Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/3cb9d2-70ff-46d6-9c73-57586156354e/1/bjwr9yf-TcLleRFz50UbMqdQSmo.roa
File: bjwr9yf-TcLleRFz50UbMqdQSmo.roa (raw, json)
Hash identifier: 2xx18rNUu649+Tnn/mA1yxoPgXDG4toP3k38fsvaE4k=
Subject key identifier: 6E:3C:2B:F7:27:FE:4D:C2:E5:79:11:73:E7:45:1B:32:A7:50:4A:6A
Certificate issuer: /CN=f261df44b346823cce8c6643b5fa6919afb23195
Certificate serial: 01856D4ADD15145FC149D8E94F9E59D9B220
Authority key identifier: F2:61:DF:44:B3:46:82:3C:CE:8C:66:43:B5:FA:69:19:AF:B2:31:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8mHfRLNGgjzOjGZDtfppGa-yMZU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/3cb9d2-70ff-46d6-9c73-57586156354e/1/bjwr9yf-TcLleRFz50UbMqdQSmo.roa
Signing time: Sun 01 Jan 2023 12:25:00 +0000
ROA not before: Sun 01 Jan 2023 12:25:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30848
IP address blocks: 45.143.183.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:4a:dd:15:14:5f:c1:49:d8:e9:4f:9e:59:d9:b2:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f261df44b346823cce8c6643b5fa6919afb23195
Validity
Not Before: Jan 1 12:25:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6e3c2bf727fe4dc2e5791173e7451b32a7504a6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:82:fe:2a:21:70:08:fc:8c:97:85:62:89:1d:
99:7a:01:df:58:d0:28:36:ca:a8:d5:3f:1f:f2:e2:
a0:8b:da:c2:b5:82:21:7d:9c:85:33:9c:cd:c2:71:
a4:59:b1:e8:32:bd:4b:1c:17:30:3d:1b:89:f6:14:
c9:31:cb:cd:20:f5:6a:9f:e7:81:d0:a4:d6:ca:83:
38:73:e7:17:a0:35:be:21:05:05:bf:41:4a:ef:bb:
eb:f3:ef:fc:4b:a9:dd:88:08:40:a0:b3:4a:76:f9:
e2:ed:c9:67:2e:41:17:b1:b9:85:3c:4e:3c:09:8a:
c7:85:7b:19:2d:e9:1c:30:75:93:2f:8c:96:19:0a:
41:64:46:a5:38:e4:38:77:dd:0e:ca:18:51:31:d8:
bf:cb:9a:95:5a:d0:f4:6a:c4:1d:b3:25:a8:11:ae:
ff:26:4b:38:ec:36:e5:d3:ee:04:16:4b:3e:69:c7:
fd:c6:cb:7f:6c:0a:52:e7:88:54:eb:b3:a7:a8:0e:
67:73:26:dd:33:9d:2a:95:00:ef:71:7a:ee:da:36:
02:74:71:8f:fb:c2:04:b8:3d:94:92:ba:df:df:c9:
9a:0f:78:bf:c8:6d:5a:2c:4e:a7:8f:b0:58:d5:3e:
9c:ba:0e:1f:42:f4:cf:ab:b3:03:e9:84:c0:41:73:
3a:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:3C:2B:F7:27:FE:4D:C2:E5:79:11:73:E7:45:1B:32:A7:50:4A:6A
X509v3 Authority Key Identifier:
keyid:F2:61:DF:44:B3:46:82:3C:CE:8C:66:43:B5:FA:69:19:AF:B2:31:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8mHfRLNGgjzOjGZDtfppGa-yMZU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/3cb9d2-70ff-46d6-9c73-57586156354e/1/bjwr9yf-TcLleRFz50UbMqdQSmo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/3cb9d2-70ff-46d6-9c73-57586156354e/1/8mHfRLNGgjzOjGZDtfppGa-yMZU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.143.183.0/24
Signature Algorithm: sha256WithRSAEncryption
ed:a9:5a:f6:40:34:1f:45:85:c8:cc:dd:95:77:21:71:59:99:
d1:1c:26:57:96:85:88:e9:60:74:69:cc:e0:ee:b1:6a:f6:87:
d3:b7:b2:53:ea:04:2b:9a:35:0b:d1:79:3c:b0:a3:56:48:9a:
ed:5f:4d:3e:bb:2e:51:9e:ee:74:97:59:2e:1d:51:83:c8:8b:
61:a3:8d:76:65:4d:ff:2a:1a:5f:b3:e8:d8:a5:0a:4c:48:a0:
92:43:28:53:e0:85:26:cc:70:27:02:3c:91:24:4a:b2:c3:4f:
6b:8a:0b:d5:d8:ac:0b:ef:2d:64:fe:b7:a8:32:cb:a1:d5:c1:
5c:cd:dc:da:b9:d8:53:b0:a6:db:f6:4e:5a:84:ac:7d:55:34:
f1:f6:37:47:1e:93:36:f8:8b:5a:3e:06:84:77:7b:34:ac:ac:
a4:93:af:4d:19:46:b3:29:e2:92:64:2c:7b:5f:b8:2a:37:8b:
ae:c8:35:b4:8f:61:0e:2c:b5:34:44:7d:9b:79:cf:fe:5d:51:
00:70:6c:a6:1b:89:14:1e:ff:0d:eb:56:5d:95:b9:eb:3b:2b:
8a:dd:29:c3:d2:71:ac:31:99:bc:54:f0:c4:c5:f8:6c:9c:88:
67:7d:f8:5b:28:80:80:c4:5c:3e:1a:fc:1e:7c:c7:36:f9:12:
eb:dc:ac:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:25 2024 by rpki-client on console-ams.rpki-client.org