Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/BHgCIg5AGQOfMJSI4EGIIN1jKF4.roa
File: BHgCIg5AGQOfMJSI4EGIIN1jKF4.roa (raw, json)
Hash identifier: 2sVy0pnlUvM1b7TlpfwVXuvY+ywVPnRRhdDfWkPZntI=
Subject key identifier: 04:78:02:22:0E:40:19:03:9F:30:94:88:E0:41:88:20:DD:63:28:5E
Certificate issuer: /CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9
Certificate serial: 01856F9DC7065B427DE934694E3CCBA25C20
Authority key identifier: 8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/BHgCIg5AGQOfMJSI4EGIIN1jKF4.roa
Signing time: Sun 01 Jan 2023 23:14:49 +0000
ROA not before: Sun 01 Jan 2023 23:14:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60027
IP address blocks: 91.93.50.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:30:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:9d:c7:06:5b:42:7d:e9:34:69:4e:3c:cb:a2:5c:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9
Validity
Not Before: Jan 1 23:14:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=047802220e4019039f309488e0418820dd63285e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:74:f3:0f:f7:81:6e:d8:22:ee:60:f5:10:4a:
cf:72:32:38:04:fe:7a:a7:09:5e:83:c7:9e:b5:dc:
ba:82:e4:9b:83:73:9c:30:22:82:7a:5c:45:f3:23:
21:e0:20:7e:0d:b5:b6:e8:f8:c9:26:0b:25:7c:d9:
43:10:2e:2b:9f:a6:9b:d6:0f:d2:fd:ec:98:73:66:
af:58:bc:d9:5d:e7:cf:2c:d1:36:97:e7:19:2a:6d:
7e:05:af:65:fa:ea:c7:1a:d0:a6:be:e2:f4:45:97:
08:35:05:d2:18:c4:3e:40:a2:54:4e:62:78:61:ff:
2c:f5:ef:b3:67:d4:8c:1b:1a:81:20:2b:91:56:6f:
06:81:e6:2a:60:9a:26:0c:07:ac:c7:4a:40:db:bc:
63:b1:89:bc:1a:1a:7d:b2:2a:33:36:da:a6:8d:ae:
a7:b5:c3:87:f8:93:35:c0:ed:c0:c9:0d:30:37:e0:
60:6a:cb:95:26:df:61:39:47:40:18:a6:0e:ac:64:
e5:2d:97:f1:e4:30:af:43:f3:ad:e3:93:9b:37:02:
ba:8e:a0:70:bd:a8:41:48:ee:17:09:f4:ea:1f:68:
ce:ba:2d:c3:d8:38:d8:43:b5:fd:60:37:1f:40:dc:
31:ca:c2:ae:44:de:46:25:e6:c9:87:66:3e:7e:3b:
b3:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:78:02:22:0E:40:19:03:9F:30:94:88:E0:41:88:20:DD:63:28:5E
X509v3 Authority Key Identifier:
keyid:8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/BHgCIg5AGQOfMJSI4EGIIN1jKF4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/jVnEMj92fOT_yF2q0gi5DAT70-k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.93.50.0/24
Signature Algorithm: sha256WithRSAEncryption
30:6f:b9:66:14:7d:3e:5a:cc:b3:e4:7a:c6:ec:47:b1:9c:68:
75:d3:47:35:1a:e6:ce:80:77:d3:44:4e:da:9f:af:ce:70:bf:
34:9a:dc:8c:88:5d:c8:c1:04:0a:7b:cb:29:6a:86:29:48:0b:
c7:a9:38:58:ee:b2:2d:23:56:7c:a2:da:3f:63:81:b1:5f:8d:
73:e7:22:37:db:45:75:df:96:fe:df:3f:f5:38:6b:0d:9f:a6:
38:f5:e6:97:a0:e6:ea:b6:12:a3:e6:45:75:d2:39:9f:87:b4:
83:79:64:81:4f:d4:d1:16:7c:48:80:6a:e0:e3:23:64:04:cd:
f2:30:1e:84:00:ac:ba:b3:31:87:21:95:fe:1d:c4:2d:36:e4:
b8:18:41:c1:46:a4:68:c9:40:db:2d:a4:fb:87:64:5a:53:0f:
68:cb:95:8b:5d:c7:4a:6e:d9:6e:92:72:c4:96:53:f3:80:41:
3c:9c:ca:ca:ad:06:98:40:d4:45:34:25:b0:1e:f2:3c:03:41:
65:bf:f2:c3:99:48:ee:3f:e3:6b:81:28:b7:61:09:5a:0b:a3:
42:57:6b:da:c1:36:83:a9:e3:db:20:17:64:e2:6d:9e:13:62:
61:6f:84:82:cb:e7:8c:22:bc:20:81:e2:ab:b7:22:a0:26:c4:
1a:8e:f7:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:16 2024 by rpki-client on console-fra.rpki-client.org