Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/b2dbe0-04c5-41ba-ac62-3a53d0ef8b5a/1/BVPG00r9Ep2mloopKaC2Ny45S3g.roa
File: BVPG00r9Ep2mloopKaC2Ny45S3g.roa (raw, json)
Hash identifier: JmE3cnuyYtx2FwFYlN4S8lArT3F7Rp6a0LrmJ/DbVKc=
Subject key identifier: 05:53:C6:D3:4A:FD:12:9D:A6:96:8A:29:29:A0:B6:37:2E:39:4B:78
Certificate issuer: /CN=c8c2c7314593042cf74210f7f03be7106c224f89
Certificate serial: 01856C65FFF73A056737DC321CEBCF772725
Authority key identifier: C8:C2:C7:31:45:93:04:2C:F7:42:10:F7:F0:3B:E7:10:6C:22:4F:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yMLHMUWTBCz3QhD38DvnEGwiT4k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/b2dbe0-04c5-41ba-ac62-3a53d0ef8b5a/1/BVPG00r9Ep2mloopKaC2Ny45S3g.roa
Signing time: Sun 01 Jan 2023 08:15:02 +0000
ROA not before: Sun 01 Jan 2023 08:15:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212285
IP address blocks: 185.107.134.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 02 Jan 2023 08:40:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:65:ff:f7:3a:05:67:37:dc:32:1c:eb:cf:77:27:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c8c2c7314593042cf74210f7f03be7106c224f89
Validity
Not Before: Jan 1 08:15:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0553c6d34afd129da6968a2929a0b6372e394b78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:98:3f:42:ef:2b:de:43:bc:29:0b:b2:c7:77:
12:ca:bd:dc:e4:16:ae:9c:5a:a2:f5:fb:79:2a:2f:
fc:04:3b:43:91:f5:92:33:13:1f:e6:ec:be:37:0a:
82:2d:4d:a0:2c:0d:7d:c9:18:a7:7a:76:c4:6a:3e:
08:8f:fe:f8:f0:6b:89:e7:d9:ed:cd:0b:22:ab:d3:
2e:87:1d:c9:85:69:66:08:77:c6:54:d3:f3:07:48:
da:13:69:65:cd:f7:c6:ed:36:f3:a0:8d:e7:30:0f:
7d:bc:28:99:1b:72:ae:06:7f:81:e9:23:ef:3e:88:
55:ea:01:db:54:83:24:b5:75:94:ae:b4:b1:36:40:
e8:71:12:4c:62:bb:c5:14:22:ad:ba:02:d8:bb:b1:
42:a9:ef:8d:61:6a:83:29:90:a5:e0:eb:5e:c8:ac:
af:9f:ff:78:d3:af:40:7b:93:49:d6:bc:92:75:0b:
c8:e8:eb:18:ad:83:28:d2:7a:a1:00:84:bd:8a:bb:
80:7c:2d:c9:8d:4c:f2:92:a9:a2:13:07:20:94:b9:
12:a3:ce:be:f9:96:c3:58:a9:4a:04:af:c9:1b:ea:
8e:6e:59:81:03:30:51:be:75:5c:e9:b7:f5:0c:09:
43:cf:c9:d0:79:07:ce:99:55:06:58:cf:65:3b:ed:
e3:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:53:C6:D3:4A:FD:12:9D:A6:96:8A:29:29:A0:B6:37:2E:39:4B:78
X509v3 Authority Key Identifier:
keyid:C8:C2:C7:31:45:93:04:2C:F7:42:10:F7:F0:3B:E7:10:6C:22:4F:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yMLHMUWTBCz3QhD38DvnEGwiT4k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/b2dbe0-04c5-41ba-ac62-3a53d0ef8b5a/1/BVPG00r9Ep2mloopKaC2Ny45S3g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/b2dbe0-04c5-41ba-ac62-3a53d0ef8b5a/1/yMLHMUWTBCz3QhD38DvnEGwiT4k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.107.134.0/24
Signature Algorithm: sha256WithRSAEncryption
21:40:b7:02:bc:54:fd:c5:11:bd:68:d6:4f:1b:54:7c:26:2b:
d4:05:71:14:46:72:70:36:b2:3c:b4:76:06:9f:3f:f8:91:b8:
1a:c2:1e:62:4e:c8:07:95:42:d5:c2:b6:4b:4e:ac:a1:c4:50:
a9:dd:fc:5d:aa:9c:13:09:bf:c3:54:f0:6e:8b:71:bd:f4:89:
43:e8:25:61:77:d8:63:a0:bc:42:bb:54:e4:be:24:ac:2d:c1:
10:85:f0:71:cd:43:96:76:af:98:94:87:3f:4b:65:8e:eb:49:
6d:d2:2e:2a:6b:d4:3c:7f:7f:12:8e:0f:8b:80:77:cd:ba:02:
4f:3c:85:df:b6:25:c3:e0:ea:f9:5f:db:de:ef:6a:c5:b2:99:
86:12:5e:28:0e:19:e4:3f:1e:90:43:10:38:ad:ee:1d:b9:de:
92:67:e9:8f:53:58:80:dc:55:25:2d:74:81:76:74:bb:aa:ef:
56:f4:3b:85:32:83:9a:43:5b:6f:81:d0:f0:9f:09:01:9f:17:
2a:a0:c2:b6:ee:a4:c4:c0:ae:6f:d7:8c:42:c3:30:75:b1:d5:
99:5b:a7:c8:c7:67:56:3e:c4:0b:95:08:dd:fb:bf:c6:4d:5d:
aa:6a:6d:a7:e4:29:9c:c8:fc:94:9f:b1:1b:78:2b:eb:45:f2:
ef:91:16:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:14 2024 by rpki-client on console-fra.rpki-client.org