Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Bspp2_ZihjBGPoVVqn8NlIxGV48.roa
File: Bspp2_ZihjBGPoVVqn8NlIxGV48.roa (raw, json)
Hash identifier: 1jN5BsJpk21EEv4xIU5TwiOV5qCvD4WGdl3XtNSde4c=
Subject key identifier: 06:CA:69:DB:F6:62:86:30:46:3E:85:55:AA:7F:0D:94:8C:46:57:8F
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0185E48AD205F412EBB446BD369AD7BF8C64
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Bspp2_ZihjBGPoVVqn8NlIxGV48.roa
Signing time: Tue 24 Jan 2023 16:09:40 +0000
ROA not before: Tue 24 Jan 2023 16:09:40 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203691
IP address blocks: 2a0e:b107:1c0::/48 maxlen: 48
2a0e:b107:1c1::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:e4:8a:d2:05:f4:12:eb:b4:46:bd:36:9a:d7:bf:8c:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 24 16:09:40 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=06ca69dbf6628630463e8555aa7f0d948c46578f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:c1:72:04:1e:44:1e:5d:ff:c6:c2:ce:fe:c3:
31:f9:34:89:33:42:f3:d3:a1:8e:4e:47:07:98:b3:
73:2a:eb:c5:f7:ca:c3:7a:cc:8c:d5:c2:af:67:d1:
62:28:45:82:b6:66:96:4b:09:ac:4c:ec:0a:01:7a:
37:80:b1:21:47:a2:e5:11:66:88:5b:c7:e9:7c:53:
a5:29:22:6a:59:b5:1a:1c:29:a4:ef:f5:72:36:21:
3e:ff:18:98:f1:71:2a:94:01:57:f5:c5:1a:fa:cc:
a3:c7:e9:13:65:cf:1c:3b:70:2e:ef:e2:db:8d:2b:
41:59:66:a9:11:42:8b:d0:06:47:f0:08:97:fe:45:
63:d6:12:35:d2:a7:43:44:2b:7d:52:76:96:4b:35:
94:13:ca:76:e6:2e:5c:dc:a0:c4:b5:44:ef:e8:d7:
ec:11:79:fc:9e:9a:7f:04:91:2c:76:8a:96:b1:16:
35:73:c8:a6:a4:86:76:e7:b2:d5:8d:4f:62:69:43:
aa:d5:48:b0:16:6f:66:b4:11:a5:5f:bc:42:d4:64:
40:74:6d:41:f1:aa:7f:3e:0e:db:af:01:69:53:e8:
dc:11:0f:2e:83:a6:5a:3b:d5:15:f5:cb:b4:24:2b:
53:42:14:65:ef:db:19:58:3f:cf:81:78:83:ff:a8:
42:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:CA:69:DB:F6:62:86:30:46:3E:85:55:AA:7F:0D:94:8C:46:57:8F
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Bspp2_ZihjBGPoVVqn8NlIxGV48.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:1c0::/47
Signature Algorithm: sha256WithRSAEncryption
09:3d:8f:f9:fc:ab:0d:3d:2c:3a:3b:60:21:0f:af:bd:6e:98:
c9:49:b3:58:fc:b6:b5:4b:15:c9:29:95:34:fa:90:ec:9e:d7:
7c:be:96:5c:b8:ad:84:88:ff:31:31:b9:dd:45:7c:0a:57:62:
7f:ec:8d:cd:1f:83:f8:75:22:31:11:ad:64:11:75:3c:44:6d:
de:14:5b:9d:d7:34:35:5e:00:d7:55:64:16:4c:8d:f2:5b:d4:
b8:5f:f3:45:ea:77:fe:ff:c4:e7:14:e3:0b:87:b2:74:74:b0:
a0:7a:c3:72:9f:a8:5c:15:fb:5c:8f:d6:01:8f:7f:c4:29:f9:
f4:3e:b9:3f:d1:96:90:7e:25:10:e0:00:a1:8b:d2:f0:83:8f:
11:de:db:32:ba:1f:e3:3d:5b:d1:b5:46:6e:22:c2:21:bc:01:
b5:20:17:1b:1a:8c:63:4d:bc:cf:17:b6:0f:f1:ba:d2:2d:5a:
10:86:ed:7c:9c:b8:09:d8:7b:cd:f6:b1:2e:94:5e:b6:91:42:
84:23:4b:fc:4a:f0:0a:da:2b:81:4a:6b:9b:0c:7b:36:7a:7a:
14:95:49:eb:b1:72:65:81:1b:fe:54:d3:de:ed:71:6b:ca:98:
67:35:a9:50:e8:f3:65:43:1b:cb:a3:70:56:db:e2:9d:8a:8a:
f3:59:ef:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:27 2024 by rpki-client on console-fra.rpki-client.org