Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/BsNcGhYmSPazpMzb15GGRTbiG1Q.roa
File: BsNcGhYmSPazpMzb15GGRTbiG1Q.roa (raw, json)
Hash identifier: 0L9oQfdY+5TZ0SDbXWfNdMyqdvGA5NUxtUtXzHzbzpE=
Subject key identifier: 06:C3:5C:1A:16:26:48:F6:B3:A4:CC:DB:D7:91:86:45:36:E2:1B:54
Certificate issuer: /CN=eac2c1afd4bdec980506fa07df7c8662d554fa46
Certificate serial: 018BC9C02F805A733F11DBFCE90D81A50818
Authority key identifier: EA:C2:C1:AF:D4:BD:EC:98:05:06:FA:07:DF:7C:86:62:D5:54:FA:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6sLBr9S97JgFBvoH33yGYtVU-kY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/BsNcGhYmSPazpMzb15GGRTbiG1Q.roa
Signing time: Mon 13 Nov 2023 17:34:57 +0000
ROA not before: Mon 13 Nov 2023 17:34:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 194.187.117.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:c9:c0:2f:80:5a:73:3f:11:db:fc:e9:0d:81:a5:08:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eac2c1afd4bdec980506fa07df7c8662d554fa46
Validity
Not Before: Nov 13 17:34:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=06c35c1a162648f6b3a4ccdbd791864536e21b54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:3d:aa:1b:99:8a:b6:ef:eb:c0:87:84:e4:a3:
88:c1:43:83:df:d5:ce:d2:17:dd:29:07:07:23:75:
64:ad:a2:16:60:3c:5d:ed:7e:af:38:27:75:9e:f0:
f3:50:90:d6:f5:ff:38:e7:6b:e0:46:fb:12:89:f4:
5c:55:01:cd:c7:ce:95:d3:ba:e9:ef:45:66:0b:be:
75:2b:da:1c:94:3b:11:84:7d:0f:db:0f:92:21:78:
d6:ea:19:9f:47:80:31:dc:14:95:ec:96:52:b7:ed:
9a:01:4d:17:f4:f2:3f:a0:da:be:89:0d:9c:f5:40:
e9:39:76:e9:1a:99:47:a3:b1:09:fd:53:b8:64:cf:
b1:75:22:4f:db:86:64:29:8d:97:53:93:78:d7:01:
c2:f5:eb:42:02:91:02:ff:27:95:43:b9:0c:3d:f6:
c7:6f:85:75:80:ed:08:1a:dc:e7:bb:7d:be:5d:23:
c4:5c:2f:be:74:37:89:f1:aa:14:e6:48:9c:cf:0d:
cc:05:4d:67:91:df:19:16:92:a7:06:9d:04:a8:24:
61:2b:e8:b6:3d:2d:10:00:5c:61:0e:fe:1d:8e:14:
ff:e8:34:62:01:65:cb:f6:bc:34:37:88:02:42:22:
28:99:4c:be:a2:d2:fe:10:5e:65:b3:62:dc:b5:32:
1f:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:C3:5C:1A:16:26:48:F6:B3:A4:CC:DB:D7:91:86:45:36:E2:1B:54
X509v3 Authority Key Identifier:
keyid:EA:C2:C1:AF:D4:BD:EC:98:05:06:FA:07:DF:7C:86:62:D5:54:FA:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6sLBr9S97JgFBvoH33yGYtVU-kY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/BsNcGhYmSPazpMzb15GGRTbiG1Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/6sLBr9S97JgFBvoH33yGYtVU-kY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.187.117.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:95:f4:ce:0f:11:a5:0e:e7:a2:15:83:f5:09:a5:2a:64:8c:
6d:9d:ea:ee:c0:db:e2:4f:e0:2d:f1:a8:00:b9:d2:db:c2:8d:
18:27:26:64:bc:d9:0e:0d:7b:88:b0:c3:05:07:e8:77:ad:ee:
57:49:f2:40:43:ab:a5:41:6c:c3:f0:5a:9d:f4:d5:ee:9f:78:
4f:f4:24:63:b4:30:8d:ed:00:23:12:a4:da:1f:ca:6a:57:ea:
ff:75:6f:81:6a:82:e7:5c:22:5d:0e:d8:4f:0a:90:d3:1b:ec:
b9:ac:8f:0b:7b:28:98:06:86:9d:d3:35:72:31:3c:aa:d3:b9:
dc:37:cb:90:40:57:3b:fc:bf:cd:93:f7:1d:b4:1a:78:ed:39:
3f:eb:dd:a3:64:d2:68:c4:b1:26:45:d1:6e:20:c7:9d:6c:c8:
c6:b1:93:9d:87:48:be:74:94:2f:b1:fc:e4:c4:9b:f7:8a:5c:
f2:67:26:35:85:5d:95:0a:69:cf:61:fd:83:eb:c2:67:33:75:
bb:38:bb:3c:cc:f8:23:3f:0e:f9:21:2f:e3:97:17:85:3a:3e:
35:89:0d:b6:32:c4:24:52:6b:18:0a:e1:6b:1c:9e:95:ac:58:
2c:49:25:ef:96:50:b0:45:1d:42:79:ac:3c:9a:b7:eb:e0:d8:
09:4f:48:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 17:35:34 2024 by rpki-client on console-fra.rpki-client.org