Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/beFAs8GVWeh-eU_qCJO1vxWGaNk.roa
File: beFAs8GVWeh-eU_qCJO1vxWGaNk.roa (raw, json)
Hash identifier: npdLE5f1za890W7kX044PMLDDTJav1Sq7G8IP+p2FlE=
Subject key identifier: 6D:E1:40:B3:C1:95:59:E8:7E:79:4F:EA:08:93:B5:BF:15:86:68:D9
Certificate issuer: /CN=bb830630f23b070a2b7bdf529f73948c97eacd40
Certificate serial: 0187C2D65F22A247B3AEC3AF725164305AA3
Authority key identifier: BB:83:06:30:F2:3B:07:0A:2B:7B:DF:52:9F:73:94:8C:97:EA:CD:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u4MGMPI7Bwore99Sn3OUjJfqzUA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/beFAs8GVWeh-eU_qCJO1vxWGaNk.roa
Signing time: Thu 27 Apr 2023 13:10:41 +0000
ROA not before: Thu 27 Apr 2023 13:10:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 135330
IP address blocks: 74.119.193.0/24 maxlen: 24
2a09:7c45::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:c2:d6:5f:22:a2:47:b3:ae:c3:af:72:51:64:30:5a:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb830630f23b070a2b7bdf529f73948c97eacd40
Validity
Not Before: Apr 27 13:10:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6de140b3c19559e87e794fea0893b5bf158668d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:0f:c2:29:c7:ee:2d:ae:fc:cf:de:b1:1e:ef:
21:50:2b:5d:96:ed:36:11:e2:5e:67:19:09:fc:de:
a7:d4:ee:c4:85:c3:a6:3b:c7:45:33:d5:c1:c6:ca:
43:96:f0:71:5f:b7:40:f7:05:60:75:4e:76:c1:c1:
7e:e4:35:a7:57:f8:22:1d:bd:1e:dc:5d:dd:8e:24:
db:27:bc:88:58:70:d0:3d:38:d3:9e:41:79:5a:b3:
15:c9:bb:f9:94:80:c5:2c:91:97:55:3c:ab:2a:d7:
7e:c6:d2:df:e3:98:ec:f2:a9:ee:2e:fc:fd:22:54:
77:be:2c:a7:51:50:86:8a:91:f3:d8:8a:b1:0b:9b:
8a:d5:fe:b6:35:7d:bd:5d:f2:16:97:87:0d:5b:05:
fe:49:46:84:de:bd:5e:98:54:b4:9f:77:7a:7a:4d:
dd:ea:cb:81:4c:76:af:2d:a3:4f:74:f1:9a:ef:b2:
bc:9e:b4:56:64:cc:2f:97:8c:82:f8:e5:1f:f5:ff:
be:51:8f:0c:0f:2d:c5:a6:86:25:27:a5:e9:c4:b1:
df:35:71:4a:ff:22:41:e7:f8:fd:6e:b8:9e:e6:b8:
13:cc:ed:dc:d7:f2:eb:9f:7b:e8:70:eb:b3:86:f3:
2c:bc:72:6e:7d:2b:36:be:ad:25:78:64:3e:4f:6f:
d0:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:E1:40:B3:C1:95:59:E8:7E:79:4F:EA:08:93:B5:BF:15:86:68:D9
X509v3 Authority Key Identifier:
keyid:BB:83:06:30:F2:3B:07:0A:2B:7B:DF:52:9F:73:94:8C:97:EA:CD:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u4MGMPI7Bwore99Sn3OUjJfqzUA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/beFAs8GVWeh-eU_qCJO1vxWGaNk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/u4MGMPI7Bwore99Sn3OUjJfqzUA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
74.119.193.0/24
IPv6:
2a09:7c45::/32
Signature Algorithm: sha256WithRSAEncryption
98:21:2c:08:a9:ed:4b:99:9b:20:f8:a6:e0:dc:56:ce:3a:46:
5f:f5:59:94:70:83:15:da:2c:0a:54:89:b8:22:98:0b:d9:c9:
8b:59:9f:c9:70:ae:f6:be:8e:5a:e0:ec:d2:e8:8b:6f:b2:a9:
29:07:83:22:19:85:05:cb:b1:67:c3:dc:b3:e2:5c:ed:c2:67:
1c:38:35:92:ae:d3:80:28:16:96:af:01:eb:73:e2:ca:48:38:
e9:8a:bc:9b:ad:6c:93:46:92:e3:dd:5d:cb:ed:77:f5:92:ac:
d5:aa:cc:6b:ca:6c:0d:1e:f5:5e:d0:7c:a0:4c:41:fa:19:ea:
1b:5c:e2:3b:dd:78:d4:b9:76:3e:70:15:ae:bc:ad:70:cb:4b:
5d:9b:c2:24:b0:79:8d:7a:03:1a:84:ca:31:90:14:65:52:77:
05:d6:73:e8:2d:89:14:7e:96:73:cb:f5:98:5f:f7:8e:75:46:
0f:ff:8b:19:29:29:ee:7f:36:a5:7c:19:91:44:f6:63:0e:9d:
49:5c:15:7d:c4:85:05:1d:92:34:05:3a:7d:d8:fe:47:b7:52:
77:14:21:ad:a6:98:1a:b5:82:3f:ef:12:53:38:1b:79:fa:af:
a6:c2:8f:71:f9:87:e6:6d:e5:88:c1:6a:0b:d9:b6:94:f0:14:
0e:20:79:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:41:06 2024 by rpki-client on console-fra.rpki-client.org