Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/c9f2f6-191d-4f0f-a3c4-c3c80e4704e4/1/BXSFwBrOi3hidkDFP20R9mgG9sg.roa
File: BXSFwBrOi3hidkDFP20R9mgG9sg.roa (raw, json)
Hash identifier: jWjoNWborlH0oGEQcNhT5UfnGAn6sV7M4MqlqjY53f8=
Subject key identifier: 05:74:85:C0:1A:CE:8B:78:62:76:40:C5:3F:6D:11:F6:68:06:F6:C8
Certificate issuer: /CN=7672c0fe08371764058c6ab85dfb5dcdc109f77e
Certificate serial: 01889B21ED6D6CA0BF7E9FAB6F95BE9DBDF1
Authority key identifier: 76:72:C0:FE:08:37:17:64:05:8C:6A:B8:5D:FB:5D:CD:C1:09:F7:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dnLA_gg3F2QFjGq4XftdzcEJ934.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/c9f2f6-191d-4f0f-a3c4-c3c80e4704e4/1/BXSFwBrOi3hidkDFP20R9mgG9sg.roa
Signing time: Thu 08 Jun 2023 13:11:11 +0000
ROA not before: Thu 08 Jun 2023 13:11:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 52000
IP address blocks: 185.43.145.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 21 Jul 2023 00:53:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:9b:21:ed:6d:6c:a0:bf:7e:9f:ab:6f:95:be:9d:bd:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7672c0fe08371764058c6ab85dfb5dcdc109f77e
Validity
Not Before: Jun 8 13:11:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=057485c01ace8b78627640c53f6d11f66806f6c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:7c:c1:fe:2c:95:70:1d:83:e1:c8:52:26:62:
58:8e:04:8e:1b:34:ea:e0:83:71:79:dc:a3:4d:9a:
83:e9:0b:3e:f8:11:5c:8f:07:e5:68:c2:3f:c8:1e:
f0:b9:ba:9f:b7:e5:06:64:88:55:47:1f:f7:83:99:
6b:24:47:61:56:3f:bb:45:4b:45:bc:99:9c:11:b5:
e1:e1:01:13:0d:0a:3e:11:7b:53:eb:03:8c:a9:44:
7e:ee:f2:74:ff:5e:33:a2:d0:92:32:7d:5f:81:a3:
57:cc:eb:9e:9f:18:f8:04:d8:06:ef:c8:72:30:09:
85:63:02:72:3b:fa:fa:13:f3:ab:c3:e2:af:eb:c6:
12:2b:7b:f9:14:51:4a:de:0a:25:4d:ed:2d:68:90:
c9:99:66:7e:fc:26:58:2d:1c:83:c7:ed:26:08:8f:
22:5b:6c:7b:a2:c9:b1:23:5c:7c:aa:7b:5a:46:02:
94:b2:13:95:03:51:5b:0c:3a:1f:a2:8f:19:f2:aa:
0a:51:af:b8:ad:33:fe:36:24:d8:9d:cd:d6:8c:d1:
82:32:2f:c2:c5:f8:7c:77:98:06:f1:2e:a3:ca:0a:
70:19:60:e2:c3:5c:46:04:b2:f9:88:dd:4f:2e:10:
75:61:42:bd:f6:2e:03:c0:04:47:aa:93:ae:cc:cb:
f5:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:74:85:C0:1A:CE:8B:78:62:76:40:C5:3F:6D:11:F6:68:06:F6:C8
X509v3 Authority Key Identifier:
keyid:76:72:C0:FE:08:37:17:64:05:8C:6A:B8:5D:FB:5D:CD:C1:09:F7:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dnLA_gg3F2QFjGq4XftdzcEJ934.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/c9f2f6-191d-4f0f-a3c4-c3c80e4704e4/1/BXSFwBrOi3hidkDFP20R9mgG9sg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/c9f2f6-191d-4f0f-a3c4-c3c80e4704e4/1/dnLA_gg3F2QFjGq4XftdzcEJ934.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.43.145.0/24
Signature Algorithm: sha256WithRSAEncryption
42:d9:f7:89:2a:01:3e:d0:85:0e:6e:9a:5f:11:73:b7:c3:39:
cb:b1:12:10:89:3b:ed:cf:11:6a:a8:e3:bb:5a:db:9c:27:65:
b9:b9:d3:b0:75:42:33:b9:a9:b3:c9:79:fd:c1:eb:e1:94:65:
2d:e1:ea:26:d2:7d:a8:4b:a0:fe:60:04:75:09:df:b0:70:6a:
21:61:3c:2a:18:96:4c:6a:55:39:ac:a6:23:e8:d9:f5:b0:f6:
30:f1:62:2d:75:ed:7f:48:6b:f2:23:e6:3f:41:6e:7a:d3:00:
f4:74:c8:32:f3:d5:6a:de:69:65:81:24:17:0c:3b:34:ed:e4:
65:d2:6f:22:b4:f7:26:25:b5:e1:aa:1c:c9:8f:ce:f4:78:f5:
1b:f9:ff:53:2b:3d:25:13:cb:7e:c1:b4:d3:52:af:6f:2f:06:
c8:76:dd:6e:5d:bd:8a:c6:b8:2c:dc:2c:9b:0e:f9:2d:8e:ac:
ee:d9:40:d0:f7:3e:16:32:5b:f8:b2:21:c7:37:14:3a:09:2b:
f7:71:b7:7e:17:0e:d9:95:15:08:1a:30:6c:b9:11:07:5f:c0:
a5:7c:2e:5b:c2:5a:d9:e4:0c:d6:f4:92:47:cd:18:18:6d:de:
96:52:ef:c7:7f:ce:5c:f7:d0:42:76:42:84:2b:b1:56:96:7d:
9e:64:37:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:25 2024 by rpki-client on console-ams.rpki-client.org