Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/29a422-a791-4dcf-90fb-2c9127ab48c3/1/BLJLH7rpeW8I0icm9eGdIf2YKL0.roa
File: BLJLH7rpeW8I0icm9eGdIf2YKL0.roa (raw, json)
Hash identifier: idVRnbR+irx0Os3Vby+AG6lzYAqEwcZGOTi5/DIrXB8=
Subject key identifier: 04:B2:4B:1F:BA:E9:79:6F:08:D2:27:26:F5:E1:9D:21:FD:98:28:BD
Certificate issuer: /CN=74d032528bb1d159766cd79de4786dcd962a1fbb
Certificate serial: 01856E2673A876472D6F8B159DBD4ABA9660
Authority key identifier: 74:D0:32:52:8B:B1:D1:59:76:6C:D7:9D:E4:78:6D:CD:96:2A:1F:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dNAyUoux0Vl2bNed5HhtzZYqH7s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/29a422-a791-4dcf-90fb-2c9127ab48c3/1/BLJLH7rpeW8I0icm9eGdIf2YKL0.roa
Signing time: Sun 01 Jan 2023 16:24:51 +0000
ROA not before: Sun 01 Jan 2023 16:24:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8426
IP address blocks: 185.146.92.0/22 maxlen: 22
2a07:4f40::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:26:73:a8:76:47:2d:6f:8b:15:9d:bd:4a:ba:96:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74d032528bb1d159766cd79de4786dcd962a1fbb
Validity
Not Before: Jan 1 16:24:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=04b24b1fbae9796f08d22726f5e19d21fd9828bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:43:c4:64:5d:43:c8:db:73:70:3f:a7:f4:ab:
a8:3e:09:73:f9:41:fb:ce:b8:92:7b:b5:d6:16:0b:
e2:28:26:1e:9d:2f:6a:4d:d1:05:e0:5d:f8:ea:b5:
64:f2:12:9b:36:a1:36:d4:1b:79:13:6a:9c:77:0a:
99:b7:fd:f5:7c:88:0c:e8:49:dc:9a:06:f4:6a:41:
ed:b6:a6:03:82:96:f0:20:65:b5:a6:83:b5:9f:ba:
7b:58:14:1b:fb:4a:bb:e9:29:95:a8:ac:5e:3e:5a:
b7:47:e0:00:ad:34:5b:3e:6b:85:37:7e:70:7f:a8:
9f:4c:81:fb:31:4c:d0:33:4f:c4:11:d0:e6:6b:8c:
65:ff:34:cb:90:41:c9:a9:b7:73:1a:0b:df:53:0e:
8f:7b:76:ba:49:8e:30:c1:d2:26:9c:8a:3b:4e:2f:
b4:16:0c:42:d0:f7:86:64:d1:d7:5e:01:09:ac:9b:
af:8f:2e:29:ef:97:24:39:2a:4f:84:b3:d7:c6:37:
47:b3:8c:c4:6e:e3:7c:c0:db:c3:44:12:ac:75:74:
03:17:1c:4f:ea:c2:ee:ed:40:3e:19:77:54:75:fc:
7a:43:88:e5:3a:bb:63:31:db:14:20:29:dd:42:1d:
c2:f5:ca:c3:1b:29:23:28:94:cd:e9:4a:76:9a:c0:
fe:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:B2:4B:1F:BA:E9:79:6F:08:D2:27:26:F5:E1:9D:21:FD:98:28:BD
X509v3 Authority Key Identifier:
keyid:74:D0:32:52:8B:B1:D1:59:76:6C:D7:9D:E4:78:6D:CD:96:2A:1F:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dNAyUoux0Vl2bNed5HhtzZYqH7s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/29a422-a791-4dcf-90fb-2c9127ab48c3/1/BLJLH7rpeW8I0icm9eGdIf2YKL0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/29a422-a791-4dcf-90fb-2c9127ab48c3/1/dNAyUoux0Vl2bNed5HhtzZYqH7s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.146.92.0/22
IPv6:
2a07:4f40::/29
Signature Algorithm: sha256WithRSAEncryption
2d:15:64:c8:dc:5a:f1:ea:8a:58:7e:42:06:01:7b:3d:54:63:
92:9d:64:d3:28:00:36:76:b4:2a:68:85:11:b1:9c:73:f1:c4:
ec:70:c0:65:52:11:02:5c:4e:85:65:81:51:15:c1:2a:40:b6:
37:c1:63:fb:f8:30:11:c2:5b:93:46:36:89:50:63:44:00:16:
67:fb:35:4a:6e:b0:03:30:12:c6:37:58:0d:02:61:b0:7e:37:
70:a6:cf:e8:99:b4:61:7c:56:e6:c6:1d:cc:60:b8:29:82:55:
f0:d9:93:bf:b9:58:8f:3d:3d:de:66:fd:e4:88:03:48:37:37:
a9:72:0c:c6:b0:a7:a1:35:41:d6:bf:4f:8d:fc:e7:3c:8c:05:
13:18:01:52:f0:f5:e7:ca:e9:37:b8:02:82:57:95:87:c0:c7:
94:19:ed:56:70:25:76:62:e9:93:c6:39:de:80:66:35:26:d9:
6a:ff:54:c4:fb:f5:5e:e9:cb:53:7f:5b:d7:8e:23:85:b1:9a:
d9:5d:eb:8e:99:c1:c1:a3:4f:a0:52:38:76:32:32:08:f4:9b:
c2:73:05:98:1d:78:74:f7:81:83:cf:e1:9c:8c:17:b8:d2:40:
e9:89:63:18:f4:c8:af:cc:57:5b:34:2f:8c:8a:a2:54:90:38:
a7:ef:92:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:27 2024 by rpki-client on console-ams.rpki-client.org