Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/bKkwWqjPn2bGqTHJs7_HDpTVQnU.roa
File: bKkwWqjPn2bGqTHJs7_HDpTVQnU.roa (raw, json)
Hash identifier: X8ZZkYQqZj2H6l6JmsAuUs4kwqzSvR2ZdNA+N20V9YE=
Subject key identifier: 6C:A9:30:5A:A8:CF:9F:66:C6:A9:31:C9:B3:BF:C7:0E:94:D5:42:75
Certificate issuer: /CN=8f3818554a51808eefb829ec7465a3222f270123
Certificate serial: 018BB9F621EF5AC37267BF0BD530B870C20B
Authority key identifier: 8F:38:18:55:4A:51:80:8E:EF:B8:29:EC:74:65:A3:22:2F:27:01:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jzgYVUpRgI7vuCnsdGWjIi8nASM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/bKkwWqjPn2bGqTHJs7_HDpTVQnU.roa
Signing time: Fri 10 Nov 2023 15:59:57 +0000
ROA not before: Fri 10 Nov 2023 15:59:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 28809
IP address blocks: 85.91.106.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:b9:f6:21:ef:5a:c3:72:67:bf:0b:d5:30:b8:70:c2:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f3818554a51808eefb829ec7465a3222f270123
Validity
Not Before: Nov 10 15:59:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6ca9305aa8cf9f66c6a931c9b3bfc70e94d54275
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:4e:5f:b2:e1:b8:70:91:6c:7b:74:e4:17:83:
85:9c:98:84:30:4c:f1:05:d8:71:a9:94:e8:96:b7:
72:ce:f4:15:db:42:09:9e:52:e4:f7:3a:10:97:6b:
80:7d:eb:38:d4:92:fe:8e:74:57:f4:6e:2d:ce:0d:
91:d2:a9:43:2a:99:d3:a5:cc:7c:4b:01:1b:c3:49:
78:52:2a:f8:d4:c2:92:a8:ad:02:01:fd:54:21:16:
bd:cb:be:a3:12:0d:cc:ad:ac:a2:64:dc:26:9c:ad:
47:26:cd:fa:16:d8:c0:b5:5e:7e:67:30:e4:42:00:
a1:22:f6:bf:df:25:bb:fc:cf:f8:20:f4:c3:a0:aa:
0b:2e:9b:ef:21:67:13:fb:43:d9:72:6a:88:c0:50:
ee:e8:9d:17:57:1b:66:53:f3:85:aa:17:8f:80:fc:
2f:ec:40:c3:c7:9b:95:76:8d:fa:c0:e3:df:d7:0c:
30:59:0a:6b:18:59:96:c9:ca:cc:13:03:5a:78:86:
a8:5a:54:51:f3:c5:ab:ae:45:19:3c:39:2e:d6:23:
8c:eb:8f:8f:91:f0:0d:02:5f:79:66:45:39:e3:45:
64:95:fe:ba:d2:17:b0:8f:52:9c:81:36:f4:47:4a:
cb:69:bb:2b:93:b7:62:7d:05:31:b4:31:d1:fb:54:
b5:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:A9:30:5A:A8:CF:9F:66:C6:A9:31:C9:B3:BF:C7:0E:94:D5:42:75
X509v3 Authority Key Identifier:
keyid:8F:38:18:55:4A:51:80:8E:EF:B8:29:EC:74:65:A3:22:2F:27:01:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jzgYVUpRgI7vuCnsdGWjIi8nASM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/bKkwWqjPn2bGqTHJs7_HDpTVQnU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/jzgYVUpRgI7vuCnsdGWjIi8nASM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.91.106.0/24
Signature Algorithm: sha256WithRSAEncryption
41:f5:cb:16:a0:db:cf:f2:ac:52:3b:4f:d3:50:c1:75:95:bc:
4f:54:7a:ae:ca:0a:3f:10:f9:11:08:79:69:69:b1:6c:56:bb:
47:17:1d:04:18:0b:7b:1b:17:e7:19:b1:72:3e:7d:9d:fc:7f:
3b:b1:b2:25:11:0e:ea:21:5a:e9:5f:5a:a0:d2:6d:8a:15:4a:
51:bc:db:3c:bf:2f:56:3c:36:78:a9:1a:58:7a:67:24:1a:d8:
e9:d7:cb:60:b2:7f:ee:a8:e0:2e:d9:18:64:6a:fd:af:60:46:
d2:21:e3:ee:60:a2:bb:78:74:1b:b4:35:bf:1d:ba:53:cc:f4:
eb:2c:97:39:df:0c:07:db:86:38:b1:82:e5:5b:96:cd:64:41:
00:94:c6:b3:c4:23:f9:9e:c1:67:fb:72:b7:74:f9:d7:d8:04:
2e:ef:57:81:a8:26:91:48:89:21:63:96:69:d5:aa:9e:2a:a0:
ec:e5:b8:d9:c3:3d:2f:e8:7f:f5:96:fb:dd:d0:ad:8f:f7:3a:
d5:6f:d2:83:66:e9:9d:ba:4a:76:84:c9:69:0e:a3:68:84:db:
20:3f:b4:f3:cf:7c:0e:e9:3b:c8:7d:5a:de:e1:cb:cf:17:96:
5b:f7:9f:53:08:05:43:33:38:f1:c6:3b:04:8d:65:b0:d9:a3:
8e:5a:c0:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:05 2024 by rpki-client on console-ams.rpki-client.org