Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/2cc419-8e34-41a9-b243-855418ffed41/1/bsmhnB0N95WEVUmGSTcJkDo3dRM.roa
File: bsmhnB0N95WEVUmGSTcJkDo3dRM.roa (raw, json)
Hash identifier: GAJDe+kd7HKRZ6FE67c79PeruPAlzm/IIJOam2zAJWg=
Subject key identifier: 6E:C9:A1:9C:1D:0D:F7:95:84:55:49:86:49:37:09:90:3A:37:75:13
Certificate issuer: /CN=54f87b5a62c1ff0f522812e9add1756bc73384c5
Certificate serial: 01856C414D481FBF252F13B9DE8C5136B132
Authority key identifier: 54:F8:7B:5A:62:C1:FF:0F:52:28:12:E9:AD:D1:75:6B:C7:33:84:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VPh7WmLB_w9SKBLprdF1a8czhMU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/2cc419-8e34-41a9-b243-855418ffed41/1/bsmhnB0N95WEVUmGSTcJkDo3dRM.roa
Signing time: Sun 01 Jan 2023 07:34:57 +0000
ROA not before: Sun 01 Jan 2023 07:34:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208444
IP address blocks: 185.192.170.0/23 maxlen: 32
Validation: Failed, certificate revoked on Wed 08 Mar 2023 09:27:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:41:4d:48:1f:bf:25:2f:13:b9:de:8c:51:36:b1:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54f87b5a62c1ff0f522812e9add1756bc73384c5
Validity
Not Before: Jan 1 07:34:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6ec9a19c1d0df79584554986493709903a377513
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:df:51:e4:f3:98:8d:71:59:b3:fa:f1:30:61:
c0:d3:c9:12:73:7f:79:cf:1f:92:44:23:49:a4:be:
81:ac:55:17:3d:de:4f:12:c6:6b:ab:fd:3b:75:66:
f2:1a:30:bb:98:8b:51:60:e1:fe:42:77:16:82:cf:
be:01:8f:e5:ca:ec:b4:03:98:f8:82:cf:6a:c8:d3:
be:f2:00:3c:1a:97:90:26:2d:e3:67:9c:a3:a8:59:
ab:dd:a5:52:14:42:69:6e:98:ed:a6:de:12:88:7e:
d9:04:fb:22:ad:cb:01:5e:86:1b:ce:65:d8:d8:8a:
3f:79:f7:c2:60:2a:0e:cf:f2:6b:c8:1a:af:ad:31:
a0:28:7a:8a:3f:85:bd:32:2f:cb:9a:c9:bb:69:32:
0e:14:22:9c:ca:78:bd:4b:af:1f:3e:b5:37:28:b9:
78:0e:1f:08:4e:ae:80:95:e5:12:a5:74:d2:cb:8b:
3d:df:d6:4a:69:8f:55:00:15:c9:44:cc:74:b1:af:
7e:6b:e6:f6:17:78:f7:9d:49:3a:6a:16:04:a7:aa:
e3:83:69:ee:ea:56:f4:8a:08:a4:bd:ab:2c:25:fd:
ed:80:a1:92:15:5a:3d:46:68:b1:a8:1f:55:22:d9:
8e:a1:cd:b9:04:ea:d0:74:b0:e2:d2:8f:71:c2:b4:
e6:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:C9:A1:9C:1D:0D:F7:95:84:55:49:86:49:37:09:90:3A:37:75:13
X509v3 Authority Key Identifier:
keyid:54:F8:7B:5A:62:C1:FF:0F:52:28:12:E9:AD:D1:75:6B:C7:33:84:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VPh7WmLB_w9SKBLprdF1a8czhMU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/2cc419-8e34-41a9-b243-855418ffed41/1/bsmhnB0N95WEVUmGSTcJkDo3dRM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/2cc419-8e34-41a9-b243-855418ffed41/1/VPh7WmLB_w9SKBLprdF1a8czhMU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.192.170.0/23
Signature Algorithm: sha256WithRSAEncryption
0c:09:d3:17:0e:18:5a:f4:72:04:52:6a:ef:bc:93:c1:15:3e:
8a:2b:38:51:0d:51:e2:9b:ff:c1:02:a5:d7:1d:a4:66:0b:ad:
fc:74:fb:30:92:22:5d:75:cd:2a:fc:d3:eb:5b:44:49:94:2e:
d7:91:6b:d9:ca:13:a3:6f:a1:68:c2:e5:e3:27:e9:fb:e9:14:
62:cf:80:a3:f6:28:2c:17:7b:f6:2b:e9:a7:ce:32:ce:8a:40:
e8:54:53:e0:9d:2c:9f:38:cd:4f:3c:51:17:00:e3:83:b9:de:
03:5a:5f:30:ec:c5:6c:f2:7f:24:03:2e:9f:2d:5b:cd:a9:ad:
e4:ad:55:f2:14:75:68:f3:d3:75:70:23:70:40:c4:c9:1d:1c:
31:e7:db:fc:4d:5e:64:c5:64:ec:ca:13:3d:43:c9:52:68:f8:
11:c9:34:31:41:8f:bb:91:ed:94:b3:f7:cc:ff:77:63:ed:1d:
f7:81:25:96:ce:66:1f:10:52:b3:18:69:4e:e1:71:c5:21:69:
12:71:28:00:cf:93:ed:66:ca:92:39:bb:22:e5:b9:c8:64:e8:
7c:e6:c0:8c:21:ef:df:8e:33:a1:ce:c4:22:ae:55:1d:15:9f:
a1:9f:fd:cf:52:1f:e2:4a:42:72:c3:9f:7f:8e:0d:1a:33:77:
87:2b:64:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:10 2024 by rpki-client on console-ams.rpki-client.org