Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/BHmmt43P3xvAEt42bZZH6occPTE.roa
File: BHmmt43P3xvAEt42bZZH6occPTE.roa (raw, json)
Hash identifier: hN4R2yvTJ3OX+/k7MzG2+F5R9ODD38gF/7GgiiegBZE=
Subject key identifier: 04:79:A6:B7:8D:CF:DF:1B:C0:12:DE:36:6D:96:47:EA:87:1C:3D:31
Certificate issuer: /CN=89056fa9625b6c87404267c6dc219924ac160045
Certificate serial: 01894B426E1394406BFFB22B3EF34D91BC7E
Authority key identifier: 89:05:6F:A9:62:5B:6C:87:40:42:67:C6:DC:21:99:24:AC:16:00:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iQVvqWJbbIdAQmfG3CGZJKwWAEU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/BHmmt43P3xvAEt42bZZH6occPTE.roa
Signing time: Wed 12 Jul 2023 17:59:51 +0000
ROA not before: Wed 12 Jul 2023 17:59:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199984
IP address blocks: 185.123.101.0/24 maxlen: 24
185.123.100.0/24 maxlen: 24
2a11:840:24::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 14 Aug 2023 11:47:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:4b:42:6e:13:94:40:6b:ff:b2:2b:3e:f3:4d:91:bc:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89056fa9625b6c87404267c6dc219924ac160045
Validity
Not Before: Jul 12 17:59:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0479a6b78dcfdf1bc012de366d9647ea871c3d31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:16:95:46:5a:6e:1d:48:a4:f7:10:41:d5:14:
6f:9b:4a:de:8c:59:82:56:83:bc:8d:88:54:5b:4e:
0c:93:1e:c0:87:da:af:76:82:d9:f7:2f:bd:15:62:
69:b6:c2:03:c0:19:ef:1f:f6:4e:83:6d:f0:50:e4:
d2:f8:5b:e1:36:34:05:4f:5e:cf:52:f1:97:d4:50:
76:2b:24:8f:d1:5c:74:1c:90:1e:1d:24:df:f8:33:
18:64:fe:5e:ac:66:e3:d6:9f:8f:3f:f1:46:73:0b:
06:1a:30:c4:3d:34:5a:8e:b0:4e:cd:83:f3:d8:03:
33:50:cf:ec:ea:2b:76:7b:b5:2c:5d:eb:3b:55:ea:
27:2c:9d:58:d0:b4:3d:35:09:69:0e:34:b9:3b:2c:
d6:dd:ec:88:58:eb:9f:a0:eb:d6:45:4e:9a:37:d3:
1b:a7:d0:27:cf:9a:4b:46:fc:00:21:f2:de:0e:ee:
f0:1f:d3:1b:db:c9:1e:4f:56:f5:4a:51:7c:52:88:
31:98:60:86:fc:82:a5:0c:18:f4:fe:25:d2:0e:4f:
96:96:c6:a7:5b:09:35:39:e5:ae:50:ec:12:48:6d:
c4:d4:19:4d:29:66:8e:eb:c3:18:bf:1d:c6:46:e4:
a9:11:d0:f4:d2:08:c1:6b:dc:9c:b4:bb:7d:68:4b:
b3:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:79:A6:B7:8D:CF:DF:1B:C0:12:DE:36:6D:96:47:EA:87:1C:3D:31
X509v3 Authority Key Identifier:
keyid:89:05:6F:A9:62:5B:6C:87:40:42:67:C6:DC:21:99:24:AC:16:00:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iQVvqWJbbIdAQmfG3CGZJKwWAEU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/BHmmt43P3xvAEt42bZZH6occPTE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/iQVvqWJbbIdAQmfG3CGZJKwWAEU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.123.100.0/23
IPv6:
2a11:840:24::/48
Signature Algorithm: sha256WithRSAEncryption
79:07:d2:ab:9b:d4:cb:1c:eb:d5:55:61:f4:9e:56:83:f7:8e:
53:3f:73:03:57:d9:71:27:82:de:0f:04:1b:57:ae:76:3e:e3:
71:fb:ae:2f:52:85:6f:89:75:2d:3f:c0:b4:70:cd:fd:31:04:
a3:17:9c:e4:1c:d8:39:b4:16:b6:74:ef:7f:de:51:a6:fd:02:
5f:26:df:27:15:ec:d3:65:eb:a7:e7:88:40:d3:d9:e5:9d:e9:
9c:70:2f:39:b0:0f:b6:82:6a:8f:b5:7a:97:20:11:56:7c:76:
c7:dd:5c:e6:4e:2f:d6:19:e9:44:88:df:cc:4e:1f:82:4b:9a:
ce:24:8f:3c:6a:e6:0d:58:65:19:a8:b1:1b:ed:70:5c:ee:0d:
bf:3d:45:95:e0:09:73:d6:75:3a:90:1d:78:74:b4:eb:a4:2b:
5c:11:07:b5:3f:11:35:47:ba:5b:02:16:55:4c:09:7c:49:1b:
0c:da:d5:59:f1:b7:4b:0f:40:94:e9:41:81:e1:76:0f:78:63:
20:81:0e:81:c0:62:01:bf:01:50:bf:d5:3e:e4:18:31:90:d0:
a4:51:6f:42:f9:5a:07:67:e6:37:0f:bf:4e:43:24:74:31:a0:
4e:14:38:0b:cd:c6:04:6e:ec:e8:dc:ba:12:b0:69:a3:1c:10:
6d:7b:3c:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:51 2024 by rpki-client on console-ams.rpki-client.org