Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/2c67ed-8d41-4f9f-aded-06676be138fa/1/bczsCsVoCYZT02DUj6t6fnNfYeY.roa
File: bczsCsVoCYZT02DUj6t6fnNfYeY.roa (raw, json)
Hash identifier: XWp6te1wm+h8IRknMH/bp5NXB21Few4Ltj/iiHIH8qs=
Subject key identifier: 6D:CC:EC:0A:C5:68:09:86:53:D3:60:D4:8F:AB:7A:7E:73:5F:61:E6
Certificate issuer: /CN=26f170b19b97ee17de732a1b68ae22ba8e5f56e4
Certificate serial: 018775070A8B2410E2A968B11AE33A6E4BF4
Authority key identifier: 26:F1:70:B1:9B:97:EE:17:DE:73:2A:1B:68:AE:22:BA:8E:5F:56:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JvFwsZuX7hfecyobaK4iuo5fVuQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/2c67ed-8d41-4f9f-aded-06676be138fa/1/bczsCsVoCYZT02DUj6t6fnNfYeY.roa
Signing time: Wed 12 Apr 2023 10:33:28 +0000
ROA not before: Wed 12 Apr 2023 10:33:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206055
IP address blocks: 185.238.118.0/23 maxlen: 23
2a13:9f80::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:75:07:0a:8b:24:10:e2:a9:68:b1:1a:e3:3a:6e:4b:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=26f170b19b97ee17de732a1b68ae22ba8e5f56e4
Validity
Not Before: Apr 12 10:33:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6dccec0ac568098653d360d48fab7a7e735f61e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:db:96:f7:5e:12:65:22:14:cd:00:1b:b8:e9:
ed:8c:5c:09:72:58:7e:60:cc:76:41:17:39:ec:a6:
f2:72:3e:b7:e3:82:e1:74:79:0e:cb:61:d5:c2:81:
ae:38:4a:4c:af:7d:2e:6b:c9:91:9d:79:7c:71:51:
46:28:22:91:f1:44:83:29:1e:e9:cb:2f:81:bd:54:
c2:5d:d4:fe:17:be:24:a7:0a:0b:91:79:97:e0:33:
9b:0a:99:b3:f9:23:58:82:6f:5c:69:45:96:5f:ea:
c7:57:8d:05:9a:3a:c7:a4:06:c3:99:78:a9:f7:2c:
a2:89:f4:96:63:e3:9a:86:95:0a:b9:eb:b4:1d:3c:
6d:dd:5b:3f:53:79:ab:b2:2d:da:70:4d:a6:bf:5f:
07:2c:5f:cf:03:7b:87:15:9e:38:ee:ca:68:ef:d8:
f3:15:2b:d5:99:5a:2c:81:d0:89:26:77:62:66:d1:
9c:16:3a:aa:d9:ea:09:7a:cc:df:00:02:fb:fd:c9:
0f:fe:ad:1c:e6:5f:ca:24:67:67:c7:c1:e9:a4:91:
dd:f8:91:14:30:61:84:76:6b:06:f8:f8:25:ef:f3:
56:b2:f3:41:29:ba:fb:ba:44:f2:82:42:34:b4:15:
fd:3b:52:d3:f3:ef:25:7d:af:d4:d4:78:30:d6:52:
61:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:CC:EC:0A:C5:68:09:86:53:D3:60:D4:8F:AB:7A:7E:73:5F:61:E6
X509v3 Authority Key Identifier:
keyid:26:F1:70:B1:9B:97:EE:17:DE:73:2A:1B:68:AE:22:BA:8E:5F:56:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JvFwsZuX7hfecyobaK4iuo5fVuQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/2c67ed-8d41-4f9f-aded-06676be138fa/1/bczsCsVoCYZT02DUj6t6fnNfYeY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/2c67ed-8d41-4f9f-aded-06676be138fa/1/JvFwsZuX7hfecyobaK4iuo5fVuQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.238.118.0/23
IPv6:
2a13:9f80::/32
Signature Algorithm: sha256WithRSAEncryption
3f:6c:ed:3e:02:4c:52:58:23:f5:ff:25:eb:9c:92:7a:52:fe:
c7:f4:ea:f9:74:36:a5:39:7e:51:a2:1d:f7:74:81:fa:d0:d6:
c1:22:fc:bb:a1:bf:ea:4f:eb:60:8b:c1:e6:06:12:6e:24:ab:
47:5a:ca:07:4a:da:51:c4:37:c3:93:18:87:db:61:54:ff:b3:
bd:a9:ab:7d:9a:6e:4a:a1:4b:67:2f:c5:3b:47:8a:0a:68:ff:
2e:23:16:2b:e3:79:a5:f0:ee:e1:c8:dc:33:3f:a4:b2:60:75:
05:ce:75:4f:88:ce:a7:7c:b7:ba:5c:fb:56:2e:2c:2c:85:90:
50:69:29:7a:a9:94:b4:50:e4:4d:c0:cc:7f:fe:7e:8f:85:36:
c1:ef:38:66:d5:ce:9a:7b:fc:c5:2f:33:3b:99:a7:05:bf:63:
7c:31:94:2f:4c:b8:37:d1:d3:bc:9f:9d:81:fe:0c:ae:c9:2d:
b9:de:de:39:ca:27:1f:7d:b9:31:eb:73:72:e5:c6:e4:24:be:
7a:12:ab:4a:86:5a:fd:13:02:d9:7b:54:f3:98:aa:e3:63:25:
d3:31:81:22:d6:f8:63:f6:7a:e4:ef:a6:7d:f9:2f:7f:2e:12:
7d:96:55:d1:2e:9e:5c:e8:65:02:ee:46:38:bf:81:41:2f:5b:
02:10:cc:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:53 2024 by rpki-client on console-ams.rpki-client.org