Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/4ce558-63d6-469a-bb5d-f7820c5e966a/1/bDiFIhAAhexXIKaR3izIa9dZEAk.roa
File: bDiFIhAAhexXIKaR3izIa9dZEAk.roa (raw, json)
Hash identifier: W2L26l8/ulSHDOMVSGdcY4NMgj54R1Os0W2ukYJ0ccQ=
Subject key identifier: 6C:38:85:22:10:00:85:EC:57:20:A6:91:DE:2C:C8:6B:D7:59:10:09
Certificate issuer: /CN=bfe9f12c96ba20683aff5c958bfad8e4c577f7fe
Certificate serial: 01856F4B8118832502AAA08AA07368E2A046
Authority key identifier: BF:E9:F1:2C:96:BA:20:68:3A:FF:5C:95:8B:FA:D8:E4:C5:77:F7:FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v-nxLJa6IGg6_1yVi_rY5MV39_4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/4ce558-63d6-469a-bb5d-f7820c5e966a/1/bDiFIhAAhexXIKaR3izIa9dZEAk.roa
Signing time: Sun 01 Jan 2023 21:44:57 +0000
ROA not before: Sun 01 Jan 2023 21:44:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 139242
IP address blocks: 185.212.144.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:4b:81:18:83:25:02:aa:a0:8a:a0:73:68:e2:a0:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfe9f12c96ba20683aff5c958bfad8e4c577f7fe
Validity
Not Before: Jan 1 21:44:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6c388522100085ec5720a691de2cc86bd7591009
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:57:d1:68:fa:d7:f6:85:45:00:9d:9b:5f:10:
d8:e6:81:6e:d9:be:75:ee:cb:d8:30:1b:b8:4d:a7:
e6:f9:e9:d3:86:09:d0:54:17:10:3b:95:63:b2:30:
81:5e:0f:ca:fd:9f:2d:90:79:70:e6:51:37:c0:85:
a8:b1:f5:45:db:6e:e3:b5:6c:56:62:b3:85:35:78:
0e:c4:7f:7a:27:77:76:01:89:5b:0e:64:22:af:fd:
bd:7b:01:b6:b7:55:a7:d5:d1:b3:f0:2c:3f:c3:bf:
d3:41:fb:82:0c:70:1d:56:5e:ca:ae:7c:57:a6:ff:
3d:68:18:1b:91:9c:27:a2:58:82:9f:99:0a:16:c8:
c9:f0:9c:b9:2f:2f:a3:c7:31:58:ed:10:17:50:5f:
ea:97:4d:16:a1:c1:f5:d1:9a:aa:7b:50:b6:e0:f1:
7f:92:85:a5:30:33:65:d4:93:4e:e3:29:10:d4:59:
12:02:2b:76:ab:76:cc:7e:68:76:8d:5c:93:b2:8f:
98:d8:77:52:ee:d0:dd:13:68:dd:1e:b5:9e:4e:6f:
6c:61:17:0d:67:8f:de:18:de:fa:d1:f7:bf:cd:c4:
f6:16:67:02:3b:c7:8b:fc:f4:a7:c9:77:86:af:93:
6f:37:2a:af:14:8a:d2:9c:e2:79:39:8d:1e:5f:f4:
1e:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:38:85:22:10:00:85:EC:57:20:A6:91:DE:2C:C8:6B:D7:59:10:09
X509v3 Authority Key Identifier:
keyid:BF:E9:F1:2C:96:BA:20:68:3A:FF:5C:95:8B:FA:D8:E4:C5:77:F7:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v-nxLJa6IGg6_1yVi_rY5MV39_4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/4ce558-63d6-469a-bb5d-f7820c5e966a/1/bDiFIhAAhexXIKaR3izIa9dZEAk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/4ce558-63d6-469a-bb5d-f7820c5e966a/1/v-nxLJa6IGg6_1yVi_rY5MV39_4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.212.144.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:5b:3d:4c:26:6c:99:0f:77:10:03:5c:5b:d6:2b:6a:b5:50:
98:c8:88:06:a3:b4:d0:79:65:09:e8:a3:40:23:a1:5d:95:85:
e5:08:0b:76:4a:5a:e4:18:53:0c:f9:0e:b3:ef:57:cc:a2:58:
b4:6a:97:4b:f2:6b:ef:08:68:fe:85:e0:8b:13:4c:65:6c:73:
40:ba:a9:ec:9b:56:b6:ec:dd:79:d6:bd:61:41:71:87:8c:46:
db:a3:7c:cf:59:01:89:29:d4:49:54:2b:7d:00:30:e2:77:00:
6d:7d:f6:aa:a8:74:56:eb:0b:80:42:97:20:3f:1a:4b:e0:e2:
07:4f:a0:b9:da:e7:09:93:6f:e8:e9:cc:b1:e1:ea:a9:1e:a7:
5f:0e:18:1e:df:47:57:08:a2:65:9f:f7:73:cb:35:28:ce:6d:
e7:0d:c2:21:ac:06:1f:5b:6c:5c:79:b7:97:79:07:85:79:0e:
7a:f9:2c:3f:4b:0d:85:a2:56:45:15:e4:0a:9f:9b:52:c8:41:
b8:83:8f:77:4d:33:49:31:0e:e9:d5:26:c1:76:e7:d1:14:16:
84:51:f1:d3:91:d6:24:8f:e5:43:a3:1e:45:e6:0e:b7:c7:ad:
a7:72:7c:92:8a:c5:37:af:42:43:b7:65:cb:5e:0d:a2:3b:8f:
d3:1a:45:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:49 2024 by rpki-client on console-fra.rpki-client.org