Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/B8TQJrn_BiBTgMmovtjEtMTR1Bk.roa
File: B8TQJrn_BiBTgMmovtjEtMTR1Bk.roa (raw, json)
Hash identifier: bf6gBqNNRiUuM5zD6UiEcZavvot9hpzpeH10UoUJgXk=
Subject key identifier: 07:C4:D0:26:B9:FF:06:20:53:80:C9:A8:BE:D8:C4:B4:C4:D1:D4:19
Certificate issuer: /CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Certificate serial: 019421B2243981168421F2010EA5F4AFD42B
Authority key identifier: 54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/B8TQJrn_BiBTgMmovtjEtMTR1Bk.roa
Signing time: Wed 01 Jan 2025 11:48:30 +0000
ROA not before: Wed 01 Jan 2025 11:48:30 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 62025
IP address blocks: 82.177.8.0/24 maxlen: 24
195.136.123.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 28 Jan 2025 08:31:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b2:24:39:81:16:84:21:f2:01:0e:a5:f4:af:d4:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Validity
Not Before: Jan 1 11:48:30 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=07c4d026b9ff06205380c9a8bed8c4b4c4d1d419
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:43:0f:8a:a1:8d:e4:ee:0e:05:7d:ca:ab:97:
48:a0:c6:de:5c:77:6b:1f:a3:8c:59:62:88:96:49:
a9:e3:9e:75:08:7e:a3:19:4c:df:8c:4a:4c:a7:58:
4a:b2:40:f3:33:72:19:66:b4:d6:21:fb:9c:87:b4:
d0:02:73:38:aa:0b:1c:cf:0c:04:01:27:66:ca:f6:
7d:ef:5f:0e:91:13:ae:d2:51:32:d0:68:b5:de:86:
f7:b1:f2:c1:67:ff:ff:02:56:2e:42:59:ec:ae:9c:
e1:44:9f:a4:fc:9b:6a:ae:74:7e:1b:8b:5d:42:d7:
fa:e4:3d:22:09:92:68:d2:90:2d:22:7b:16:cd:eb:
98:69:f7:75:1c:68:4c:eb:18:26:62:85:d6:82:77:
72:06:72:19:6c:c9:79:1e:d6:92:2f:94:24:4b:ea:
14:3d:f9:34:52:dd:bc:78:8c:6f:e8:1d:e5:9b:58:
d6:6c:e7:fe:f3:d3:ac:05:db:5d:1b:e8:1f:98:c8:
41:41:26:ab:a8:07:1d:73:fd:b7:38:b4:b5:e1:e1:
7a:50:74:67:fe:7b:b1:39:a6:41:94:99:59:2c:15:
b5:1c:85:e9:cd:c1:e3:ee:73:6f:1f:60:3c:98:c5:
cf:44:91:c1:5a:4f:cc:da:a0:6d:a4:ec:16:16:70:
89:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:C4:D0:26:B9:FF:06:20:53:80:C9:A8:BE:D8:C4:B4:C4:D1:D4:19
X509v3 Authority Key Identifier:
keyid:54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/B8TQJrn_BiBTgMmovtjEtMTR1Bk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/VGg05oiQ85hqGwRXzg9UrgPC12s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.177.8.0/24
195.136.123.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:41:b5:11:25:9e:51:a8:f3:85:d2:c3:7a:c2:f7:84:c4:ca:
ab:3d:f9:7b:15:0f:36:2a:12:eb:37:8c:f0:49:8c:71:a4:c9:
ab:b8:50:0f:80:d0:d4:e5:dc:6d:c0:f7:7e:d2:14:b9:28:ba:
93:af:0e:8a:bd:87:57:67:ef:63:03:5d:65:21:b8:db:4b:4f:
f9:ea:56:2c:26:54:6e:85:a5:11:99:22:f8:ba:92:b4:7e:66:
5a:1c:79:93:52:f2:bc:11:6a:b4:e8:18:b4:a9:aa:bd:43:17:
3e:7b:3f:ce:4f:40:25:b7:60:47:39:9a:07:12:11:dd:6b:0c:
f0:cb:39:53:6b:04:bd:b2:28:37:59:2e:dc:52:fe:b8:ce:12:
e3:fa:49:48:51:94:76:b9:e2:80:c1:18:22:82:92:10:7f:c5:
52:85:ba:db:70:41:47:5a:ef:ad:13:d3:01:39:73:89:25:20:
15:3c:b4:b2:13:13:ae:6f:2c:b0:e8:fd:7c:e3:47:79:92:48:
ea:d7:cb:9c:13:f5:da:ac:98:bc:f5:fd:75:83:9d:34:e1:aa:
ee:46:b7:9f:b7:a5:97:a4:25:cc:30:83:0b:d6:2d:21:95:0c:
99:53:6d:ba:ff:53:51:56:dc:42:b5:a7:90:f8:f0:3f:ab:21:
b9:50:df:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:05:49 2025 by rpki-client