Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/a5f931-6fa8-4cf0-8f97-23b28f39a602/1/bmsqeeHuMhyMw1reh46igKTDHi8.roa
File: bmsqeeHuMhyMw1reh46igKTDHi8.roa (raw, json)
Hash identifier: Q66OBE3MAbYedoYeng1gKF5smIVcBYlPHwACQjl72Gs=
Subject key identifier: 6E:6B:2A:79:E1:EE:32:1C:8C:C3:5A:DE:87:8E:A2:80:A4:C3:1E:2F
Certificate issuer: /CN=da27113db55b63b67a4a627a7008a8afc2bcc42c
Certificate serial: 01857095148EDAC63D956363D0DC5C563D47
Authority key identifier: DA:27:11:3D:B5:5B:63:B6:7A:4A:62:7A:70:08:A8:AF:C2:BC:C4:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2icRPbVbY7Z6SmJ6cAior8K8xCw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/a5f931-6fa8-4cf0-8f97-23b28f39a602/1/bmsqeeHuMhyMw1reh46igKTDHi8.roa
Signing time: Mon 02 Jan 2023 03:44:56 +0000
ROA not before: Mon 02 Jan 2023 03:44:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 146.66.3.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:95:14:8e:da:c6:3d:95:63:63:d0:dc:5c:56:3d:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da27113db55b63b67a4a627a7008a8afc2bcc42c
Validity
Not Before: Jan 2 03:44:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6e6b2a79e1ee321c8cc35ade878ea280a4c31e2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:b4:00:3d:b0:34:3a:af:1e:72:f6:27:d2:d3:
26:b5:75:ac:29:c4:de:0d:24:a5:8c:c5:ac:14:81:
fc:11:bd:45:02:a8:98:03:7f:d5:8b:bd:e5:6f:d6:
2a:c4:0b:7d:1e:b8:4c:fd:f6:18:ae:8c:35:c6:4c:
58:c1:2c:d8:93:0f:6f:9d:04:53:a6:6f:41:91:18:
a7:1f:3b:29:e9:ae:00:66:8d:9f:82:06:38:01:be:
e7:1a:7d:08:bc:53:72:06:04:7a:92:1e:b7:ef:ec:
db:fa:1d:86:03:7c:b3:41:0f:a7:9c:d2:f7:20:92:
a0:40:eb:d8:95:2d:69:c9:28:ab:77:29:20:5b:8b:
15:e7:ff:bd:7d:fb:13:91:d4:2d:55:85:39:ad:c7:
31:c4:0c:85:b6:49:55:e4:18:6c:df:b4:7b:31:df:
2e:0f:bf:cb:9c:09:8e:2c:b2:06:82:bd:9a:4f:ca:
79:ca:79:8e:e8:79:b4:4d:42:8f:e5:82:45:69:2e:
41:4c:0f:22:9d:bd:14:56:c6:4d:99:fa:35:f5:6c:
d3:78:25:14:54:94:93:76:3c:71:49:6b:2d:23:0a:
31:28:aa:97:fa:27:24:b1:5b:64:85:8a:5e:79:f9:
0e:67:84:e8:fd:25:00:01:f0:b1:dc:27:5e:16:ff:
42:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:6B:2A:79:E1:EE:32:1C:8C:C3:5A:DE:87:8E:A2:80:A4:C3:1E:2F
X509v3 Authority Key Identifier:
keyid:DA:27:11:3D:B5:5B:63:B6:7A:4A:62:7A:70:08:A8:AF:C2:BC:C4:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2icRPbVbY7Z6SmJ6cAior8K8xCw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/a5f931-6fa8-4cf0-8f97-23b28f39a602/1/bmsqeeHuMhyMw1reh46igKTDHi8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/a5f931-6fa8-4cf0-8f97-23b28f39a602/1/2icRPbVbY7Z6SmJ6cAior8K8xCw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.66.3.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:a6:c8:2d:3d:e4:34:74:7a:66:06:27:2e:cf:e0:81:69:c2:
93:9a:75:67:d4:c3:61:e7:f3:91:55:a9:db:90:e7:2c:e4:58:
80:ac:55:6a:fc:a6:52:76:a8:ed:24:84:c6:da:aa:90:5f:9a:
be:3f:d8:6a:35:d1:f5:de:f3:c5:f8:13:99:81:9e:46:f8:79:
ed:df:f5:f2:99:fb:69:3d:25:05:89:bc:99:ef:55:61:62:b3:
57:b2:a9:8a:e8:da:cb:7a:b7:fd:e2:de:8b:38:46:61:99:36:
21:c6:e2:ea:ef:bc:b0:8a:ca:71:e0:d6:f7:c9:48:e8:ce:27:
60:a2:44:c5:a4:ee:5e:68:3d:10:1a:93:bd:9e:1e:7c:2a:9a:
5c:b8:2a:44:d5:c4:d1:6e:74:78:0a:6b:e2:2e:12:6c:e1:df:
6f:68:ef:00:ae:e8:3b:8d:8c:ec:3f:da:da:47:39:f2:9f:48:
1d:10:08:87:a6:bb:c9:7b:6f:f1:cc:72:e3:75:81:fa:2d:4a:
43:42:93:ad:fe:49:67:7a:31:3b:f9:8f:d3:ef:f6:dd:a7:e0:
e7:84:9e:ff:d1:14:24:04:f9:55:84:91:78:02:66:1c:34:48:
bc:5e:87:f5:ab:7c:b1:84:4b:16:3f:7c:fa:7b:21:18:26:91:
b2:bd:6b:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 11:16:17 2024 by rpki-client on console-ams.rpki-client.org