:39:55:A6:E8:C5:46:CE:3E:D9:19:F3:8E:A0:63:0D:84:0A:17:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lDlVpujFRs4-2RnzjqBjDYQKF-0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/5f172f-65d2-4591-88f4-9f8657190f55/1/BiIF9RH-ZU6AmtAKwWAnQjijh8o.roa
Signing time: Sun 01 Jan 2023 12:04:46 +0000
ROA not before: Sun 01 Jan 2023 12:04:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49051
IP address blocks: 94.143.229.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:38:55:91:0c:a3:16:f9:8b:da:29:a5:6c:67:bd:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=943955a6e8c546ce3ed919f38ea0630d840a17ed
Validity
Not Before: Jan 1 12:04:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=062205f511fe654e809ad00ac160274238a387ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:33:9c:a9:05:7a:63:5e:82:17:bb:fd:b8:fb:
6a:ad:5d:d8:75:a6:9f:5d:2f:68:5f:f4:e0:9b:4d:
ab:aa:b4:80:b7:2a:69:60:81:2f:ca:47:16:f3:90:
d8:e6:eb:f3:20:0a:3c:e5:3b:50:f2:76:3d:14:60:
1b:c1:af:3b:80:1d:d1:e6:55:74:1b:c5:77:38:fa:
ac:1e:cb:90:c1:c5:32:63:03:8e:a6:61:1c:c1:d8:
41:8e:d4:50:d4:ce:dc:42:14:30:74:18:52:43:72:
1e:e7:64:7f:8b:fa:68:a4:85:57:94:8b:6e:6d:b9:
63:59:7c:3d:b3:a6:42:ac:10:21:93:cf:87:1f:f0:
37:5b:86:2c:96:00:ed:f6:d4:11:91:6b:ee:58:c0:
0d:33:96:b7:36:16:6f:c1:cf:de:77:47:63:e3:25:
0e:09:aa:a4:27:09:bb:c8:41:86:58:27:50:cd:e1:
d6:27:3a:fa:bf:12:ca:a1:8f:42:dd:3f:df:ae:c3:
0c:86:64:6a:67:af:de:5e:2b:2b:89:d2:d3:78:8f:
88:27:d7:1a:a8:68:4b:c3:ac:bd:48:d7:ce:a8:37:
80:38:ed:23:27:88:9e:b2:b8:b9:09:87:c2:f5:30:
4f:d9:34:81:42:7b:86:d4:ab:58:00:2b:e3:43:ec:
bc:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:22:05:F5:11:FE:65:4E:80:9A:D0:0A:C1:60:27:42:38:A3:87:CA
X509v3 Authority Key Identifier:
keyid:94:39:55:A6:E8:C5:46:CE:3E:D9:19:F3:8E:A0:63:0D:84:0A:17:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lDlVpujFRs4-2RnzjqBjDYQKF-0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/5f172f-65d2-4591-88f4-9f8657190f55/1/BiIF9RH-ZU6AmtAKwWAnQjijh8o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/5f172f-65d2-4591-88f4-9f8657190f55/1/lDlVpujFRs4-2RnzjqBjDYQKF-0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.143.229.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:c0:42:04:db:7d:e9:4e:bc:0c:40:59:37:ea:f3:29:0c:8f:
8b:d1:02:f5:8d:b9:32:74:7c:67:ba:ea:aa:97:8c:59:24:67:
e2:61:9c:c2:58:4e:e2:5a:0c:7d:e8:4d:5c:b1:d7:c7:ff:9f:
90:7f:08:fc:00:04:db:0b:6f:a7:7c:9d:e2:32:24:c8:96:e9:
cd:a1:cf:fd:56:e4:66:8a:1b:fd:1f:79:a8:eb:41:9c:d0:8f:
12:e8:9b:fc:cf:18:78:87:7a:5e:8e:09:cc:5b:3a:72:d1:da:
3b:90:a0:1f:90:a8:8e:2c:eb:9f:4e:11:a0:bc:d8:3a:01:a7:
8e:b9:f0:f3:1a:91:c5:97:42:75:a0:e9:75:07:c5:d1:d2:27:
dc:48:ff:ab:9e:ae:3f:b5:c1:8e:37:f7:b9:fd:b7:b3:42:87:
b7:90:04:f5:b7:fd:3d:f0:50:6b:e2:c9:cc:ae:96:ee:69:57:
30:ae:c3:46:81:a1:20:7d:07:65:25:bb:e9:14:a7:33:19:e6:
9d:34:91:40:b6:65:af:60:6d:7a:48:c3:25:2c:4f:e7:0f:67:
61:ae:69:8e:9f:b8:ce:ee:29:c7:57:b8:09:74:49:b9:16:a1:
ff:8a:06:e0:0e:e6:df:b2:7b:a9:73:9b:c9:f0:4b:72:b7:43:
12:26:81:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:07 2024 by rpki-client on console-ams.rpki-client.org