Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/daf1ae-d5eb-4ca4-8aaf-78741ac93b30/1/bjmlWcnYLpT-SOyZZnvqvfsbuUw.roa
File: bjmlWcnYLpT-SOyZZnvqvfsbuUw.roa (raw, json)
Hash identifier: +q1B+5q2u0kW6PT1uxCFWameFUxK67DMn4Ai7AaNuik=
Subject key identifier: 6E:39:A5:59:C9:D8:2E:94:FE:48:EC:99:66:7B:EA:BD:FB:1B:B9:4C
Certificate issuer: /CN=0e282a15c1a5d154bbda872b357607a91f950aa5
Certificate serial: 018CF7D139FD434C12B38233DFF3932CCCD2
Authority key identifier: 0E:28:2A:15:C1:A5:D1:54:BB:DA:87:2B:35:76:07:A9:1F:95:0A:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DigqFcGl0VS72ocrNXYHqR-VCqU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/daf1ae-d5eb-4ca4-8aaf-78741ac93b30/1/bjmlWcnYLpT-SOyZZnvqvfsbuUw.roa
Signing time: Thu 11 Jan 2024 09:18:53 +0000
ROA not before: Thu 11 Jan 2024 09:18:53 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60860
IP address blocks: 193.107.82.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 07:49:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:f7:d1:39:fd:43:4c:12:b3:82:33:df:f3:93:2c:cc:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e282a15c1a5d154bbda872b357607a91f950aa5
Validity
Not Before: Jan 11 09:18:53 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6e39a559c9d82e94fe48ec99667beabdfb1bb94c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:4c:78:5a:13:a2:76:1e:ad:dd:84:a3:b6:b9:
ab:5e:59:f2:29:95:cb:92:8b:2b:f7:42:82:05:30:
55:24:45:1e:45:4d:45:17:35:72:9b:84:67:f3:e8:
60:d6:79:50:d1:6a:7d:23:94:f2:65:59:50:2b:18:
42:14:f1:54:81:ad:81:4c:7e:22:45:d3:06:b5:18:
06:97:25:44:a1:37:0c:b9:58:3c:84:e3:8e:f9:7a:
1f:bb:62:90:29:d0:49:b8:26:51:db:71:5f:fa:56:
45:b6:16:3a:3a:b0:15:bf:7c:23:7e:04:4b:48:ca:
ff:2c:8a:da:90:83:e0:41:4c:f4:5b:01:12:11:0b:
8e:23:64:8e:84:e6:17:3f:66:90:2e:92:5a:59:38:
02:e6:37:35:de:b9:64:10:65:ef:7a:7f:a9:a0:02:
d5:5b:26:50:8a:88:eb:d4:92:99:a3:f2:d0:60:f7:
7a:93:b9:f8:50:e4:a5:81:cc:86:fb:b5:ae:71:37:
3f:fb:03:61:74:80:12:90:cd:0b:bd:17:78:33:29:
63:5d:90:3b:d5:47:25:61:98:b8:91:3e:1f:60:9c:
54:47:0e:bb:76:15:25:2f:5b:29:81:37:76:2a:9e:
6f:21:62:16:f8:02:94:a5:84:74:2a:11:49:dc:0e:
a2:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:39:A5:59:C9:D8:2E:94:FE:48:EC:99:66:7B:EA:BD:FB:1B:B9:4C
X509v3 Authority Key Identifier:
keyid:0E:28:2A:15:C1:A5:D1:54:BB:DA:87:2B:35:76:07:A9:1F:95:0A:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DigqFcGl0VS72ocrNXYHqR-VCqU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/daf1ae-d5eb-4ca4-8aaf-78741ac93b30/1/bjmlWcnYLpT-SOyZZnvqvfsbuUw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/daf1ae-d5eb-4ca4-8aaf-78741ac93b30/1/DigqFcGl0VS72ocrNXYHqR-VCqU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.107.82.0/24
Signature Algorithm: sha256WithRSAEncryption
d5:a5:9b:07:72:52:60:99:52:1e:03:0d:e0:2b:01:17:51:67:
58:9b:d2:c4:a2:d4:62:da:aa:68:d7:a9:29:50:8c:44:39:d0:
25:13:3e:67:4f:68:32:9d:aa:de:ec:b9:91:d6:58:41:15:0b:
42:8b:34:63:2f:2e:a2:11:a4:7e:ff:98:c9:47:2e:a2:97:29:
a9:6c:1b:e2:19:bc:8b:5e:61:f8:8b:e8:8f:95:47:22:7a:91:
c2:a3:0e:fb:fb:c9:6d:6d:b4:44:40:03:d6:1d:90:2e:d4:35:
8c:a8:f6:38:dd:f3:ec:d5:35:ea:ec:c4:61:58:18:29:66:58:
6a:13:0b:3a:20:53:fa:e0:4f:41:87:24:60:44:18:27:1f:ef:
92:3c:6a:75:c2:de:3e:1e:77:30:d9:43:b7:1e:1f:4d:23:6e:
42:14:9e:9a:19:e2:8f:7b:98:c6:dc:51:51:ba:01:c5:4a:9e:
9a:c8:78:9a:63:f6:02:98:aa:54:ce:18:4a:92:41:64:5b:cc:
18:dc:87:95:4a:82:7e:bb:17:7d:51:80:58:50:3a:ff:f6:9c:
26:05:28:a7:28:ef:c9:d0:7a:51:b2:bf:4d:c3:b2:33:62:2a:
32:04:e2:dd:8a:58:4e:d0:83:3d:d2:4f:77:3e:8c:5a:6a:58:
23:fb:13:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:54:11 2025 by rpki-client