Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/BSlCCr8nfrvTxwyF24GO_Oz5Hy0.roa
File: BSlCCr8nfrvTxwyF24GO_Oz5Hy0.roa (raw, json)
Hash identifier: NrVK2dg53A+uT5+jBqD8wGi/xSnaIRiZdMCL64nnhP0=
Subject key identifier: 05:29:42:0A:BF:27:7E:BB:D3:C7:0C:85:DB:81:8E:FC:EC:F9:1F:2D
Certificate issuer: /CN=94166b704843d3d9754095c83a91b493828200a2
Certificate serial: 018B20A65E575A5AFE2841B737725B1D5EE7
Authority key identifier: 94:16:6B:70:48:43:D3:D9:75:40:95:C8:3A:91:B4:93:82:82:00:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lBZrcEhD09l1QJXIOpG0k4KCAKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/BSlCCr8nfrvTxwyF24GO_Oz5Hy0.roa
Signing time: Wed 11 Oct 2023 21:30:55 +0000
ROA not before: Wed 11 Oct 2023 21:30:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205220
IP address blocks: 171.22.147.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 11 Dec 2023 17:54:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:20:a6:5e:57:5a:5a:fe:28:41:b7:37:72:5b:1d:5e:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94166b704843d3d9754095c83a91b493828200a2
Validity
Not Before: Oct 11 21:30:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0529420abf277ebbd3c70c85db818efcecf91f2d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:6c:f9:b0:f8:0a:ee:d7:ec:7c:1f:44:40:86:
44:5d:42:91:b8:b4:b8:d2:e0:7d:5c:2f:64:99:bb:
c1:c0:24:be:fa:48:9c:44:d3:a6:08:83:74:93:ef:
07:1e:fb:b6:fa:bf:de:26:b2:16:11:8d:1c:10:4e:
25:60:d4:8e:8c:3f:c4:2b:07:08:20:ab:71:11:45:
cb:6e:94:36:c5:8a:2a:ea:e4:b9:4a:c9:05:d1:e7:
87:f7:f0:dd:ec:42:3a:f9:89:3d:78:89:5b:38:bf:
76:54:c7:d8:ff:bc:7b:3b:e5:4b:a8:19:4c:8a:99:
3a:68:45:47:75:d0:89:56:5f:c5:65:1d:82:ea:2f:
f4:08:dc:c3:92:b2:2b:de:25:95:cb:8d:53:5d:70:
d8:ae:3a:8a:1d:8a:04:8c:c8:76:4e:c9:c4:58:bc:
5d:82:3b:38:70:b9:56:ef:97:4b:57:f2:72:ea:34:
d0:e8:f1:cb:3d:40:7e:97:68:2a:2f:f1:8f:4f:c7:
a5:19:de:93:b9:93:b7:71:d7:d2:7d:d1:d0:6d:81:
7d:e1:14:b9:3f:88:fe:7a:4d:52:19:91:8f:46:74:
e9:70:aa:10:0d:fb:eb:43:35:91:f9:f6:7c:6e:eb:
59:ee:93:11:13:c7:09:a2:94:ce:48:d5:ce:1c:f3:
3f:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:29:42:0A:BF:27:7E:BB:D3:C7:0C:85:DB:81:8E:FC:EC:F9:1F:2D
X509v3 Authority Key Identifier:
keyid:94:16:6B:70:48:43:D3:D9:75:40:95:C8:3A:91:B4:93:82:82:00:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lBZrcEhD09l1QJXIOpG0k4KCAKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/BSlCCr8nfrvTxwyF24GO_Oz5Hy0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/lBZrcEhD09l1QJXIOpG0k4KCAKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
171.22.147.0/24
Signature Algorithm: sha256WithRSAEncryption
03:ce:3e:1d:72:83:31:d5:87:f6:bd:69:3f:4d:43:9f:c2:90:
45:00:4b:96:69:88:89:5e:a4:73:5a:8a:12:d7:10:45:ab:f0:
3b:b5:24:f5:7d:57:e9:ce:fc:c6:8e:84:cf:4e:f0:47:28:e9:
2f:38:dc:e6:bf:d5:7e:dc:b2:ee:69:af:d0:8c:2e:e6:62:13:
c7:e6:7b:a5:44:69:da:c9:81:35:6a:0e:46:f4:ba:da:f9:a9:
26:db:0b:e2:92:7e:97:82:9d:2a:c2:f9:e6:33:46:ea:c0:b1:
76:44:ed:db:f4:05:38:fe:19:0f:ac:5f:b4:8c:15:8f:30:49:
5d:8c:55:e5:07:2e:97:21:89:db:33:2d:5a:a9:f3:fb:53:ea:
f9:14:df:00:54:af:99:43:ae:9d:73:f1:77:ee:3b:f7:4d:19:
6c:0d:ed:ae:e3:20:d0:71:22:5d:4a:be:4a:2f:9e:90:c8:76:
5b:ae:da:e5:95:d1:47:b1:03:f3:26:bf:1c:7f:6c:9d:6e:de:
ce:a5:ae:72:1d:fd:6c:28:e6:6c:0a:72:fb:fd:4d:a0:9c:ab:
7a:ca:5c:9a:50:07:44:3e:36:dc:59:e7:a7:7c:1e:85:1c:f1:
07:99:92:5c:4e:2b:50:19:a6:7c:f1:39:7f:f5:89:c4:94:93:
48:85:51:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:25 2024 by rpki-client on console-ams.rpki-client.org