Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/a646af-e61d-48b6-89d2-eba988a548e7/1/Bp7Vrxy_CfUN7L8UEpA9302ioaA.roa
File: Bp7Vrxy_CfUN7L8UEpA9302ioaA.roa (raw, json)
Hash identifier: 3BXxPAlKrys9bZxZBpIbZIZnFOWMjRU5SosiGTu0Fng=
Subject key identifier: 06:9E:D5:AF:1C:BF:09:F5:0D:EC:BF:14:12:90:3D:DF:4D:A2:A1:A0
Certificate issuer: /CN=6460129c221f7a47812885a64838b12ee6b15ed5
Certificate serial: 0185723A410B42E3E6F58DC6EB01589253FB
Authority key identifier: 64:60:12:9C:22:1F:7A:47:81:28:85:A6:48:38:B1:2E:E6:B1:5E:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZGASnCIfekeBKIWmSDixLuaxXtU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/a646af-e61d-48b6-89d2-eba988a548e7/1/Bp7Vrxy_CfUN7L8UEpA9302ioaA.roa
Signing time: Mon 02 Jan 2023 11:24:58 +0000
ROA not before: Mon 02 Jan 2023 11:24:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199942
IP address blocks: 185.41.236.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:3a:41:0b:42:e3:e6:f5:8d:c6:eb:01:58:92:53:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6460129c221f7a47812885a64838b12ee6b15ed5
Validity
Not Before: Jan 2 11:24:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=069ed5af1cbf09f50decbf1412903ddf4da2a1a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:c2:bb:96:c0:a5:43:69:c9:04:4c:c1:b7:87:
e3:02:8c:8c:a4:1e:62:96:9c:47:44:1c:e0:3d:0b:
e8:37:cb:1d:6d:2e:52:55:d3:39:1c:aa:71:7a:c7:
29:44:7f:a4:82:01:b9:63:17:2a:e5:65:e4:c3:b4:
66:c3:fa:43:62:f3:e8:2b:eb:12:98:47:84:19:78:
2e:cb:53:5c:e6:bc:cf:a1:3a:2b:56:a9:3d:f9:e2:
26:02:ff:32:c9:14:cd:e3:74:80:65:9b:b2:58:5e:
83:43:c8:b6:cd:1a:00:3e:51:7a:f9:f1:14:a4:1f:
ca:91:bd:ab:f7:38:1f:ca:49:e3:62:8d:dc:b8:ec:
d6:8e:d7:f6:ea:d7:be:d8:58:fb:04:e6:b8:fd:47:
cf:12:50:02:9d:e2:d9:52:69:67:dc:10:06:41:9b:
91:8d:d8:b8:a4:68:9a:33:60:6b:92:50:ae:97:e7:
36:61:73:99:25:37:68:97:3f:ed:8c:f7:d9:cc:6a:
e9:57:f1:82:f7:fb:3b:9b:8f:3b:66:d6:ef:ff:d8:
37:04:d9:dc:40:ef:68:55:32:c8:ee:a8:6c:c3:93:
2b:89:a7:36:ea:be:4b:b7:5e:4d:0f:b7:cb:37:57:
26:53:f4:17:41:a5:a2:64:47:e7:65:c6:03:d9:6a:
ee:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:9E:D5:AF:1C:BF:09:F5:0D:EC:BF:14:12:90:3D:DF:4D:A2:A1:A0
X509v3 Authority Key Identifier:
keyid:64:60:12:9C:22:1F:7A:47:81:28:85:A6:48:38:B1:2E:E6:B1:5E:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZGASnCIfekeBKIWmSDixLuaxXtU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/a646af-e61d-48b6-89d2-eba988a548e7/1/Bp7Vrxy_CfUN7L8UEpA9302ioaA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/a646af-e61d-48b6-89d2-eba988a548e7/1/ZGASnCIfekeBKIWmSDixLuaxXtU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.41.236.0/22
Signature Algorithm: sha256WithRSAEncryption
b2:c3:bf:9a:85:71:96:68:64:dc:f6:a6:ff:cb:d8:ab:5b:ef:
f9:6c:77:31:17:ea:1a:3b:d1:de:03:5b:d4:2d:5a:77:4c:1f:
77:4e:61:f7:63:66:45:6e:e5:e7:ac:4a:74:c0:62:06:f3:13:
18:30:99:fe:bb:d3:77:70:30:ad:97:6e:73:9a:29:f3:a0:32:
54:11:cb:5d:b8:68:24:f6:e0:77:57:50:de:e8:b2:d4:31:66:
7d:ed:ea:7c:a9:d6:b5:59:e3:18:54:f8:40:ae:be:57:68:a3:
56:e2:74:31:77:2b:db:37:33:b1:f6:31:0f:13:29:2e:73:ab:
e5:75:e4:c0:4c:ae:15:b8:ce:3b:95:00:27:ce:9d:00:61:77:
80:7d:7b:f8:54:0e:af:60:5c:75:67:1a:79:b8:f6:ce:8b:96:
5d:3c:43:64:a7:57:35:6f:02:57:0c:cc:d5:bb:23:71:03:66:
b7:4f:1e:d3:05:11:b7:34:a6:06:b8:46:ab:b2:37:0c:27:0f:
9e:cf:83:69:f7:b1:64:d3:20:9b:db:2a:50:7f:0b:92:f9:50:
b9:e8:a1:e8:66:94:c8:0c:cd:17:27:3e:15:97:88:7d:1a:35:
c9:b7:df:b0:dc:3d:d9:f2:bd:9e:9d:96:12:ed:33:37:8d:a0:
f8:00:50:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:46 2024 by rpki-client on console-fra.rpki-client.org