Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/375c02-d77b-4c2b-baea-0e59f2ecb175/1/Bwxgz6tQZqBhE4d5VlNshxKCi1M.roa
File: Bwxgz6tQZqBhE4d5VlNshxKCi1M.roa (raw, json)
Hash identifier: LnfzobGUBq5DrlvUECGpuodMcYja40XBkXLt3nUI6co=
Subject key identifier: 07:0C:60:CF:AB:50:66:A0:61:13:87:79:56:53:6C:87:12:82:8B:53
Certificate issuer: /CN=6c903c1a2e906ed8cd2e362ccc67df00ade1b825
Certificate serial: 01890A0A3DD07B2F9A5F77344964CF88F63A
Authority key identifier: 6C:90:3C:1A:2E:90:6E:D8:CD:2E:36:2C:CC:67:DF:00:AD:E1:B8:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bJA8Gi6QbtjNLjYszGffAK3huCU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/375c02-d77b-4c2b-baea-0e59f2ecb175/1/Bwxgz6tQZqBhE4d5VlNshxKCi1M.roa
Signing time: Fri 30 Jun 2023 02:03:10 +0000
ROA not before: Fri 30 Jun 2023 02:03:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42837
IP address blocks: 193.34.225.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:0a:0a:3d:d0:7b:2f:9a:5f:77:34:49:64:cf:88:f6:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c903c1a2e906ed8cd2e362ccc67df00ade1b825
Validity
Not Before: Jun 30 02:03:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=070c60cfab5066a06113877956536c8712828b53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:65:fb:31:59:b2:ad:d8:c9:90:01:26:bb:ba:
4e:37:28:1d:24:eb:95:95:be:39:72:a7:0c:e5:f6:
51:52:ec:32:c2:44:84:92:9e:96:f2:e0:1e:99:d4:
a9:37:48:5c:c9:10:df:3c:b3:c7:87:bb:16:0a:bf:
6c:70:a3:e9:9b:18:3d:b2:e9:f7:60:e2:b1:d4:43:
17:11:cc:0c:12:0c:95:44:c8:60:77:b7:81:15:b6:
5c:3f:0d:35:e1:28:49:74:98:4b:20:49:4c:e4:f6:
48:97:e4:fa:ea:4a:43:aa:cd:6c:0e:9c:5b:d6:e6:
ee:48:5d:7b:f3:c8:2e:45:58:23:6f:ef:52:f0:2a:
f2:6e:f2:9b:32:b6:9e:9e:93:8e:35:ac:ef:2b:87:
8c:72:f4:c8:85:48:64:35:b6:93:a3:c8:2c:41:ed:
c0:65:26:b4:a3:8f:6a:ca:6b:28:4e:ab:6a:3c:ef:
5d:eb:4e:60:42:59:53:7e:66:ae:94:62:95:26:e0:
95:42:48:c3:cb:b7:85:b7:2f:bc:0c:db:86:6e:f9:
55:61:c9:c6:b0:57:8e:9e:bc:aa:7e:49:59:45:9a:
ed:c0:32:9b:14:3f:63:44:fe:5f:1f:2e:43:41:ca:
5e:c8:73:2a:16:69:83:b3:c9:dd:6d:0e:da:17:95:
a3:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:0C:60:CF:AB:50:66:A0:61:13:87:79:56:53:6C:87:12:82:8B:53
X509v3 Authority Key Identifier:
keyid:6C:90:3C:1A:2E:90:6E:D8:CD:2E:36:2C:CC:67:DF:00:AD:E1:B8:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bJA8Gi6QbtjNLjYszGffAK3huCU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/375c02-d77b-4c2b-baea-0e59f2ecb175/1/Bwxgz6tQZqBhE4d5VlNshxKCi1M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/375c02-d77b-4c2b-baea-0e59f2ecb175/1/bJA8Gi6QbtjNLjYszGffAK3huCU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.34.225.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:e7:ba:76:58:48:5f:7d:ee:d2:7a:7a:59:a1:a1:7e:ee:6f:
9b:ab:3f:a1:34:2e:72:43:52:52:b2:67:2c:b9:6d:56:ab:0b:
df:04:4f:ff:bc:db:c6:70:b5:7e:d4:53:ef:d8:0a:a2:f8:84:
1d:ba:03:30:29:b2:b0:4b:02:59:c2:1e:22:ce:62:52:fe:51:
9e:92:a1:04:28:f7:fd:a0:45:e2:0c:2e:fa:91:19:88:ad:12:
4f:23:81:e7:d7:0f:a6:9a:44:1f:5a:da:0c:75:3a:0c:b3:29:
43:ee:9b:31:c9:ca:54:21:60:2d:4d:5e:8c:44:d8:51:dd:d1:
35:ff:c9:b0:87:5b:5e:ff:6f:8c:ca:bd:ea:f7:da:f5:99:c7:
82:0e:e5:84:9d:af:6d:71:da:45:85:bb:bb:ad:3f:16:35:cd:
67:ce:b5:5a:68:33:ca:4b:b2:89:08:e4:17:1b:b1:47:84:f4:
95:c3:22:66:61:f1:15:e5:a9:9a:c6:6c:f8:13:24:aa:fa:28:
9d:f2:85:4e:83:49:6e:0f:79:90:90:26:d6:29:7b:a5:30:b7:
82:98:94:50:db:84:52:45:0c:7d:41:1c:35:25:f0:af:9a:0f:
0a:be:95:2e:b0:86:6a:2c:c6:c5:7e:16:57:62:2d:3c:03:c6:
49:46:1a:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:30 2024 by rpki-client on console-fra.rpki-client.org