Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/8a6f72-c822-451f-a5c5-a7fd6c8e70fd/1/bg-_Lkeo-0DTiOJzOsug5iw2bt8.roa
File: bg-_Lkeo-0DTiOJzOsug5iw2bt8.roa (raw, json)
Hash identifier: Aka/wpPEqW9EvSs4iE6ca7OL4DDKcETyA6WaJ1ZrhmM=
Subject key identifier: 6E:0F:BF:2E:47:A8:FB:40:D3:88:E2:73:3A:CB:A0:E6:2C:36:6E:DF
Certificate issuer: /CN=ed800950a31dcdacaac56adb936a42beb845e24b
Certificate serial: 01856F0B59712A8C7E13067AD91526E0322C
Authority key identifier: ED:80:09:50:A3:1D:CD:AC:AA:C5:6A:DB:93:6A:42:BE:B8:45:E2:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7YAJUKMdzayqxWrbk2pCvrhF4ks.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/8a6f72-c822-451f-a5c5-a7fd6c8e70fd/1/bg-_Lkeo-0DTiOJzOsug5iw2bt8.roa
Signing time: Sun 01 Jan 2023 20:34:52 +0000
ROA not before: Sun 01 Jan 2023 20:34:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 393960
IP address blocks: 185.221.216.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 14:34:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:0b:59:71:2a:8c:7e:13:06:7a:d9:15:26:e0:32:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ed800950a31dcdacaac56adb936a42beb845e24b
Validity
Not Before: Jan 1 20:34:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6e0fbf2e47a8fb40d388e2733acba0e62c366edf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:de:ac:44:89:d2:7a:61:a6:76:13:c7:6c:18:
51:3f:ac:97:27:65:ba:da:12:2f:29:70:76:92:5d:
89:00:93:ad:cc:2e:8a:f3:f0:7d:1e:97:d0:28:92:
67:3f:04:aa:3e:03:de:9c:53:f1:4c:b1:e8:c5:a2:
7e:2a:1b:56:a5:69:dd:fa:b3:fa:66:1c:ce:d9:f1:
44:9d:47:57:9e:da:cc:fc:97:75:15:bf:02:66:9d:
8e:a5:b2:d3:64:94:72:de:96:e8:75:15:23:58:1b:
6f:60:ae:fd:20:e0:a1:39:10:00:a9:46:91:1a:38:
ac:55:e7:30:f1:07:bb:07:0d:f9:7d:03:b6:14:bd:
f7:75:8e:aa:00:b1:21:7b:c5:b7:ba:1e:45:83:c8:
9c:b9:99:75:d5:65:c7:a7:cd:01:92:8f:a6:55:fc:
a1:01:0e:e8:1c:d1:e8:23:fe:5c:9c:b8:a9:e7:80:
23:6a:ee:a3:ee:a4:26:c2:94:aa:de:0c:51:8b:86:
f8:ec:03:51:dc:19:50:6c:6a:46:c1:98:8f:81:14:
86:ee:f0:de:21:f5:2a:a6:70:2c:b0:a2:cf:3e:8b:
b0:f5:59:1b:c1:ac:02:db:43:ea:c1:50:0b:d5:5e:
32:cb:21:4b:0a:e2:ad:77:99:30:98:b0:34:d4:64:
bd:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:0F:BF:2E:47:A8:FB:40:D3:88:E2:73:3A:CB:A0:E6:2C:36:6E:DF
X509v3 Authority Key Identifier:
keyid:ED:80:09:50:A3:1D:CD:AC:AA:C5:6A:DB:93:6A:42:BE:B8:45:E2:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7YAJUKMdzayqxWrbk2pCvrhF4ks.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/8a6f72-c822-451f-a5c5-a7fd6c8e70fd/1/bg-_Lkeo-0DTiOJzOsug5iw2bt8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/8a6f72-c822-451f-a5c5-a7fd6c8e70fd/1/7YAJUKMdzayqxWrbk2pCvrhF4ks.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.221.216.0/24
Signature Algorithm: sha256WithRSAEncryption
77:f1:69:7c:0c:fa:f5:99:d4:82:da:41:5f:a6:cb:98:15:fc:
38:36:23:18:50:1a:ed:96:9b:71:74:5f:84:f0:c4:1f:10:f5:
50:8c:d7:a5:40:d3:88:0e:d4:46:ca:4a:23:25:7a:5b:3d:3f:
94:cd:dd:e7:05:0c:84:ee:7d:c1:6f:b2:55:b6:11:78:4e:cc:
ba:c9:e2:16:26:c4:79:ca:90:47:e1:ad:34:a8:bf:96:7b:e4:
6e:0c:02:47:0b:1a:93:39:e8:8b:4e:af:68:81:4d:19:1c:d2:
cb:eb:9f:f2:36:24:50:c4:c7:d0:0b:e8:85:27:b3:1b:34:51:
5a:a7:84:75:ff:56:42:73:30:4d:51:03:e0:a4:8c:a8:26:15:
f0:d6:05:6a:84:db:74:3c:80:49:72:9c:91:33:6b:27:bc:c7:
84:88:a9:03:4c:28:e1:32:b1:33:9a:5d:a2:4d:46:08:08:12:
54:57:c4:a3:34:16:16:04:27:0c:03:9c:99:0b:fa:4e:ea:a8:
77:3d:bf:c6:25:8a:11:16:ee:75:2b:6e:5a:c4:92:c8:cd:3c:
93:67:14:8b:0f:ad:f6:98:99:7a:64:a7:39:d1:35:ad:e5:12:
f5:76:ca:f8:31:8a:a9:83:dd:7c:8a:cf:ed:19:07:01:88:9f:
15:41:83:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:11 2024 by rpki-client on console-fra.rpki-client.org