Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/68707f-f2a8-4f53-ba5c-31dfbbb914ed/1/bdX2WndyTBjjbQzz8q0CMMm97oI.roa
File: bdX2WndyTBjjbQzz8q0CMMm97oI.roa (raw, json)
Hash identifier: j6iT0anPPB88Qw7yymdE5ms8MvlZE2YfBB0ZbOx397U=
Subject key identifier: 6D:D5:F6:5A:77:72:4C:18:E3:6D:0C:F3:F2:AD:02:30:C9:BD:EE:82
Certificate issuer: /CN=ed77ba4f32f2426170afc9e25914c13490ff5db6
Certificate serial: 01857230EFCEB07F5870C4DE25E597D8E52B
Authority key identifier: ED:77:BA:4F:32:F2:42:61:70:AF:C9:E2:59:14:C1:34:90:FF:5D:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7Xe6TzLyQmFwr8niWRTBNJD_XbY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/68707f-f2a8-4f53-ba5c-31dfbbb914ed/1/bdX2WndyTBjjbQzz8q0CMMm97oI.roa
Signing time: Mon 02 Jan 2023 11:14:47 +0000
ROA not before: Mon 02 Jan 2023 11:14:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 22773
IP address blocks: 195.64.124.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:30:ef:ce:b0:7f:58:70:c4:de:25:e5:97:d8:e5:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ed77ba4f32f2426170afc9e25914c13490ff5db6
Validity
Not Before: Jan 2 11:14:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6dd5f65a77724c18e36d0cf3f2ad0230c9bdee82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:3c:c7:50:84:84:64:04:67:3e:d3:7a:39:36:
3a:72:e7:de:6b:da:1f:2b:16:c1:92:e8:3c:45:46:
71:53:de:76:21:9b:dc:da:69:9b:9a:96:28:72:d0:
a2:86:12:a8:68:12:ae:44:02:3d:e3:94:0e:33:62:
b5:2f:05:57:97:dd:18:c0:a7:29:28:bf:53:77:f7:
ff:b1:5d:b1:25:71:bf:dd:a0:1f:dd:08:ae:15:21:
09:9f:0a:84:36:4b:5c:cb:7d:c6:7d:f7:02:7b:4a:
5e:9d:99:48:25:c1:45:24:0f:3d:8b:03:3a:e5:5a:
3a:35:e7:c0:7b:e2:49:8b:e8:14:47:92:eb:27:64:
30:51:9b:93:38:c0:7e:90:db:ac:a0:a7:84:44:be:
37:48:10:ed:78:63:97:ff:16:2a:a2:d5:73:e5:4f:
bd:2d:0f:aa:c1:55:34:6b:10:4b:bc:17:ee:8b:67:
2d:b4:f1:6b:40:f3:3c:05:c3:7d:a7:21:8c:59:88:
15:0f:53:a3:9d:c9:1f:e9:a5:d5:10:04:bd:83:4b:
3c:6c:15:23:b3:7e:77:64:e3:36:bd:b6:7c:3e:de:
39:42:0f:f4:29:ef:b3:6f:59:82:dc:7a:67:0d:ba:
60:c4:c8:71:8f:21:b3:f1:f4:ab:93:77:6d:ef:03:
33:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:D5:F6:5A:77:72:4C:18:E3:6D:0C:F3:F2:AD:02:30:C9:BD:EE:82
X509v3 Authority Key Identifier:
keyid:ED:77:BA:4F:32:F2:42:61:70:AF:C9:E2:59:14:C1:34:90:FF:5D:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7Xe6TzLyQmFwr8niWRTBNJD_XbY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/68707f-f2a8-4f53-ba5c-31dfbbb914ed/1/bdX2WndyTBjjbQzz8q0CMMm97oI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/68707f-f2a8-4f53-ba5c-31dfbbb914ed/1/7Xe6TzLyQmFwr8niWRTBNJD_XbY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.64.124.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:b1:4e:4e:70:58:b7:95:a4:24:a6:4f:f6:4a:40:32:4c:2a:
b5:3f:fc:5b:44:0e:96:0a:d1:5c:93:09:4c:40:7d:a0:3c:2b:
ae:f4:70:77:65:ea:4f:f4:5f:59:dd:1a:67:8f:f3:15:ae:42:
55:7d:bb:04:5e:f2:c1:f2:4d:63:0b:45:23:eb:2c:fe:fd:a8:
e6:47:2f:a2:f6:84:ce:18:e2:4b:43:b2:25:42:fb:29:82:bf:
18:a1:0f:f7:49:9f:40:4f:c4:e6:38:9c:58:83:eb:19:8d:8f:
dc:8d:2d:0d:16:b0:31:3a:fd:0a:bc:73:a1:07:46:58:99:7c:
72:30:60:e3:e9:e9:98:be:2e:0a:f9:1a:eb:61:c5:94:73:89:
0a:b4:02:dc:99:5a:1a:94:dd:36:67:a8:ab:df:da:3b:18:20:
98:6a:19:8b:d4:3e:d9:fd:1c:b7:c0:62:50:ee:46:30:e0:c9:
9e:d5:f2:5e:22:af:f6:91:84:d1:ff:c5:bb:71:90:69:3d:0c:
44:d0:8e:0e:9e:e2:42:10:99:6f:5d:7c:03:3f:0f:97:0e:27:
47:3b:59:84:54:ef:33:59:04:f8:f4:75:2e:6e:89:9a:d0:01:
13:0f:9d:ef:ed:c2:dc:af:4f:d8:8b:3f:9f:07:ef:50:56:b2:
d7:db:02:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 15:02:50 2024 by rpki-client on console-ams.rpki-client.org