Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/BF1aKQgU32zhVkVveBcxfYdFo_A.roa
File: BF1aKQgU32zhVkVveBcxfYdFo_A.roa (raw, json)
Hash identifier: 4VHYQfdvo1Gw9gq/LRFT+na/5KUN84mAh1Zsb3MkqO8=
Subject key identifier: 04:5D:5A:29:08:14:DF:6C:E1:56:45:6F:78:17:31:7D:87:45:A3:F0
Certificate issuer: /CN=00775d9471b85d963fef6d283590e2d942dd5c21
Certificate serial: 0191D151284C312B1200B3C465A3E5AD9F19
Authority key identifier: 00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/BF1aKQgU32zhVkVveBcxfYdFo_A.roa
Signing time: Sun 08 Sep 2024 11:07:22 +0000
ROA not before: Sun 08 Sep 2024 11:07:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214361
IP address blocks: 87.107.184.0/23 maxlen: 23
Validation: Failed, certificate revoked on Wed 01 Jan 2025 03:48:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:d1:51:28:4c:31:2b:12:00:b3:c4:65:a3:e5:ad:9f:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00775d9471b85d963fef6d283590e2d942dd5c21
Validity
Not Before: Sep 8 11:07:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=045d5a290814df6ce156456f7817317d8745a3f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:aa:8e:a4:48:7b:23:34:de:b2:2a:ae:6f:ac:
11:d8:fd:55:64:6e:e3:36:a3:7c:15:1f:7e:c9:86:
21:e8:ea:46:6f:7a:37:56:dd:e5:4c:94:f5:86:30:
b3:ca:04:c5:19:6d:b4:ac:d2:fb:09:2e:2d:ea:8a:
80:2b:ad:7e:64:36:86:4a:c0:77:6f:7d:e4:be:c8:
16:c0:e5:a9:35:9b:28:e2:ad:82:2c:a0:f4:96:93:
83:7f:80:ae:20:8f:ff:52:1d:8a:a9:52:14:23:4e:
31:5e:7d:ff:11:d3:f4:c1:ec:45:a5:20:fc:a8:25:
7e:99:2c:0d:c2:61:27:20:3d:1f:d0:5c:52:6e:39:
42:9b:ce:94:53:aa:6b:28:22:60:74:03:ac:e8:4f:
89:b2:e8:48:d6:57:97:d3:be:c4:ab:a4:b5:d4:cb:
b7:c4:98:eb:b4:2b:7a:d7:d6:1e:d5:86:6c:3e:72:
07:a1:cc:a1:a6:dd:17:2b:bb:c0:e0:0e:c4:a0:00:
ea:7d:38:63:61:7d:e9:09:ef:27:b5:e3:d2:0d:2f:
b8:35:b0:1a:c0:69:12:b4:da:55:77:8e:b6:b0:e1:
27:23:4b:ce:19:6b:95:1d:d4:45:5e:9c:66:3c:31:
9b:10:1f:a2:46:17:d4:e6:7f:9c:31:89:e7:03:da:
9c:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:5D:5A:29:08:14:DF:6C:E1:56:45:6F:78:17:31:7D:87:45:A3:F0
X509v3 Authority Key Identifier:
keyid:00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/BF1aKQgU32zhVkVveBcxfYdFo_A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/AHddlHG4XZY_720oNZDi2ULdXCE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.107.184.0/23
Signature Algorithm: sha256WithRSAEncryption
3d:dd:81:97:75:11:91:af:f2:12:04:ce:78:b1:07:bf:3c:a6:
d9:1c:07:b5:88:b8:c5:f2:8b:a3:a3:67:55:27:1d:59:88:32:
c0:b8:53:b6:95:24:ee:47:4e:bb:4f:41:3b:13:87:57:b5:8a:
89:a7:76:32:87:70:03:4d:55:ff:b4:e1:db:24:f9:eb:0e:1b:
c9:d2:c3:08:11:cc:49:5b:a3:33:15:ed:e3:c9:36:43:99:93:
9d:e5:da:ba:5c:0c:ed:d9:d5:84:98:df:ef:56:fa:c2:e0:a1:
fa:bf:9d:1c:5b:37:fb:e3:7f:f8:7d:1c:7e:58:61:6f:df:67:
79:32:6d:da:97:41:d0:4e:21:83:e0:04:24:7b:55:5e:7f:64:
e4:51:63:1f:4b:93:4c:61:0c:72:31:7e:e5:ad:29:66:b5:cd:
d7:4e:c5:91:02:1d:db:71:66:b9:50:5b:bc:93:02:64:3a:43:
af:03:ff:d5:c4:08:bd:7d:88:8c:10:4b:da:c0:fc:5f:f5:4d:
e9:53:24:cc:30:14:e4:f4:14:b3:c5:2c:63:85:9d:20:1a:db:
ee:7d:59:a8:74:06:4c:e3:1e:84:24:ef:e9:10:2a:96:02:4d:
53:7a:44:3b:72:a9:f2:4f:c6:53:e4:d9:7a:84:f9:a4:be:e8:
99:43:3a:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:11:07 2025 by rpki-client