Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/BhEsor-dn8kx0qVsn2Srb7shTUM.roa
File: BhEsor-dn8kx0qVsn2Srb7shTUM.roa (raw, json)
Hash identifier: eqT3oxZEjQhPT3S9VH5Ui93kMG16I/VEtVIw8oGYTts=
Subject key identifier: 06:11:2C:A2:BF:9D:9F:C9:31:D2:A5:6C:9F:64:AB:6F:BB:21:4D:43
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018B2D7D1D6D1D1A28C3AB7E097B7B1AB054
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/BhEsor-dn8kx0qVsn2Srb7shTUM.roa
Signing time: Sat 14 Oct 2023 09:20:56 +0000
ROA not before: Sat 14 Oct 2023 09:20:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205320
IP address blocks: 86.107.50.0/24 maxlen: 24
89.35.131.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 18 Oct 2023 11:08:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:2d:7d:1d:6d:1d:1a:28:c3:ab:7e:09:7b:7b:1a:b0:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Oct 14 09:20:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=06112ca2bf9d9fc931d2a56c9f64ab6fbb214d43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:cd:78:09:92:5b:01:34:ab:38:f0:71:ba:fa:
d8:e6:78:48:95:09:15:97:41:7e:81:72:70:3a:2f:
5b:89:5e:ab:9d:da:86:d4:f9:7a:0c:4d:a3:74:fc:
db:61:82:e6:92:52:25:1c:d5:f5:d2:ef:ee:df:51:
a4:8a:03:92:3a:f0:c5:5f:34:72:e3:99:f5:93:3d:
08:26:71:94:1c:32:6e:a6:f6:26:ed:b3:39:4c:9a:
db:f8:29:47:6f:57:76:a1:6e:06:e7:b8:36:d0:23:
53:63:c5:7c:ab:ed:5a:4e:44:a5:d4:23:88:57:53:
87:9e:be:fc:ae:4d:2a:9c:58:a6:31:d4:01:2b:c0:
cb:d7:cd:c0:11:07:6f:4a:5e:44:53:8a:85:ea:50:
fa:2e:86:38:42:23:d5:38:94:60:0a:43:a5:03:4a:
10:23:90:d6:58:ca:5c:7a:0f:bb:72:67:30:63:aa:
a5:47:0d:13:50:d2:7c:ce:54:4a:f3:0f:c0:9b:bd:
a7:26:a5:21:6b:8f:c4:c5:31:ee:c4:76:27:b8:6e:
6e:ec:20:1f:a2:56:35:18:86:3b:5e:17:81:fe:01:
4f:01:18:ce:df:21:52:36:71:5f:ce:37:d6:6b:62:
ea:38:62:99:5a:ab:2f:06:b3:b4:42:d9:7e:4f:12:
fa:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:11:2C:A2:BF:9D:9F:C9:31:D2:A5:6C:9F:64:AB:6F:BB:21:4D:43
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/BhEsor-dn8kx0qVsn2Srb7shTUM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.107.50.0/24
89.35.131.0/24
Signature Algorithm: sha256WithRSAEncryption
99:85:31:4c:e3:b4:a1:b8:39:b3:7e:6b:15:2e:f6:2c:b8:ed:
1f:46:26:62:b2:f8:9a:86:8f:e6:38:21:eb:b6:17:6f:e0:8e:
ab:87:8e:fe:0c:eb:51:95:2c:8b:cb:d5:f1:3c:fc:b3:33:cc:
5e:a0:78:be:25:59:11:e3:30:88:1d:c6:e2:e8:0b:b3:9d:e5:
b7:07:8d:0b:81:c9:8d:af:43:4b:ef:90:4f:cb:e0:be:5f:ef:
48:ca:fa:0a:8a:ae:54:44:a6:a9:34:eb:74:55:f8:e4:5a:b5:
24:b8:53:b8:34:07:93:9a:11:fb:81:ea:72:15:2c:75:2c:f9:
28:ff:12:35:78:b3:b2:06:c2:88:0b:17:34:2f:f2:14:5b:1a:
1c:63:89:b6:9a:41:78:f3:17:6c:a7:d0:a2:33:2c:f9:d9:9b:
af:02:29:04:5c:50:1d:b5:aa:5f:f7:03:c5:16:5d:98:2c:eb:
2e:5c:02:92:1e:1b:03:9a:4d:1f:d3:e0:22:bc:c0:e9:be:fa:
ee:9b:27:56:36:32:65:f3:17:6b:82:c0:67:19:0b:3b:b3:df:
93:ea:98:af:22:18:f7:b5:a0:27:a8:c6:3c:da:a0:56:dd:30:
47:48:89:96:66:93:1f:da:3b:30:68:5d:28:74:ed:88:14:fa:
d8:67:89:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:06 2024 by rpki-client on console-fra.rpki-client.org