Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/dfbfc4-cc3f-477c-8d76-a8c576224ba2/1/BTzdpofJBKtynNtabW__CU73lJM.roa
File: BTzdpofJBKtynNtabW__CU73lJM.roa (raw, json)
Hash identifier: X0umnjfkeCoZ7cybSuWLtr2kZxuWrBpITqkgDtRkjZs=
Subject key identifier: 05:3C:DD:A6:87:C9:04:AB:72:9C:DB:5A:6D:6F:FF:09:4E:F7:94:93
Certificate issuer: /CN=8b91e0a104b5b3ddf1f5d08e7acb2b79e0d566f9
Certificate serial: 018572D5D30C30165AA56875F2D5BDED6F02
Authority key identifier: 8B:91:E0:A1:04:B5:B3:DD:F1:F5:D0:8E:7A:CB:2B:79:E0:D5:66:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i5HgoQS1s93x9dCOessreeDVZvk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/dfbfc4-cc3f-477c-8d76-a8c576224ba2/1/BTzdpofJBKtynNtabW__CU73lJM.roa
Signing time: Mon 02 Jan 2023 14:14:53 +0000
ROA not before: Mon 02 Jan 2023 14:14:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 45.92.116.0/22 maxlen: 22
194.28.46.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:d5:d3:0c:30:16:5a:a5:68:75:f2:d5:bd:ed:6f:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b91e0a104b5b3ddf1f5d08e7acb2b79e0d566f9
Validity
Not Before: Jan 2 14:14:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=053cdda687c904ab729cdb5a6d6fff094ef79493
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:ba:b5:e4:fe:c7:d6:e3:4b:5c:fb:d2:37:98:
11:c5:dd:5a:fb:09:16:1f:38:6d:db:0b:20:5a:4f:
29:d7:a5:00:72:6f:6e:e1:55:4e:ab:42:8d:7a:7d:
61:cf:01:b5:30:5a:50:bf:49:33:28:57:8a:d0:f1:
3a:2a:99:90:3e:b9:31:b9:91:6b:a7:1b:88:61:3f:
e2:16:35:64:72:43:28:b4:ba:a7:e7:c0:49:d8:ad:
fa:ef:40:49:ad:f3:e2:89:6a:34:69:7d:22:bf:74:
18:73:34:82:d9:24:fe:20:5b:cf:ac:9f:8c:6e:ac:
53:b4:49:32:6e:95:af:92:86:74:87:29:7e:4c:9f:
94:2e:be:27:d3:18:1d:1b:a3:a5:f4:08:a5:06:1f:
39:af:4e:54:2d:a7:cb:93:f8:50:97:49:d0:a1:d6:
28:f2:9f:f4:60:e7:fd:33:7a:eb:ab:eb:ef:ab:3b:
65:be:85:ff:3d:b1:24:6f:03:0f:ff:fa:b9:d7:e9:
c0:74:14:3f:46:40:58:a7:95:26:83:79:74:ce:aa:
64:ed:0b:f2:1d:e1:b4:5f:d6:49:1a:0b:9d:aa:c7:
21:f9:4a:7b:b3:41:8a:60:d0:78:54:22:d9:19:96:
b5:44:7a:98:64:a9:9e:00:f1:71:99:1c:1b:19:cb:
58:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:3C:DD:A6:87:C9:04:AB:72:9C:DB:5A:6D:6F:FF:09:4E:F7:94:93
X509v3 Authority Key Identifier:
keyid:8B:91:E0:A1:04:B5:B3:DD:F1:F5:D0:8E:7A:CB:2B:79:E0:D5:66:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i5HgoQS1s93x9dCOessreeDVZvk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/dfbfc4-cc3f-477c-8d76-a8c576224ba2/1/BTzdpofJBKtynNtabW__CU73lJM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/dfbfc4-cc3f-477c-8d76-a8c576224ba2/1/i5HgoQS1s93x9dCOessreeDVZvk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.92.116.0/22
194.28.46.0/23
Signature Algorithm: sha256WithRSAEncryption
27:00:1a:4a:e6:5a:52:93:66:e4:1b:b2:12:7c:ff:cf:fd:d4:
b1:40:9f:d4:02:49:61:18:4e:e3:6e:85:f6:d5:b9:f2:fb:3d:
e0:ea:53:3e:3f:6f:4f:d3:87:ca:09:fc:3c:63:a4:41:08:1a:
95:da:9a:f6:b6:5d:8b:60:17:b9:e0:f0:70:c0:2b:57:a0:23:
51:74:10:43:18:e9:86:24:63:cf:ba:25:f1:16:ba:7d:fa:73:
06:9d:16:d5:23:ed:ee:d2:a7:2a:c2:d2:39:84:13:f4:61:6a:
4d:cd:4c:d5:d8:2f:67:ac:d5:37:a5:a6:88:ab:21:a0:dd:ac:
20:ae:68:76:f3:72:da:7b:38:d3:25:ac:83:1a:a6:d9:3f:f8:
f2:b1:f1:ea:49:ee:14:89:e2:6a:2a:38:a9:5d:79:88:49:80:
bd:6b:c3:0d:21:08:5c:1d:4a:ee:f4:90:99:a5:0f:0c:ee:5a:
3b:a3:f5:37:c3:67:e5:cf:30:dc:eb:65:9e:b1:1c:d6:bb:07:
c5:6e:03:d5:1d:55:f9:6e:22:21:de:02:8e:fb:af:29:e8:a8:
81:d5:8e:40:44:c9:85:65:ff:e2:de:47:f9:bd:52:9d:e7:14:
00:6b:37:b1:1c:52:c0:1f:0d:59:cf:c9:fe:b9:ac:7c:5d:9d:
62:4e:be:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:38 2024 by rpki-client on console-ams.rpki-client.org