Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/bbzRAKlDru9dW8-qKh-aRBv8B04.roa
File: bbzRAKlDru9dW8-qKh-aRBv8B04.roa (raw, json)
Hash identifier: uNbw90y38eVHeguaFrT+tlXrbZc+VpSKahNkhjVNby8=
Subject key identifier: 6D:BC:D1:00:A9:43:AE:EF:5D:5B:CF:AA:2A:1F:9A:44:1B:FC:07:4E
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 019304202C31A58BCB65D124EF0B47CA276A
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/bbzRAKlDru9dW8-qKh-aRBv8B04.roa
Signing time: Thu 07 Nov 2024 00:57:17 +0000
ROA not before: Thu 07 Nov 2024 00:57:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 20473
IP address blocks: 2a06:de00:f0::/44 maxlen: 48
2a06:de01:141::/48 maxlen: 48
2a0c:3b87:ff00::/40 maxlen: 48
2a0c:3b87:ffff::/48 maxlen: 48
2a0e:97c0:750::/48 maxlen: 48
2a0e:97c0:791::/48 maxlen: 48
2a0e:97c0:792::/48 maxlen: 48
2a0e:97c4:ac00::/38 maxlen: 48
2a0e:b107:9f4::/48 maxlen: 48
2a0e:b107:9f6::/48 maxlen: 48
2a0e:b107:df2::/48 maxlen: 48
2a0e:b107:1870::/48 maxlen: 48
2a0e:b107:1b9e::/48 maxlen: 48
2a0e:b107:278b::/48 maxlen: 48
2a10:ccc7:9000::/38 maxlen: 48
Validation: Failed, certificate revoked on Fri 08 Nov 2024 19:07:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:04:20:2c:31:a5:8b:cb:65:d1:24:ef:0b:47:ca:27:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Nov 7 00:57:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6dbcd100a943aeef5d5bcfaa2a1f9a441bfc074e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:27:28:fd:6f:8d:c6:ae:fc:59:6c:99:05:f1:
49:45:ff:c0:1d:f3:00:78:7c:85:28:0d:94:37:17:
f6:4a:93:1d:c0:42:36:b2:a9:89:ba:db:36:da:ae:
a9:94:a8:15:c5:5b:9c:3b:06:6e:d6:33:22:ed:83:
f5:21:4e:41:d3:8a:9e:19:72:ed:79:60:df:59:63:
19:03:e8:44:8c:56:22:84:6e:e2:1c:e8:8c:0b:44:
55:ff:63:8d:91:b4:b3:c9:30:ab:08:3d:d1:8f:11:
6e:6c:ca:a1:7c:ad:cd:78:aa:af:2b:9a:6b:a4:27:
78:53:fe:fb:f3:39:0d:d1:c5:54:c3:11:9d:22:fe:
a7:c2:78:45:09:44:8a:b3:58:8b:13:25:42:12:e7:
90:48:fe:c6:5d:0d:fd:ab:b8:1d:02:72:7a:73:c3:
d1:d6:3c:7f:1d:0b:81:0e:f2:cc:56:83:35:d7:3f:
57:70:a4:53:10:17:09:33:75:fa:bb:95:28:42:2d:
e3:cb:27:34:3b:31:27:e4:2a:eb:2b:7e:dc:9d:4c:
9f:90:bc:23:8c:64:0d:ca:d8:ef:6d:da:5a:88:32:
a2:96:5c:3c:1e:69:7d:b3:ac:0c:87:1d:f5:a6:c5:
b0:a7:46:b2:dc:d3:f4:54:e3:5d:a1:f5:d0:77:7d:
22:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:BC:D1:00:A9:43:AE:EF:5D:5B:CF:AA:2A:1F:9A:44:1B:FC:07:4E
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/bbzRAKlDru9dW8-qKh-aRBv8B04.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:de00:f0::/44
2a06:de01:141::/48
2a0c:3b87:ff00::/40
2a0e:97c0:750::/48
2a0e:97c0:791::-2a0e:97c0:792:ffff:ffff:ffff:ffff:ffff
2a0e:97c4:ac00::/38
2a0e:b107:9f4::/48
2a0e:b107:9f6::/48
2a0e:b107:df2::/48
2a0e:b107:1870::/48
2a0e:b107:1b9e::/48
2a0e:b107:278b::/48
2a10:ccc7:9000::/38
Signature Algorithm: sha256WithRSAEncryption
64:f3:19:45:51:ba:39:89:80:c4:e7:0f:96:e7:f7:ab:af:77:
ec:f1:2a:1e:5e:82:73:f0:cb:81:ed:32:f1:ba:88:13:59:9c:
3d:81:f7:8f:c2:f4:0d:c3:30:ed:2a:30:cf:e6:21:3b:75:6a:
20:ce:16:65:63:51:da:6a:0c:40:9c:51:1d:3d:02:87:d6:14:
22:17:88:a4:31:a5:0d:00:39:21:dd:52:09:b7:57:e1:4f:66:
36:82:04:89:51:75:1d:a6:90:33:87:d0:79:8a:f3:0e:67:b9:
99:e6:00:d2:3d:74:50:6a:56:dd:cc:ae:b9:e7:0c:66:91:49:
2d:32:22:2a:a9:61:8b:33:fe:3c:fc:75:b9:e5:2f:03:36:39:
45:7e:32:b5:92:fe:97:45:57:87:1e:12:fc:72:1b:ba:31:bc:
df:ed:da:5a:96:0e:f9:20:7c:df:01:f3:c3:6d:4e:c5:22:79:
08:22:bd:26:01:da:a9:28:61:de:fe:fc:d7:ea:a1:4c:60:6d:
53:73:72:6c:b8:a7:32:b2:76:b6:24:34:5a:0c:2f:47:ea:49:
02:a5:e4:ed:25:ca:ef:e3:b0:d1:f1:9a:70:4b:1c:86:5b:4e:
82:ed:62:88:71:1a:d6:ad:2b:ff:be:56:af:9f:80:a6:5f:b5:
47:f0:b7:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 8 21:15:26 2024 by rpki-client on console-ams.rpki-client.org