Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/0e7b29-6297-42ca-8f33-5dfccd61a9b1/1/BWg9hwFn2nYU8gqkVjP5QWdLbxQ.roa
File: BWg9hwFn2nYU8gqkVjP5QWdLbxQ.roa (raw, json)
Hash identifier: RknAUbuDVnDqsS7D799QqEILUt1MRkhAg3HopuostGk=
Subject key identifier: 05:68:3D:87:01:67:DA:76:14:F2:0A:A4:56:33:F9:41:67:4B:6F:14
Certificate issuer: /CN=54b48731e29f27d687576d6863adbda080709bfe
Certificate serial: 018EF0674EB0895071F819BD1C765E74AFD8
Authority key identifier: 54:B4:87:31:E2:9F:27:D6:87:57:6D:68:63:AD:BD:A0:80:70:9B:FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VLSHMeKfJ9aHV21oY629oIBwm_4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/0e7b29-6297-42ca-8f33-5dfccd61a9b1/1/BWg9hwFn2nYU8gqkVjP5QWdLbxQ.roa
Signing time: Thu 18 Apr 2024 08:51:25 +0000
ROA not before: Thu 18 Apr 2024 08:51:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42330
IP address blocks: 78.41.136.0/24 maxlen: 24
2a13:3840:100::/40 maxlen: 40
Validation: Failed, certificate revoked on Tue 04 Jun 2024 19:44:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:f0:67:4e:b0:89:50:71:f8:19:bd:1c:76:5e:74:af:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54b48731e29f27d687576d6863adbda080709bfe
Validity
Not Before: Apr 18 08:51:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=05683d870167da7614f20aa45633f941674b6f14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:57:5a:24:24:02:87:9d:46:8e:b3:ae:a6:9b:
61:36:e9:70:10:1f:6d:61:63:e9:8a:dd:ae:30:d1:
a9:4c:50:72:37:88:4f:ca:71:df:c1:b7:82:f9:8c:
b8:c7:c8:db:5a:9b:ad:96:83:38:b8:f2:f5:cd:0c:
85:15:78:1e:de:2d:e5:81:4a:13:85:5b:91:85:7d:
83:9d:0b:44:95:1f:eb:68:4a:19:90:ba:f9:e6:f1:
2d:5a:93:a2:54:45:3f:0b:e2:db:76:dc:0f:58:36:
de:8d:e9:61:80:f1:07:ff:f5:63:74:c2:48:d5:88:
09:0a:80:dd:25:84:39:97:f4:be:b5:39:15:21:b2:
eb:51:98:12:b8:75:5c:ad:32:31:da:33:0b:24:f4:
77:77:80:42:9c:48:14:8e:5e:95:0f:5c:89:44:0c:
6a:e5:91:2e:cc:73:14:1c:e7:bf:ae:15:c4:52:00:
bb:40:1d:cf:7b:91:cd:78:1b:ff:2e:94:9b:9f:69:
e2:c2:1f:74:31:d0:af:3f:34:84:4a:ad:93:1e:e4:
8b:a2:f9:9b:da:57:7e:35:0d:ba:80:0d:91:a9:15:
80:14:9b:7a:4f:d8:47:20:ab:66:3f:40:d6:2a:49:
cf:27:4e:b9:2a:e8:2f:2c:10:59:65:ef:95:1e:5b:
bb:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:68:3D:87:01:67:DA:76:14:F2:0A:A4:56:33:F9:41:67:4B:6F:14
X509v3 Authority Key Identifier:
keyid:54:B4:87:31:E2:9F:27:D6:87:57:6D:68:63:AD:BD:A0:80:70:9B:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VLSHMeKfJ9aHV21oY629oIBwm_4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/0e7b29-6297-42ca-8f33-5dfccd61a9b1/1/BWg9hwFn2nYU8gqkVjP5QWdLbxQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/0e7b29-6297-42ca-8f33-5dfccd61a9b1/1/VLSHMeKfJ9aHV21oY629oIBwm_4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.41.136.0/24
IPv6:
2a13:3840:100::/40
Signature Algorithm: sha256WithRSAEncryption
20:41:10:d8:e7:88:b6:67:9a:10:86:25:04:fc:98:9e:04:57:
0f:91:2f:6e:43:cf:24:66:b2:44:ab:f9:5a:1c:78:c8:5f:95:
89:41:96:34:90:f8:38:88:06:46:a4:9a:28:1a:4b:b1:4c:d0:
05:a9:8d:05:d7:0c:74:af:8f:65:0d:d2:3b:61:6b:c4:fc:52:
aa:ce:7f:e8:20:58:71:17:6f:18:dc:6e:1a:d7:be:2c:a2:78:
c0:29:ab:9d:23:73:13:02:d5:94:78:1a:11:94:92:5d:9d:ca:
7c:98:96:13:b3:bf:a1:88:65:85:47:5f:bf:4a:eb:02:a8:ac:
a6:a7:7a:93:b3:42:55:b3:ce:99:e5:14:9e:36:28:ba:72:bc:
0a:73:f0:5b:32:c2:7e:2b:46:cc:a4:81:90:82:cd:2a:28:74:
36:60:a5:d2:e3:65:44:0c:7f:4f:45:08:a1:97:ee:14:d9:a6:
93:52:11:5b:1d:fb:1d:20:29:2c:ed:e8:2c:b9:b9:4f:06:8a:
d8:e6:59:b8:d3:c1:6d:65:88:1a:f8:7b:57:d9:97:26:0b:80:
26:f0:2f:00:47:e0:86:33:d5:35:a6:96:da:ce:93:09:d6:26:
3b:db:cb:ca:d4:92:31:a5:ce:c1:22:14:99:ff:c8:db:44:08:
2c:dd:5c:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:55 2024 by rpki-client on console-fra.rpki-client.org