Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/5ad73b-db17-4322-ade5-b9a9d8ae9421/1/bcTi4A-H_XOQe3x6WfA4rZ4QtkU.roa
File: bcTi4A-H_XOQe3x6WfA4rZ4QtkU.roa (raw, json)
Hash identifier: Q1/84LH1YKAn8047TaggQVpoY8ihCecVvLTSW6Lo/Xw=
Subject key identifier: 6D:C4:E2:E0:0F:87:FD:73:90:7B:7C:7A:59:F0:38:AD:9E:10:B6:45
Certificate issuer: /CN=9b759ec9ff54de03a7ff3a65edbb2e0758e6878c
Certificate serial: 0185708CDBFB805BE9171B65F8395FB415D8
Authority key identifier: 9B:75:9E:C9:FF:54:DE:03:A7:FF:3A:65:ED:BB:2E:07:58:E6:87:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m3Weyf9U3gOn_zpl7bsuB1jmh4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/5ad73b-db17-4322-ade5-b9a9d8ae9421/1/bcTi4A-H_XOQe3x6WfA4rZ4QtkU.roa
Signing time: Mon 02 Jan 2023 03:35:57 +0000
ROA not before: Mon 02 Jan 2023 03:35:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 164.153.132.0/24 maxlen: 24
164.153.133.0/24 maxlen: 24
164.153.134.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:8c:db:fb:80:5b:e9:17:1b:65:f8:39:5f:b4:15:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b759ec9ff54de03a7ff3a65edbb2e0758e6878c
Validity
Not Before: Jan 2 03:35:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6dc4e2e00f87fd73907b7c7a59f038ad9e10b645
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:3b:ef:67:66:f7:64:61:a5:0c:1a:95:eb:5f:
2d:71:26:36:1d:0b:af:55:38:2c:60:cb:11:39:c8:
d9:c0:77:46:1a:56:f4:e8:71:0e:4c:4d:2f:f5:5e:
90:b0:2f:d9:d7:4b:5e:90:84:5d:cc:82:d7:5d:70:
d6:85:02:ad:f3:df:df:c1:4c:2c:09:bb:35:42:e2:
9e:c3:0a:09:85:9f:74:ca:d7:6f:f4:5b:01:f6:23:
8f:66:bf:ce:30:c9:26:84:65:01:66:af:f8:9b:79:
8f:33:15:8a:e4:ef:33:b4:bc:e7:5c:76:38:ac:d0:
0d:3c:12:94:08:5b:63:56:20:0c:0e:d5:ae:d3:71:
bd:82:f9:2b:0c:98:a9:eb:89:aa:04:5e:a7:6b:1d:
a8:f5:cb:b8:80:5a:78:8d:6c:63:1d:f1:d0:36:05:
04:2c:9e:f2:69:c5:84:36:28:e9:3f:cc:27:91:7d:
a3:98:49:63:64:c5:2f:c6:6a:af:ed:14:59:b7:5e:
c9:3b:78:28:1b:2a:fd:ac:79:e2:77:e8:fb:98:a9:
a3:57:f5:04:0c:54:be:23:26:59:39:31:aa:e1:82:
ad:d7:d4:69:af:e8:d5:f1:77:f0:85:d9:bc:b8:aa:
75:d6:b4:53:ba:6c:9a:19:03:7b:ef:65:e4:a4:f4:
dc:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:C4:E2:E0:0F:87:FD:73:90:7B:7C:7A:59:F0:38:AD:9E:10:B6:45
X509v3 Authority Key Identifier:
keyid:9B:75:9E:C9:FF:54:DE:03:A7:FF:3A:65:ED:BB:2E:07:58:E6:87:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m3Weyf9U3gOn_zpl7bsuB1jmh4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/5ad73b-db17-4322-ade5-b9a9d8ae9421/1/bcTi4A-H_XOQe3x6WfA4rZ4QtkU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/5ad73b-db17-4322-ade5-b9a9d8ae9421/1/m3Weyf9U3gOn_zpl7bsuB1jmh4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
164.153.132.0-164.153.134.255
Signature Algorithm: sha256WithRSAEncryption
51:98:97:b1:eb:ca:84:07:db:f5:24:86:de:35:2f:8c:65:67:
c4:d6:fc:e0:8e:d1:72:c0:68:1e:01:65:4f:d0:3a:32:89:90:
59:b1:17:c9:c3:a4:55:50:c9:ec:09:20:dc:a0:5e:e7:2e:36:
f8:69:a2:24:1f:42:83:28:23:3d:46:b3:d5:14:b3:89:22:3e:
cf:de:79:31:f8:dd:01:97:a9:13:c3:06:e3:f8:2a:65:43:94:
d2:f5:a5:54:73:ec:9d:42:d1:b5:d0:ff:09:4e:5f:df:ef:66:
58:12:16:46:6d:ef:7c:4c:01:d4:0e:f4:6d:ab:1f:ca:42:1b:
6b:79:07:c3:63:e4:eb:2a:7c:b4:f9:5a:ff:2f:4d:11:92:f5:
4a:11:62:d4:f3:4e:4e:25:8f:95:2c:a0:4f:76:dd:49:de:51:
72:58:d5:66:c5:16:7c:19:28:8c:64:e5:3d:12:ad:6c:bf:a7:
f3:f9:75:20:da:fd:e5:43:12:d3:6d:76:a7:01:1e:eb:aa:15:
85:b3:5c:ed:fe:c7:ba:61:92:a8:75:7c:de:4e:f3:6f:4a:44:
11:e8:d8:89:86:cc:c5:af:c6:06:0c:db:9e:42:b9:eb:6b:a5:
dd:19:92:a5:e6:06:d2:f8:4c:80:55:c3:50:7d:0e:d2:d0:26:
33:f2:42:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:45 2024 by rpki-client on console-ams.rpki-client.org