Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/4cdefa-5ee2-4719-a7e1-b829cc401031/1/BJrPFqzDkegcWRrEOHqvBeSkrJM.roa
File: BJrPFqzDkegcWRrEOHqvBeSkrJM.roa (raw, json)
Hash identifier: 1bxF/GaoGeWlNmdIUIL4HiFssIr2rYx8wfI6sjUYFGo=
Subject key identifier: 04:9A:CF:16:AC:C3:91:E8:1C:59:1A:C4:38:7A:AF:05:E4:A4:AC:93
Certificate issuer: /CN=ea2d102b6112b0d9a8b8eebac4b97c819f97c606
Certificate serial: 01856CE5F7258A819406C8AB2D4C94A6D010
Authority key identifier: EA:2D:10:2B:61:12:B0:D9:A8:B8:EE:BA:C4:B9:7C:81:9F:97:C6:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6i0QK2ESsNmouO66xLl8gZ-XxgY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/4cdefa-5ee2-4719-a7e1-b829cc401031/1/BJrPFqzDkegcWRrEOHqvBeSkrJM.roa
Signing time: Sun 01 Jan 2023 10:34:48 +0000
ROA not before: Sun 01 Jan 2023 10:34:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 131642
IP address blocks: 2a13:2200::/47 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:e5:f7:25:8a:81:94:06:c8:ab:2d:4c:94:a6:d0:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ea2d102b6112b0d9a8b8eebac4b97c819f97c606
Validity
Not Before: Jan 1 10:34:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=049acf16acc391e81c591ac4387aaf05e4a4ac93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:5f:14:a9:ac:e5:3b:30:fc:2e:8a:91:3d:b3:
10:d2:c5:23:3f:62:fd:66:03:35:32:35:b0:ed:8f:
60:b7:2f:a7:72:bd:87:a2:22:8d:c9:81:3f:46:bc:
72:dd:7b:93:d5:77:b6:45:0c:39:69:7f:ec:fa:0c:
cb:34:7a:77:99:23:56:99:f7:44:55:0c:47:e4:f3:
3f:1f:f4:d5:24:70:e0:b8:43:18:7e:77:6c:0d:ac:
f0:6b:bb:3f:d4:2c:b3:c4:67:7c:2d:5c:23:fe:58:
b4:3b:38:f0:fa:12:cc:85:ce:53:ce:d9:10:de:53:
24:43:a2:64:dc:65:6e:f1:a8:01:de:58:3e:99:4d:
a8:8c:8b:d4:13:03:08:fc:0b:83:11:25:60:d1:e1:
27:d4:8d:2c:82:87:95:ea:c8:ae:78:a3:5e:a8:c5:
35:ae:ff:d4:f5:45:b0:05:01:40:a0:a6:13:c9:7d:
eb:0c:ec:51:ad:e5:d6:c2:87:c7:b2:e6:ef:62:24:
2a:ae:6d:41:b6:e3:55:78:99:39:9d:27:d2:8f:c9:
12:86:47:b1:cf:da:62:d9:41:50:8b:d9:f2:68:4c:
c6:11:d2:35:6f:9c:25:5c:51:a0:af:6c:e9:89:a9:
0d:7a:c4:08:dd:96:da:93:93:de:7f:5e:9f:9a:19:
ee:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:9A:CF:16:AC:C3:91:E8:1C:59:1A:C4:38:7A:AF:05:E4:A4:AC:93
X509v3 Authority Key Identifier:
keyid:EA:2D:10:2B:61:12:B0:D9:A8:B8:EE:BA:C4:B9:7C:81:9F:97:C6:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6i0QK2ESsNmouO66xLl8gZ-XxgY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/4cdefa-5ee2-4719-a7e1-b829cc401031/1/BJrPFqzDkegcWRrEOHqvBeSkrJM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/4cdefa-5ee2-4719-a7e1-b829cc401031/1/6i0QK2ESsNmouO66xLl8gZ-XxgY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:2200::/47
Signature Algorithm: sha256WithRSAEncryption
63:ff:25:c6:54:2d:fc:d6:03:0d:58:9f:d8:02:06:b2:c1:87:
5d:f7:5f:91:61:eb:91:b3:b3:7c:6b:6b:60:c8:0c:7e:32:50:
ed:72:47:97:a0:66:f8:5b:8a:e7:46:5b:4f:91:32:78:23:f4:
98:46:9c:76:72:9a:65:c1:8e:75:38:12:fe:25:66:5d:f6:87:
a7:52:26:d7:4f:84:91:2a:23:0b:20:95:0f:52:4b:87:26:34:
4a:b7:04:dc:b8:dd:1a:89:60:e2:7b:a2:92:4b:dc:6d:88:02:
6a:2a:fb:f9:73:f9:40:55:99:e4:04:7e:06:cd:39:63:8f:c1:
79:3e:a4:ca:0f:6e:79:aa:d7:a4:f1:50:1e:be:f8:89:6e:19:
45:cc:2a:06:04:76:e0:8d:8c:0a:56:5b:b0:bc:19:1b:d2:11:
f0:ab:cb:3d:50:b7:66:5f:c3:d4:3a:c4:0b:33:3b:49:71:da:
93:10:be:26:d0:f1:e9:bf:dc:e8:ee:59:ea:5f:9d:d6:a5:d9:
a0:bb:64:de:9b:d7:9c:46:d7:c2:1d:16:44:bd:a9:17:a0:0a:
b8:1e:70:6d:bc:90:2b:55:2b:cb:e4:ca:35:8b:5e:1c:85:1a:
fb:a9:75:97:77:1f:bd:45:a6:01:ba:e6:a6:fc:d9:89:6e:6e:
de:02:4c:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 09:00:56 2024 by rpki-client on console-ams.rpki-client.org