Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/9ee980-67a2-4d3c-b6ca-fde073588f0f/1/BSB5tbcjVOGL5I_OHUaTO49CeCA.roa
File: BSB5tbcjVOGL5I_OHUaTO49CeCA.roa (raw, json)
Hash identifier: 3e1a9MofHeK+04ZvJ6SJDzaBLOhL/J6yDrH58AOqMjE=
Subject key identifier: 05:20:79:B5:B7:23:54:E1:8B:E4:8F:CE:1D:46:93:3B:8F:42:78:20
Certificate issuer: /CN=b59909ed171b38c1fdc4362229e78d69851de11c
Certificate serial: 01856D2F56AB2E77A458A2B3D72342945701
Authority key identifier: B5:99:09:ED:17:1B:38:C1:FD:C4:36:22:29:E7:8D:69:85:1D:E1:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tZkJ7RcbOMH9xDYiKeeNaYUd4Rw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/9ee980-67a2-4d3c-b6ca-fde073588f0f/1/BSB5tbcjVOGL5I_OHUaTO49CeCA.roa
Signing time: Sun 01 Jan 2023 11:54:57 +0000
ROA not before: Sun 01 Jan 2023 11:54:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39833
IP address blocks: 195.170.166.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:29:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:2f:56:ab:2e:77:a4:58:a2:b3:d7:23:42:94:57:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b59909ed171b38c1fdc4362229e78d69851de11c
Validity
Not Before: Jan 1 11:54:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=052079b5b72354e18be48fce1d46933b8f427820
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:84:f7:4b:fe:ca:57:1a:ef:d3:fe:4a:be:e3:
fc:1b:3c:89:5c:3d:6d:9a:7c:59:b1:53:7a:1e:e2:
29:19:e6:3f:ef:69:ea:48:de:77:50:d4:96:4b:66:
5f:f9:75:a0:9d:66:b9:ef:66:21:09:83:6a:1b:ec:
8f:93:6f:dc:2d:cf:ee:a0:e5:bb:8e:51:a6:86:70:
06:31:18:98:18:41:e6:64:0b:8e:52:a2:51:6b:42:
8e:f7:2d:b4:2b:c9:0c:cf:15:7c:c4:aa:01:6a:f2:
61:17:9c:65:5c:85:2d:4f:ca:67:82:79:90:16:7c:
d9:2b:1a:21:c6:c0:01:81:b1:f8:4e:12:fb:2b:c8:
03:50:a5:39:a2:38:ae:b0:d6:52:15:20:61:26:e0:
0a:4e:d2:fe:a5:84:65:f3:d3:b3:31:ab:ef:c0:6f:
f1:e2:ff:47:aa:6c:b1:99:f2:9d:b2:0f:f3:1b:f5:
52:79:6d:f3:49:d4:18:d1:e1:f7:07:43:67:12:e4:
bf:4a:65:06:73:d8:29:01:a7:e7:da:6f:16:50:e5:
f7:0f:e9:33:1b:d8:16:68:ff:18:cd:bf:9f:f2:19:
76:14:4c:05:09:b9:ef:23:6c:00:64:8a:47:75:04:
8c:6c:24:63:a7:85:c1:80:44:d7:23:68:b7:8e:2d:
1c:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:20:79:B5:B7:23:54:E1:8B:E4:8F:CE:1D:46:93:3B:8F:42:78:20
X509v3 Authority Key Identifier:
keyid:B5:99:09:ED:17:1B:38:C1:FD:C4:36:22:29:E7:8D:69:85:1D:E1:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tZkJ7RcbOMH9xDYiKeeNaYUd4Rw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/9ee980-67a2-4d3c-b6ca-fde073588f0f/1/BSB5tbcjVOGL5I_OHUaTO49CeCA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/9ee980-67a2-4d3c-b6ca-fde073588f0f/1/tZkJ7RcbOMH9xDYiKeeNaYUd4Rw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.170.166.0/24
Signature Algorithm: sha256WithRSAEncryption
85:e9:5d:49:3a:b8:b6:94:2f:dd:d4:32:cf:3e:26:c4:b2:e5:
79:01:bf:76:7f:f8:d6:7b:29:25:81:13:58:e9:64:de:34:8d:
24:04:8f:bc:b2:fc:a3:15:dc:cb:a6:bc:a2:ad:60:7b:8d:6c:
3c:13:37:a9:e9:17:95:04:86:fe:e6:b0:ad:46:57:89:77:aa:
58:cc:29:84:7e:9a:90:25:13:03:66:69:a5:47:06:36:01:13:
a7:70:52:6b:21:2b:bc:eb:9b:7f:a4:ce:3f:e2:a9:ce:4c:20:
c0:09:94:0f:23:72:77:4e:be:ee:19:3d:d4:dc:ac:0c:d8:0c:
96:7a:c1:27:a8:78:bd:43:ce:1b:94:c3:86:c7:c2:e7:31:e7:
83:bc:5f:b8:aa:1c:b2:6f:a8:83:c2:8b:a3:ef:01:75:b6:22:
db:73:5a:2b:83:bd:ae:04:6c:6b:a1:f4:89:1a:f0:33:4c:16:
c4:03:b7:70:da:ca:6b:a3:f7:ff:50:b2:96:2c:21:f6:a5:7b:
65:15:2b:52:e8:9e:1b:54:95:66:58:a1:69:7b:ad:49:67:46:
52:f6:47:e0:12:a8:c8:59:22:b0:fe:e3:a2:dd:bd:04:ac:95:
3b:38:26:95:8b:89:b5:e3:1f:7a:64:30:df:e2:98:da:28:f0:
61:2b:ef:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:38 2024 by rpki-client on console-fra.rpki-client.org