Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/BwJJxcpbxkFXmpc3HMzTMCNqcXY.roa
File: BwJJxcpbxkFXmpc3HMzTMCNqcXY.roa (raw, json)
Hash identifier: OOAI2Oww0HCrDw4YAEktIBmtTWjetTybKOt8EZd0fvw=
Subject key identifier: 07:02:49:C5:CA:5B:C6:41:57:9A:97:37:1C:CC:D3:30:23:6A:71:76
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 0185709504364F1E8D5BA4C49E4B516E50E5
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/BwJJxcpbxkFXmpc3HMzTMCNqcXY.roa
Signing time: Mon 02 Jan 2023 03:44:52 +0000
ROA not before: Mon 02 Jan 2023 03:44:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3229
IP address blocks: 95.47.252.0/24 maxlen: 24
93.170.27.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:95:04:36:4f:1e:8d:5b:a4:c4:9e:4b:51:6e:50:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 2 03:44:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=070249c5ca5bc641579a97371cccd330236a7176
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:3b:92:74:f3:b5:30:c5:24:48:dc:00:14:27:
63:52:e9:f7:ca:0e:3c:e0:f1:fe:e9:f1:30:dd:e2:
16:05:77:5d:97:e7:73:b4:1f:6d:f6:42:6a:20:7b:
49:d2:51:02:e1:5d:aa:36:24:7c:a0:43:7b:ef:53:
5f:b3:14:d4:db:d8:ac:3c:38:6e:dd:70:99:e9:99:
78:24:ae:09:f9:a2:31:98:63:43:06:f5:57:9e:b3:
21:5d:ed:05:9e:1e:d9:20:62:50:9a:60:90:02:b0:
8a:f0:37:b3:d3:84:85:6b:33:23:5c:42:b7:ab:db:
7c:63:9e:9d:e8:c1:68:e6:af:41:a3:4c:15:d7:66:
86:f1:61:a5:a3:9a:43:4b:25:e3:c7:0b:dd:5a:0c:
b6:ca:b4:2a:c7:35:aa:b8:ed:8f:a4:ed:ee:64:32:
08:5f:5e:f0:46:eb:bf:84:fb:fb:e0:b8:31:b9:71:
0b:1e:40:4d:e9:dd:c9:46:8a:3d:0d:94:94:4c:0a:
3a:ff:a5:d2:13:84:ba:47:d0:97:b6:cc:be:23:6f:
ba:a4:e8:53:2d:ae:96:48:fb:b8:b7:a1:a3:f4:2e:
09:28:bc:b1:23:57:1a:d7:51:28:85:70:ae:85:5f:
b9:ca:2d:fb:41:86:7b:6e:db:7f:fc:f2:98:ba:16:
4a:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:02:49:C5:CA:5B:C6:41:57:9A:97:37:1C:CC:D3:30:23:6A:71:76
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/BwJJxcpbxkFXmpc3HMzTMCNqcXY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.170.27.0/24
95.47.252.0/24
Signature Algorithm: sha256WithRSAEncryption
17:f3:f6:49:00:84:b7:10:3f:f0:38:5f:ff:3a:f1:bf:84:6e:
7e:5e:20:a7:50:4a:ac:5b:10:49:71:12:4f:f5:bd:0f:9e:9c:
cd:2a:a4:b5:06:fa:e3:0f:e1:e9:15:2c:10:5d:08:56:9b:eb:
65:e9:44:74:22:e9:5c:d6:d8:63:5a:d2:a3:62:10:8f:19:6f:
36:10:e4:f2:56:bd:14:27:ca:2e:b8:cd:0d:09:4f:c0:02:65:
87:6c:a8:a7:f2:88:ce:0a:c6:34:65:f6:be:63:15:73:3c:ab:
3c:54:6d:b9:d0:a2:4a:7b:17:ba:f0:e9:c8:cc:8a:29:e9:89:
79:a1:04:b1:c2:b3:28:d0:be:54:ce:0f:02:f7:57:06:9c:72:
81:33:50:d3:e8:d1:61:a8:1f:ef:86:44:23:44:28:b5:c2:e0:
b3:a0:8c:59:f6:70:c7:16:82:6e:85:c2:7d:32:07:fc:da:2b:
80:70:50:ae:40:a5:d5:db:df:3a:ca:7c:56:09:ac:61:96:3b:
64:09:a1:f2:0c:95:93:e7:58:1b:76:ae:d0:ae:ed:27:90:2f:
cd:a5:70:57:b8:b5:e5:3e:6d:02:26:e9:ab:92:ae:ba:12:58:
6a:06:3c:9d:c8:c0:27:9f:31:da:69:49:22:bb:0e:54:17:84:
a0:cf:8c:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:21:00 2024 by rpki-client on console-ams.rpki-client.org