Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/Bng95ZStqhXFk8Ow9dNBntERN8s.roa
File: Bng95ZStqhXFk8Ow9dNBntERN8s.roa (raw, json)
Hash identifier: lIPU+cjxjYIxi9AsNfDuLS4jIqgZDP85sMn6fSAfYIY=
Subject key identifier: 06:78:3D:E5:94:AD:AA:15:C5:93:C3:B0:F5:D3:41:9E:D1:11:37:CB
Certificate issuer: /CN=1aca63df248b7adf3ddd07e8c2d3eedd02cef933
Certificate serial: 018571155A2A3B56256C24947C6080944F18
Authority key identifier: 1A:CA:63:DF:24:8B:7A:DF:3D:DD:07:E8:C2:D3:EE:DD:02:CE:F9:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gspj3ySLet893QfowtPu3QLO-TM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/Bng95ZStqhXFk8Ow9dNBntERN8s.roa
Signing time: Mon 02 Jan 2023 06:05:02 +0000
ROA not before: Mon 02 Jan 2023 06:05:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201549
IP address blocks: 85.219.148.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:15:5a:2a:3b:56:25:6c:24:94:7c:60:80:94:4f:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1aca63df248b7adf3ddd07e8c2d3eedd02cef933
Validity
Not Before: Jan 2 06:05:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=06783de594adaa15c593c3b0f5d3419ed11137cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:9d:f3:b4:6d:76:ee:4a:32:f5:5c:6a:20:79:
ed:96:54:1c:0c:7a:6d:ac:28:e4:7d:b8:49:86:a0:
50:74:96:28:30:8d:9e:2b:03:e0:08:d4:f1:32:81:
06:9f:e1:47:37:fc:f9:ce:88:89:ea:6e:a6:2d:ce:
0c:48:c6:2f:09:c1:36:b5:e9:88:2d:52:d6:4e:18:
8b:e0:6c:89:69:f2:1e:4e:27:93:dc:90:5c:2b:5e:
c6:eb:e8:45:da:00:4d:74:5b:91:f3:c1:b5:15:24:
b6:de:99:5b:0b:bc:b1:20:23:26:c1:57:e9:05:52:
26:59:9d:a6:1f:c4:b9:1d:c7:e4:72:8f:d9:92:26:
00:6b:32:d1:d2:f7:00:e3:ff:fc:e3:60:e7:58:de:
14:4b:f0:94:13:fd:8b:25:63:43:33:ab:25:b3:a9:
d0:21:9e:a0:16:7a:58:aa:81:b2:1d:64:7b:f2:fc:
a3:e9:b5:38:1a:19:42:42:77:0b:9c:06:0e:dc:39:
49:2e:d2:4f:88:f5:b0:7f:7d:fd:0b:27:04:c5:3e:
85:2f:bf:59:d9:4d:51:0d:e5:83:0d:90:54:86:a1:
5f:b4:6b:4f:47:05:24:5b:3f:e3:54:f5:ea:26:ea:
f7:a0:77:e0:15:96:00:71:eb:de:83:4f:0d:e4:95:
04:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:78:3D:E5:94:AD:AA:15:C5:93:C3:B0:F5:D3:41:9E:D1:11:37:CB
X509v3 Authority Key Identifier:
keyid:1A:CA:63:DF:24:8B:7A:DF:3D:DD:07:E8:C2:D3:EE:DD:02:CE:F9:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gspj3ySLet893QfowtPu3QLO-TM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/Bng95ZStqhXFk8Ow9dNBntERN8s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/Gspj3ySLet893QfowtPu3QLO-TM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.219.148.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:82:99:c2:3c:b7:79:68:60:fa:9c:26:92:52:fb:7e:a2:9e:
bb:39:29:0c:98:40:66:f7:32:9c:d7:29:c4:a6:dc:7e:8e:b3:
a5:af:9a:c6:11:40:96:b6:b8:74:dc:ad:ef:f8:a7:d6:b3:54:
73:f6:29:6d:27:65:c0:9a:41:de:54:3f:58:81:a0:0d:cb:fb:
f6:e5:45:2c:4e:2e:54:95:fb:c9:cb:1c:9a:14:5c:46:e2:89:
dc:99:ea:9f:5d:eb:f2:36:05:eb:a0:25:d6:6d:1c:8d:08:a3:
6b:78:66:21:b9:8f:f2:ad:ff:eb:42:14:74:a3:f2:fb:93:26:
24:e4:94:6c:e5:ea:73:2a:51:42:b0:8e:b1:71:55:9c:be:9a:
7a:a3:1f:17:39:d5:75:33:8d:e4:dd:d0:1e:3c:f8:bc:a2:7c:
f4:7d:3c:90:c8:77:1a:9b:1a:3d:d6:ff:23:e5:74:c3:e0:7d:
5c:f8:81:4f:93:cf:00:4f:a8:1e:ea:ba:93:ad:c0:f0:5a:a3:
52:0a:3a:10:a6:70:0a:d4:fe:5d:2e:df:0d:c2:ab:f8:66:a8:
f9:4b:d3:46:36:a7:57:88:62:a1:32:30:29:95:ba:2d:4b:f5:
2a:0a:5e:66:10:b7:88:5f:bb:6e:13:e7:6f:68:b4:5a:64:42:
9c:12:2f:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 01:50:29 2024 by rpki-client on console-fra.rpki-client.org