Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/BGmS7ndi7grgUeFQSDKChoDhD0A.roa
File: BGmS7ndi7grgUeFQSDKChoDhD0A.roa (raw, json)
Hash identifier: 7X/Om/+biBlcFUclV2r2zyV/AVwBmIburxCjYPoxgEo=
Subject key identifier: 04:69:92:EE:77:62:EE:0A:E0:51:E1:50:48:32:82:86:80:E1:0F:40
Certificate issuer: /CN=073b4c1248c4bcf22b0577dfca9b14d9063c28c0
Certificate serial: 0189D9DD2ECA38DCB9D27758FDAECE7B2230
Authority key identifier: 07:3B:4C:12:48:C4:BC:F2:2B:05:77:DF:CA:9B:14:D9:06:3C:28:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BztMEkjEvPIrBXffypsU2QY8KMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/BGmS7ndi7grgUeFQSDKChoDhD0A.roa
Signing time: Wed 09 Aug 2023 10:34:58 +0000
ROA not before: Wed 09 Aug 2023 10:34:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197414
IP address blocks: 87.251.64.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:d9:dd:2e:ca:38:dc:b9:d2:77:58:fd:ae:ce:7b:22:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=073b4c1248c4bcf22b0577dfca9b14d9063c28c0
Validity
Not Before: Aug 9 10:34:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=046992ee7762ee0ae051e1504832828680e10f40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:5b:da:3f:4e:ee:cc:d8:40:5a:13:9d:a4:95:
e1:db:f5:fa:f6:8a:23:2e:21:e6:e8:51:18:a6:89:
38:88:cc:06:e9:56:68:1d:a4:91:4a:bc:8a:c4:56:
e7:30:b7:28:9b:cf:dc:1b:cd:c6:c6:63:eb:02:0e:
6c:77:8a:9e:d9:bf:a5:ce:c3:bb:df:92:45:0b:68:
52:c3:ca:99:4b:65:40:9e:e7:7a:ff:3d:81:f5:f1:
38:f6:f8:6c:3c:57:15:68:7e:30:ab:7a:72:35:6c:
78:25:d6:0b:b4:4a:6b:f5:96:0b:e0:32:9c:52:e4:
a4:bd:04:93:7e:20:3e:dd:0a:a5:97:ed:07:e1:02:
f2:da:b6:c9:24:d3:13:1d:0f:ef:32:f4:87:ec:2b:
22:20:30:96:57:92:75:02:c6:26:98:0f:09:fb:29:
53:5c:d3:c9:83:94:89:dc:17:41:19:8d:2b:97:4a:
b1:3d:1b:1a:44:d6:ff:6a:31:63:09:7d:bf:c6:04:
e8:91:c5:60:38:dd:58:e2:78:7b:77:86:16:33:b1:
3e:56:15:bc:08:6f:b1:ea:f0:7c:b1:45:61:c7:7c:
60:fa:2f:77:f7:a5:89:2a:84:1c:48:ed:63:ab:60:
16:6a:76:d8:16:a6:75:d4:69:2b:d4:1e:77:c9:f8:
8c:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:69:92:EE:77:62:EE:0A:E0:51:E1:50:48:32:82:86:80:E1:0F:40
X509v3 Authority Key Identifier:
keyid:07:3B:4C:12:48:C4:BC:F2:2B:05:77:DF:CA:9B:14:D9:06:3C:28:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BztMEkjEvPIrBXffypsU2QY8KMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/BGmS7ndi7grgUeFQSDKChoDhD0A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/BztMEkjEvPIrBXffypsU2QY8KMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.251.64.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:45:1f:bb:ad:a1:57:85:49:c0:34:7b:70:e2:d7:77:2e:03:
46:19:e8:c5:33:93:4e:e9:85:9a:d1:97:01:3a:4c:10:53:a8:
05:8d:2a:f7:37:39:1c:90:1a:8d:44:3c:19:3d:de:4f:c9:0c:
1f:bd:78:a2:6e:8e:3b:ef:66:53:f4:a2:34:41:7d:fa:f9:f8:
51:58:75:95:02:84:e7:d4:00:3d:40:a7:fe:06:b3:75:31:b9:
99:1b:2c:f2:03:31:94:91:d5:0a:b5:4c:88:59:4a:80:9d:c6:
ee:0c:31:50:be:fc:41:86:36:96:8f:c4:be:47:4a:54:b3:66:
1d:6e:6f:d4:45:bf:03:26:6f:59:60:28:2e:4f:cb:cb:77:ac:
12:54:22:cf:34:84:07:b0:c5:eb:c9:dc:01:aa:d8:07:dc:73:
99:2d:d2:3c:de:16:00:e3:81:fb:7d:67:88:94:f2:ea:74:26:
80:c4:7d:19:58:b6:2f:19:3a:4f:67:15:5c:58:e2:b1:86:95:
e2:0c:ec:e5:aa:9d:43:7a:31:93:07:a2:19:a9:93:02:bb:99:
6a:3b:fc:24:44:84:2a:81:47:14:38:f7:00:df:41:6c:d5:f6:
7a:52:a6:e6:eb:89:3b:21:f4:f8:cf:a0:1b:30:d9:e8:ac:25:
96:04:04:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 09:00:25 2024 by rpki-client on console-ams.rpki-client.org