Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/41c321-347e-4c3e-affd-e2b527728e96/1/BijqMqOlk4_C63WZK5wSnuUMUKI.roa
File: BijqMqOlk4_C63WZK5wSnuUMUKI.roa (raw, json)
Hash identifier: gOaA/Xz0C+Oa3VIA7WSMP5ib4b2TSDgPhWlOkbcshBc=
Subject key identifier: 06:28:EA:32:A3:A5:93:8F:C2:EB:75:99:2B:9C:12:9E:E5:0C:50:A2
Certificate issuer: /CN=3fedd85c1eccb5ff4ba930117a7329099c0ff2eb
Certificate serial: 018570CBEF980E1AFA6E16E67632F8573FFF
Authority key identifier: 3F:ED:D8:5C:1E:CC:B5:FF:4B:A9:30:11:7A:73:29:09:9C:0F:F2:EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P-3YXB7Mtf9LqTARenMpCZwP8us.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/41c321-347e-4c3e-affd-e2b527728e96/1/BijqMqOlk4_C63WZK5wSnuUMUKI.roa
Signing time: Mon 02 Jan 2023 04:44:51 +0000
ROA not before: Mon 02 Jan 2023 04:44:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207360
IP address blocks: 217.22.115.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:cb:ef:98:0e:1a:fa:6e:16:e6:76:32:f8:57:3f:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3fedd85c1eccb5ff4ba930117a7329099c0ff2eb
Validity
Not Before: Jan 2 04:44:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0628ea32a3a5938fc2eb75992b9c129ee50c50a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:d9:7f:95:8f:93:1c:fc:d9:49:59:28:16:ae:
22:9e:5f:08:2c:c8:62:bb:06:57:84:c8:f3:3e:e2:
ee:f3:df:2f:9b:20:27:57:31:a9:bf:84:cb:85:5c:
65:d6:f1:ae:7a:87:8f:29:d6:21:6a:50:5a:de:89:
eb:1e:22:af:3a:c1:04:68:e4:3e:d4:fc:68:b4:17:
d5:42:1c:59:3f:81:c0:1d:09:1b:1d:7e:5c:ac:4f:
d7:11:b3:89:ee:86:9e:3b:e8:9f:ae:75:c4:22:42:
50:ba:99:8f:38:90:b4:ad:f7:5f:54:a9:81:db:8c:
e2:29:60:2b:ee:a8:a0:3c:59:e4:c3:46:fa:ae:3b:
72:87:61:2a:8c:1f:5e:33:00:75:9b:af:ac:6e:72:
5b:ff:8b:5e:03:c1:ac:e2:6b:43:53:1a:86:c2:56:
c0:98:da:0d:cb:cb:ff:f8:39:46:ce:c4:ca:15:7c:
0c:15:6b:b1:79:59:a9:8b:e1:c3:42:29:fd:7e:b3:
19:00:20:bc:bc:33:dd:27:ce:4c:95:3d:2b:96:53:
48:00:85:e5:ad:0e:ca:99:e1:c6:53:3f:93:2e:e8:
55:1a:d4:9a:32:3f:fc:ce:85:76:df:56:50:8d:81:
27:b0:24:34:ba:2f:81:2e:a4:55:83:41:81:40:06:
99:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:28:EA:32:A3:A5:93:8F:C2:EB:75:99:2B:9C:12:9E:E5:0C:50:A2
X509v3 Authority Key Identifier:
keyid:3F:ED:D8:5C:1E:CC:B5:FF:4B:A9:30:11:7A:73:29:09:9C:0F:F2:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P-3YXB7Mtf9LqTARenMpCZwP8us.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/41c321-347e-4c3e-affd-e2b527728e96/1/BijqMqOlk4_C63WZK5wSnuUMUKI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/41c321-347e-4c3e-affd-e2b527728e96/1/P-3YXB7Mtf9LqTARenMpCZwP8us.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.22.115.0/24
Signature Algorithm: sha256WithRSAEncryption
87:82:f6:ff:18:ab:61:c9:a8:12:4f:e8:1f:72:f0:9f:70:80:
36:90:10:14:9d:81:8f:3d:7d:4b:70:15:9b:6f:57:94:c0:18:
6b:12:90:9f:7c:9e:22:1b:53:1a:84:5f:b0:f7:22:4f:e9:32:
dc:03:01:b1:67:da:dd:9b:c9:0c:04:80:53:18:33:4c:81:6b:
e7:2e:60:df:5b:0e:86:51:42:37:2f:e3:85:44:bb:c3:39:80:
98:7f:f7:8f:f0:50:3c:a9:c8:2b:2d:ff:f3:bc:ce:43:aa:a2:
2c:36:20:40:ff:98:7a:54:7d:d4:1d:30:af:26:f9:ef:4a:5d:
f3:9d:3e:bc:f6:44:de:f3:29:64:b0:a3:c7:0d:49:89:73:e0:
38:5c:87:7e:8d:0e:e3:7f:30:db:8a:a6:f4:3b:42:3e:4f:c1:
19:61:42:eb:13:e1:30:cd:e5:1b:d6:ab:fb:25:37:85:a0:6f:
05:1b:50:b3:3d:de:94:63:4c:63:a6:ed:cf:0e:d2:37:75:30:
6b:f0:a6:26:cc:96:2a:de:0d:ba:ea:0e:2b:e5:31:11:65:0a:
e9:e6:47:61:d6:b7:cf:79:8c:00:0c:fa:27:fd:d0:01:a9:e6:
70:3d:17:61:2a:91:7c:50:3f:52:16:bf:68:c9:c0:ce:c3:d5:
b9:10:9a:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:57 2024 by rpki-client on console-fra.rpki-client.org