Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/e348f1-bb70-4b34-be12-219e79d84e43/1/BxvpR_PITfp0nyaUgHPy1EQzxro.roa
File: BxvpR_PITfp0nyaUgHPy1EQzxro.roa (raw, json)
Hash identifier: vR0XlD3pc/fL7YKX8JKGh6oAPT9hZbL6NdStQKlNCOM=
Subject key identifier: 07:1B:E9:47:F3:C8:4D:FA:74:9F:26:94:80:73:F2:D4:44:33:C6:BA
Certificate issuer: /CN=c4cc02f8fa74cf0da81e8ce2943ea7f9ed2a85f4
Certificate serial: 018AE477050C625309E0EE3BF24125670492
Authority key identifier: C4:CC:02:F8:FA:74:CF:0D:A8:1E:8C:E2:94:3E:A7:F9:ED:2A:85:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xMwC-Pp0zw2oHozilD6n-e0qhfQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/e348f1-bb70-4b34-be12-219e79d84e43/1/BxvpR_PITfp0nyaUgHPy1EQzxro.roa
Signing time: Sat 30 Sep 2023 05:01:59 +0000
ROA not before: Sat 30 Sep 2023 05:01:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212325
IP address blocks: 89.22.65.0/24 maxlen: 24
89.22.80.0/23 maxlen: 23
Validation: Failed, certificate revoked on Sat 07 Oct 2023 19:59:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:e4:77:05:0c:62:53:09:e0:ee:3b:f2:41:25:67:04:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4cc02f8fa74cf0da81e8ce2943ea7f9ed2a85f4
Validity
Not Before: Sep 30 05:01:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=071be947f3c84dfa749f26948073f2d44433c6ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:2d:91:03:ca:59:f8:4a:c3:b2:c4:9d:bf:ef:
d6:fd:7b:8d:29:3b:22:3e:d6:0f:ba:1e:0d:15:70:
3c:4f:da:2f:78:90:db:02:58:9e:48:3d:1b:96:7a:
dd:9b:0c:8b:ce:bd:12:8e:db:5f:0b:b9:4c:8b:47:
94:38:95:5b:a0:53:73:b6:5e:5e:19:20:79:24:ea:
4b:9a:04:63:6c:be:40:9c:85:9b:e5:d0:47:3e:67:
fa:6a:59:ec:5b:9c:f0:2f:41:49:ce:ec:43:85:3d:
aa:df:3b:ff:1a:8a:ca:b6:16:72:25:bb:85:04:80:
37:64:e8:b2:5c:ef:6d:e9:d1:a5:1d:ed:b6:c8:b1:
65:bc:37:5e:7d:7b:77:61:40:07:f6:68:d8:52:bb:
b4:1b:68:bb:ad:4b:a5:4d:69:91:52:e5:84:c0:18:
71:23:b2:00:41:87:25:bc:fa:54:53:eb:2e:30:65:
85:89:50:75:2e:c8:63:73:84:64:8e:98:f8:1f:43:
4d:11:03:9e:ba:47:ea:c7:87:36:ca:69:bb:09:3f:
43:b0:91:a0:eb:5c:af:3a:20:08:4f:0f:7b:b0:fc:
e4:70:dc:2c:ad:73:ea:b5:45:a7:08:bb:33:3b:11:
09:cf:f4:15:d3:89:cf:37:36:68:c8:7b:99:1b:e4:
25:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:1B:E9:47:F3:C8:4D:FA:74:9F:26:94:80:73:F2:D4:44:33:C6:BA
X509v3 Authority Key Identifier:
keyid:C4:CC:02:F8:FA:74:CF:0D:A8:1E:8C:E2:94:3E:A7:F9:ED:2A:85:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xMwC-Pp0zw2oHozilD6n-e0qhfQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/e348f1-bb70-4b34-be12-219e79d84e43/1/BxvpR_PITfp0nyaUgHPy1EQzxro.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/e348f1-bb70-4b34-be12-219e79d84e43/1/xMwC-Pp0zw2oHozilD6n-e0qhfQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.22.65.0/24
89.22.80.0/23
Signature Algorithm: sha256WithRSAEncryption
3b:50:25:6b:b4:0f:2b:52:31:12:e1:5c:2a:1f:46:02:97:45:
e8:e2:26:4a:03:c5:6a:91:8b:55:87:63:7d:b4:af:a6:1d:32:
05:5e:fc:45:e1:9f:b2:34:1a:7b:df:9d:a0:09:2d:f6:4c:61:
b5:71:1b:e7:7e:14:3f:00:16:00:bb:cc:4a:f2:7d:4c:3e:ac:
0e:f8:62:0f:04:71:6f:87:e7:94:b9:b3:bb:59:be:df:de:90:
e9:10:32:f8:36:bd:fc:0d:2e:79:46:b1:a9:c7:5f:ff:5d:91:
30:f9:03:0d:5a:82:b9:a5:2a:18:49:c2:b0:f0:fa:7f:69:ed:
e7:59:99:5a:e6:40:95:28:31:e6:20:9b:13:33:bf:19:f5:23:
f3:fa:43:a4:ac:28:9e:92:83:a2:f0:5a:fd:66:44:32:90:13:
57:7c:a4:b2:d5:af:02:4b:49:9f:3b:d4:03:90:22:ff:88:62:
ab:57:56:80:69:a1:32:4a:b0:4c:1e:4e:19:88:11:dd:2b:d4:
93:40:f8:7a:af:a1:c5:d9:51:23:89:38:71:46:29:a1:b4:77:
ad:26:bb:34:48:13:83:25:b3:3a:b2:4d:ea:82:67:e1:99:6b:
40:8b:43:f2:c9:81:47:7b:14:ef:fc:ca:5a:bd:22:12:77:10:
39:f4:56:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:19 2024 by rpki-client on console-fra.rpki-client.org