Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/bxgEZAgNfu04416YN-oBCvj_XmQ.roa
File: bxgEZAgNfu04416YN-oBCvj_XmQ.roa (raw, json)
Hash identifier: CjhY6nCD0OBT2ppHX4pia7R7qcNpckdUX1E3zejS3aY=
Subject key identifier: 6F:18:04:64:08:0D:7E:ED:38:E3:5E:98:37:EA:01:0A:F8:FF:5E:64
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 018D6B7612AED20C3965EC06DA66C0A5C984
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/bxgEZAgNfu04416YN-oBCvj_XmQ.roa
Signing time: Fri 02 Feb 2024 20:15:16 +0000
ROA not before: Fri 02 Feb 2024 20:15:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215789
IP address blocks: 82.115.223.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 05 Aug 2024 07:53:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:6b:76:12:ae:d2:0c:39:65:ec:06:da:66:c0:a5:c9:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Feb 2 20:15:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6f180464080d7eed38e35e9837ea010af8ff5e64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:cb:75:f6:77:32:8f:d0:5b:63:10:b6:0d:11:
04:e8:74:c0:30:95:26:64:31:47:8e:93:a2:a6:7e:
77:cc:4b:e0:12:18:10:3f:29:12:8b:29:c2:57:a9:
f6:58:3a:9c:e1:55:f6:0e:26:97:c8:5b:cb:35:95:
bb:45:12:02:28:40:b7:e6:be:55:14:81:28:d0:43:
75:78:a2:ad:9e:f4:ce:0e:16:05:2e:94:de:78:fb:
13:5e:ae:33:ed:5a:b6:21:dc:2f:b2:c2:55:3e:67:
62:dd:3f:8e:22:f6:46:ed:aa:40:8b:23:25:97:6d:
97:f3:07:e0:d6:c5:86:fe:94:c7:b7:d2:20:b7:00:
35:24:dd:fd:f6:e1:2c:81:98:61:b4:b8:aa:f9:85:
ec:4b:ce:31:17:46:5f:0a:c7:0d:76:13:6c:bd:5f:
6e:84:ef:51:c8:66:25:00:d0:9d:c6:e0:3f:26:ad:
d1:10:c4:b1:e2:58:89:ef:59:3b:e2:09:15:5b:f5:
e1:3e:ca:c2:19:8f:f2:9d:d3:c5:b3:93:71:77:8f:
6c:98:a1:36:32:3a:45:d7:e9:a1:ea:bb:84:3c:cb:
5b:6e:8c:51:ba:d6:c0:34:81:42:0f:ee:21:43:93:
6b:a7:80:a4:56:80:6a:0a:cf:82:5c:e1:be:43:cb:
e7:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:18:04:64:08:0D:7E:ED:38:E3:5E:98:37:EA:01:0A:F8:FF:5E:64
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/bxgEZAgNfu04416YN-oBCvj_XmQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.115.223.0/24
Signature Algorithm: sha256WithRSAEncryption
35:30:56:41:a1:0f:84:f1:a2:69:fd:3e:ed:95:e3:55:e3:a0:
a0:7e:bb:55:eb:ab:ba:a9:6d:d1:d7:2e:e6:07:a7:82:40:a1:
0e:e9:5d:ac:bd:cb:77:9f:aa:8c:7c:0c:d1:28:58:10:16:ba:
0b:8a:22:51:44:2d:87:0d:ed:76:c4:c7:07:fc:36:29:62:22:
ee:cc:92:86:e3:fc:26:f5:b7:cd:ba:5f:c2:aa:f3:c9:16:3f:
ca:9e:33:26:f7:f9:48:ae:b0:48:53:bc:01:88:d1:47:f2:6e:
8b:aa:68:35:c0:7a:6d:40:40:0d:55:cd:08:83:2a:a4:a3:78:
81:48:00:d8:47:24:e2:2d:da:dd:5f:a2:ac:22:da:49:9d:58:
67:75:08:a4:7a:49:0d:9f:7c:4a:26:05:d8:9b:c5:00:7e:00:
8f:e9:b3:7a:ba:71:37:ba:2a:b5:fe:2b:55:5a:a3:9d:d6:fe:
8c:6b:e4:ef:39:ae:e6:45:d4:50:76:d9:79:44:10:9a:68:10:
13:05:30:d4:7b:ae:7a:4a:79:3d:9e:bb:f5:36:2f:2e:de:00:
ce:ba:2f:b1:e7:96:6d:d8:00:ed:47:b3:5a:be:ab:f8:7e:7e:
07:5f:76:3e:ca:a4:75:7e:e6:0b:8c:7f:bd:49:ab:e9:54:e7:
0b:74:1f:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 5 10:16:19 2024 by rpki-client on console-ams.rpki-client.org