Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/BvmqlrbzETfCtixiGB5FhkbCOAM.roa
File: BvmqlrbzETfCtixiGB5FhkbCOAM.roa (raw, json)
Hash identifier: 9SgpkFkIlN3mad5fWuflVNe7YEPtLocWOVU58Gbbs/c=
Subject key identifier: 06:F9:AA:96:B6:F3:11:37:C2:B6:2C:62:18:1E:45:86:46:C2:38:03
Certificate issuer: /CN=279dbfdf4c20bdae8d6118566ece76444e46d171
Certificate serial: 01857355D82C89DA585433EB8CF5C4DC33FA
Authority key identifier: 27:9D:BF:DF:4C:20:BD:AE:8D:61:18:56:6E:CE:76:44:4E:46:D1:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/BvmqlrbzETfCtixiGB5FhkbCOAM.roa
Signing time: Mon 02 Jan 2023 16:34:43 +0000
ROA not before: Mon 02 Jan 2023 16:34:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 17035
IP address blocks: 2001:668:120::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:55:d8:2c:89:da:58:54:33:eb:8c:f5:c4:dc:33:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=279dbfdf4c20bdae8d6118566ece76444e46d171
Validity
Not Before: Jan 2 16:34:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=06f9aa96b6f31137c2b62c62181e458646c23803
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:a5:83:f6:8b:93:56:e5:0b:8c:f2:12:50:85:
1c:46:88:ba:df:9c:76:86:25:78:4a:4c:1a:a0:3b:
3c:58:2a:6e:c4:a8:b7:ca:1c:87:f7:e6:c6:21:ff:
2b:04:3c:82:39:b2:7d:47:c5:1d:67:52:54:8a:00:
44:2b:07:af:75:83:83:34:1a:dc:35:71:d9:09:ad:
fd:7f:4e:36:a3:af:ca:3f:b2:eb:f4:76:02:7a:c5:
2b:56:7c:55:f8:61:25:4b:0c:f9:62:ac:dd:21:fe:
91:7b:72:94:d9:00:79:29:8b:8d:73:17:c3:4d:74:
b0:98:f8:cf:64:09:34:92:5e:af:ab:b3:67:73:5f:
13:7b:7d:3d:48:c9:9d:35:72:da:c1:2c:77:81:59:
e7:0e:cf:c5:3f:13:af:67:d5:95:8e:cc:3d:32:64:
0a:09:ea:14:3d:29:ad:7d:fb:d1:63:1b:12:aa:48:
ff:05:6a:7a:62:12:60:d5:7d:31:33:7c:c5:82:e2:
07:72:00:d3:3d:41:a2:d2:ee:92:3f:06:4a:9d:a2:
78:66:64:2f:52:e9:bd:09:63:71:a1:06:71:d9:4c:
4c:ae:b2:cb:75:ce:fc:e3:b5:84:da:f9:a6:8b:23:
1d:a3:7f:76:ae:9c:ca:e0:0b:b1:1b:24:4b:74:16:
b7:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:F9:AA:96:B6:F3:11:37:C2:B6:2C:62:18:1E:45:86:46:C2:38:03
X509v3 Authority Key Identifier:
keyid:27:9D:BF:DF:4C:20:BD:AE:8D:61:18:56:6E:CE:76:44:4E:46:D1:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/BvmqlrbzETfCtixiGB5FhkbCOAM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/J52_30wgva6NYRhWbs52RE5G0XE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:668:120::/48
Signature Algorithm: sha256WithRSAEncryption
a2:04:47:d6:d7:ac:34:9b:01:80:97:33:1d:c6:49:e4:8d:2c:
50:09:fb:32:88:41:d7:f1:99:08:ad:b5:08:e8:20:ee:01:1b:
3c:8a:8c:7d:f0:1c:47:6f:f6:3f:cb:1d:05:5e:02:dc:a2:18:
96:0a:ca:82:cc:50:31:96:ca:b8:2d:23:5e:6d:64:e4:0a:ca:
a1:df:9b:e2:83:12:ff:3b:00:ed:8e:37:c6:cd:20:29:c8:63:
7b:7e:8f:ee:38:dd:df:6f:a9:dc:d5:ae:eb:22:97:08:aa:2f:
57:34:de:ff:6b:1e:e7:55:e9:26:09:0e:09:64:66:df:5b:aa:
5b:b4:26:89:70:08:1d:6a:9d:40:45:d3:10:51:91:92:f4:db:
c1:ca:c5:ef:7c:8a:0f:2f:17:ec:31:ae:83:d4:9a:f5:b6:a4:
9f:0a:e2:12:fb:47:e6:83:13:da:26:85:22:7e:5d:28:33:69:
ad:3a:a4:4e:e6:93:05:22:67:01:7b:d7:54:24:7b:df:50:44:
1c:eb:63:be:ee:2b:ab:b9:58:1b:21:ae:27:ba:51:46:d5:c6:
ab:7b:12:66:23:8b:6c:d1:4f:bf:47:b5:b9:35:fb:ce:d7:e0:
00:f3:0e:35:5e:26:2d:98:a0:be:c6:89:e3:69:06:a7:7a:47:
e7:20:51:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 04:22:23 2024 by rpki-client on console-fra.rpki-client.org