Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Bgn6GPmhORllhfU5rD8TAUtTgtw.roa
File: Bgn6GPmhORllhfU5rD8TAUtTgtw.roa (raw, json)
Hash identifier: 2f9jYzdMAU94qh12gd6D8FMUgpu8Timlk3NJWZy10uA=
Subject key identifier: 06:09:FA:18:F9:A1:39:19:65:85:F5:39:AC:3F:13:01:4B:53:82:DC
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 0187DB51CB269565CEA7C34DF06C47F44E1C
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Bgn6GPmhORllhfU5rD8TAUtTgtw.roa
Signing time: Tue 02 May 2023 07:16:23 +0000
ROA not before: Tue 02 May 2023 07:16:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60707
IP address blocks: 45.66.153.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:db:51:cb:26:95:65:ce:a7:c3:4d:f0:6c:47:f4:4e:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: May 2 07:16:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0609fa18f9a139196585f539ac3f13014b5382dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:f1:81:f1:52:ac:75:11:8a:2a:d6:23:1b:6f:
75:18:05:d5:dc:a3:a0:ba:5b:56:b5:b6:7f:21:8b:
b1:22:ff:81:87:81:45:c6:b9:97:e2:88:78:1b:31:
73:0b:06:81:bd:4c:d0:c7:26:01:93:33:ae:d0:b9:
a2:75:12:c6:93:cd:96:1b:71:d1:dc:9a:f7:92:d4:
07:4b:c0:a1:a5:70:ce:3a:21:d7:d0:a5:4a:43:46:
9e:31:f5:66:80:31:33:9e:b0:11:6d:3f:67:f0:e0:
9f:e7:d6:0a:74:71:5b:93:64:ef:0c:73:ae:90:46:
d7:7a:0d:e1:cc:01:6b:80:ab:57:a4:89:e5:6f:10:
bf:18:dc:f2:4d:90:6a:e9:35:58:58:fc:a1:44:19:
b6:2a:f5:e1:c3:68:76:27:2a:25:dd:7d:74:e6:31:
2f:f5:22:42:e2:de:ee:44:e0:af:23:bd:fe:25:1d:
c2:b6:c1:39:74:c9:45:4c:31:16:f9:d5:ea:3a:67:
9d:73:06:6b:58:48:69:75:e3:b9:cc:9e:95:3b:b7:
18:ad:bc:f9:79:11:5c:6e:75:67:50:25:0b:3c:fb:
0b:fb:d2:4c:ef:07:94:e2:7b:db:d7:7b:d6:19:3a:
cf:47:cf:61:1b:e0:84:d7:2c:ed:0e:6b:9a:be:54:
e4:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:09:FA:18:F9:A1:39:19:65:85:F5:39:AC:3F:13:01:4B:53:82:DC
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Bgn6GPmhORllhfU5rD8TAUtTgtw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.66.153.0/24
Signature Algorithm: sha256WithRSAEncryption
10:a1:96:66:a6:a1:9b:e3:bd:d8:08:54:5f:be:d3:c6:22:22:
fe:15:d1:1d:5b:68:eb:4e:ae:79:70:15:83:b6:08:e5:b8:58:
bf:a8:39:4f:0e:b6:0c:5f:70:12:e5:ed:23:7e:2f:6e:68:e5:
4c:0e:dd:e1:96:84:cf:f9:56:5a:ff:e7:15:a8:da:71:b1:20:
0a:9d:62:41:81:25:3e:b6:ef:74:34:e8:39:fc:75:ab:f4:c2:
37:31:26:e4:01:ea:f5:f7:29:df:1c:81:a3:d0:16:52:99:cc:
a2:61:97:71:bb:82:79:d1:72:b5:84:f5:9c:23:27:08:61:be:
ce:35:03:e9:b5:fb:32:86:c3:b0:e1:33:21:60:e6:13:d4:d1:
34:aa:fe:4e:89:20:45:25:47:bc:8e:72:b6:2d:c2:61:21:ed:
dd:77:da:3e:75:f6:f5:d7:0a:a9:97:6b:e7:9d:2e:6f:9b:80:
b7:4c:35:12:b1:c4:ff:9a:7a:ba:b2:f4:ab:f1:91:1b:d6:22:
0c:30:0e:81:83:c3:f3:33:9e:a8:29:61:96:24:a2:ae:f5:02:
51:0f:ca:0b:6d:54:5e:30:34:44:26:b4:8c:88:21:8d:15:a0:
27:c8:9c:a9:fe:6c:bb:dc:3e:e7:91:ad:3a:98:6b:15:02:47:
60:af:39:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:22 2023 by rpki-client on console-ams.rpki-client.org