Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/bolifig4JyilsI66TheZDw5BKKI.roa
File: bolifig4JyilsI66TheZDw5BKKI.roa (raw, json)
Hash identifier: iqqhoULni/jWuCG1Cq1SzTY1OJIMK0/U2ZuAKW8L0XA=
Subject key identifier: 6E:89:62:7E:28:38:27:28:A5:B0:8E:BA:4E:17:99:0F:0E:41:28:A2
Certificate issuer: /CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Certificate serial: 0185737ACEEBDED937F3A09ADA1E6D442255
Authority key identifier: D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/bolifig4JyilsI66TheZDw5BKKI.roa
Signing time: Mon 02 Jan 2023 17:15:06 +0000
ROA not before: Mon 02 Jan 2023 17:15:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201435
IP address blocks: 185.72.52.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:7a:ce:eb:de:d9:37:f3:a0:9a:da:1e:6d:44:22:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Validity
Not Before: Jan 2 17:15:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6e89627e28382728a5b08eba4e17990f0e4128a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:bb:82:51:2b:a6:82:4d:92:97:64:ae:f0:0d:
7b:6e:b5:99:da:b4:ef:5e:f3:6b:f3:7b:87:84:ea:
31:fa:bb:64:8b:ab:d4:dd:dc:9e:55:b3:0c:95:a1:
f1:81:5d:1d:34:0b:aa:dc:5e:21:1a:3c:4e:e6:cc:
f6:aa:5c:4f:40:a3:60:b9:88:ea:10:4f:06:e3:be:
8d:a6:a2:dc:04:8c:de:6f:cd:20:ce:22:ee:bb:7b:
6a:31:d1:1f:9b:61:c1:6d:a3:2c:07:c6:c4:12:c0:
8d:f7:56:ca:45:f2:93:b3:b4:ef:49:71:1f:3a:e3:
6b:c6:f2:58:48:90:1d:d7:5b:77:4e:bf:1b:bc:32:
91:0c:17:a9:c3:96:a8:ae:56:f9:26:b3:c5:2e:6b:
f6:51:77:a1:4b:e4:71:ba:69:f9:e9:c9:57:f7:e1:
60:04:cc:d4:84:2e:c7:f8:33:2c:0c:31:7d:89:56:
49:04:18:08:e3:8b:78:78:38:3d:76:ea:2a:d9:74:
05:2b:fa:98:2b:e7:20:9a:b6:90:5d:84:62:b4:4a:
89:69:19:63:bd:04:d2:44:5d:95:c8:f4:72:92:57:
7f:70:3f:80:7b:25:9a:35:1b:08:a4:29:03:17:42:
9e:91:38:77:33:cc:d7:5e:08:87:cb:6f:4d:60:9f:
00:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:89:62:7E:28:38:27:28:A5:B0:8E:BA:4E:17:99:0F:0E:41:28:A2
X509v3 Authority Key Identifier:
keyid:D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/bolifig4JyilsI66TheZDw5BKKI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/1HX7CTTPaljczvEQh12-Xj6La3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.72.52.0/22
Signature Algorithm: sha256WithRSAEncryption
32:8a:d0:35:3e:ee:6c:eb:89:d2:38:7b:09:c8:56:23:7d:b9:
a3:29:d0:d4:b2:31:a6:25:1f:39:93:cf:ba:b2:fa:19:25:e7:
69:02:0e:cf:f2:b4:f7:61:20:e4:a9:5f:97:8b:2b:9d:85:53:
22:62:99:c8:5e:30:8b:9d:56:6a:6c:6c:02:39:d7:68:33:07:
d6:cd:21:40:7b:fb:a0:4f:1c:bb:67:95:97:62:f3:94:04:b8:
5a:91:56:1a:d3:8a:4f:e2:69:96:2f:c9:0e:04:11:d5:cb:60:
67:61:29:15:1c:48:61:6a:0e:28:f3:05:61:81:07:44:a2:92:
cd:41:2c:4e:01:f4:b1:12:0d:40:3c:19:a2:03:4a:dc:7f:04:
3b:ba:e4:b0:88:28:d1:0f:62:d9:57:93:a9:4a:a3:18:25:2d:
b3:23:ad:f4:05:0d:ea:9c:67:bb:2f:cc:6c:ed:09:8e:59:f2:
ed:9e:2a:12:bc:8e:7e:75:70:cc:4e:99:31:14:ad:3d:c1:15:
a5:68:f3:cb:44:3e:d9:b4:6d:92:d4:e5:57:71:f6:5f:f5:aa:
aa:e4:80:0d:df:b7:37:13:72:41:f1:81:fd:01:4d:e6:97:7a:
6e:e5:e8:7f:b5:ac:0b:4b:b7:63:79:0b:b1:e8:71:33:47:8a:
6b:d2:df:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:51 2024 by rpki-client on console-ams.rpki-client.org